r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1424d2734290cfd767b86da0ee0da3bc
875b1243bca41177411ac6af710d2bb96f45a0ac
70b5bb76774526a0cf131445ae2f8639085c3449812497df457f4bc78089917b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "70B5BB76774526A0CF131445AE2F8639085C3449812497DF457F4BC78089917B"
Last-Modified: Wed, 15 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8316
Expires: Fri, 17 Mar 2023 07:46:41 GMT
Date: Fri, 17 Mar 2023 05:28:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3fe71d20fae0ef9598de076d7c898ee5
8217796b8c261e184e11147a43a34dc28d723e8b
8f4124c1b2ae90fdec229e26dc0f2e8f4e9ace6011baa2cbd9bef884188c8fee
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8F4124C1B2AE90FDEC229E26DC0F2E8F4E9ACE6011BAA2CBD9BEF884188C8FEE"
Last-Modified: Tue, 14 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8013
Expires: Fri, 17 Mar 2023 07:41:38 GMT
Date: Fri, 17 Mar 2023 05:28:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Backoff, Alert, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 17 Mar 2023 05:26:42 GMT
content-type: application/json
age: 83
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cef8425d927aae677234ca535562b58b
823b45ffe59ac234f49d38516baf528a9daded85
c2d2e2be0e1484259271be471ff46345fd332c071389f9ef92f637e7ee666ea6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2D2E2BE0E1484259271BE471FF46345FD332C071389F9EF92F637E7EE666EA6"
Last-Modified: Tue, 14 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15138
Expires: Fri, 17 Mar 2023 09:40:23 GMT
Date: Fri, 17 Mar 2023 05:28:05 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b5ba6334e73496995e3e3a9ecd0eb323
ad80d3b7718c28364e8c2004fb38a13a1747e462
aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vFLTtoaV1+ass76f4gwIy3i24vvky21NvkdT7gXB7S8/PpgiuqEYb4h1VrwQFwcQtyaoSt6iN6s=
x-amz-request-id: PB7B36MR2NX5NA3P
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 17 Mar 2023 04:47:59 GMT
age: 2406
last-modified: Sat, 18 Feb 2023 20:28:27 GMT
etag: "b5ba6334e73496995e3e3a9ecd0eb323"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a1bdd9f04a51186891ce4c8abc83bc73
c198c4014c990803616ca7d022dc1f6b521911aa
120ed1a0946b68b024cf46abb73cc82a9a3fdc31868098cca3ceea445510a9f5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "120ED1A0946B68B024CF46ABB73CC82A9A3FDC31868098CCA3CEEA445510A9F5"
Last-Modified: Tue, 14 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 17 Mar 2023 11:28:05 GMT
Date: Fri, 17 Mar 2023 05:28:05 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 17 Mar 2023 05:28:05 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
pxlme.me/dPRUq34m
51.15.139.10302 Found 53 B IP 51.15.139.10:0
File type HTML document, ASCII text
Hash 58cee4d3b6571c2c043c2d9a3b3746f3
6c874f2bd5185ae818ad6a49031e8723ec846527
b7783e551890a0b99760d2e0f46a7c6d61e2067c4176d212d6bce836e60bee17
Analyzer Verdict Alert openphish AT&T Inc.
fortinet Phishing
GET /dPRUq34m HTTP/1.1
Host: pxlme.me
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Cache-Control: no-cache, no-store, must-revalidate
Content-Type: text/html; charset=utf-8
Expires: 0
Location: https://short.fyi/81aa/Rr83Vt1
Pragma: no-cache
Date: Fri, 17 Mar 2023 05:28:05 GMT
Content-Length: 53
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Last-Modified, Content-Length, Pragma, Expires, ETag, Backoff, Alert, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 17 Mar 2023 05:17:21 GMT
age: 645
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4353e40dea39897876467013220ab1ad
ecdbe764620d0d760f9333ff2c30d0f7d9b5d9a8
f23a16dcfff2a742fcbd5fff52cb6edcb9485eea5e732574f3124371b21abfb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F23A16DCFFF2A742FCBD5FFF52CB6EDCB9485EEA5E732574F3124371B21ABFB3"
Last-Modified: Tue, 14 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9492
Expires: Fri, 17 Mar 2023 08:06:18 GMT
Date: Fri, 17 Mar 2023 05:28:06 GMT
Connection: keep-alive
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 5e29b214a15b373a7511b2c1c3b19c56
d67f3b3e4f4049f50a23d5b925387d72cd0afcaa
efd8eac713fe1d7a7fe0d6a7a740f17764f56e297ae791ad1115ce5710bdcbfe
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93050
Date: Fri, 17 Mar 2023 05:28:06 GMT
Etag: "6412c2e0-1d7"
Expires: Sat, 18 Mar 2023 07:18:56 GMT
Last-Modified: Thu, 16 Mar 2023 07:18:56 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: E2vN6xffmscp9nzRj_ErYOZN4WCZkxc8CdQE3VFJW5cs4lIe0m18kg==
push.services.mozilla.com/
34.209.185.33101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.209.185.33:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qW1mut89gO5aLrc50sSyHA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: +ekfXIFV3qh2F/8UXd2x7TDMxAw=
short.fyi/81aa/Rr83Vt1
54.230.111.46200 OK 293 B IP 54.230.111.46:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d9c165bbdb97ea10b325729122ca5b02
19e786860e789934d1a5132dfba045ec505da0c3
3fdc56665d2f290b9e045ec6ea978688b74ced0c72be5048aa1f2ff5f70cbf01
Analyzer Verdict Alert fortinet Phishing
GET /81aa/Rr83Vt1 HTTP/1.1
Host: short.fyi
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html
content-length: 293
date: Fri, 17 Mar 2023 05:28:06 GMT
x-amzn-requestid: 04f0234b-5279-41ba-92bb-a6959d95bdba
x-amz-apigw-id: B6QQFG-AIAMFYzg=
x-amzn-trace-id: Root=1-6413fa66-1b02c3ad2936533546794fd6;Sampled=0
x-cache: Miss from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kB9pd7H99W0XFrTS04R9AOWkKELdOcwKvtq1NMlPp9gj6Ob_heuiWg==
X-Firefox-Spdy: h2
attonline.blob.core.windows.net/assets/Lrr/login.aspx
52.239.221.100200 OK 88 kB URL HTTP/1.1 attonline.blob.core.windows.net/assets/Lrr/login.aspx
IP 52.239.221.100:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text, with very long lines (65501), with CRLF line terminators
Hash 161a06beb9be67a978a3bd1b980168cc
87b19e8dabb9d9d404fa4757b2fa725c5577d147
63fea9f913d7d7de0bb6ff3c325fe1a96893102dd1b002490f675f35e5c03c4d
Analyzer Verdict Alert urlquery suspicious Suspicious - JavaScript obfusction
fortinet Phishing
GET /assets/Lrr/login.aspx HTTP/1.1
Host: attonline.blob.core.windows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://short.fyi/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Length: 87885
Content-Type: text/html
Content-MD5: FhoGvrm+Z6l4o70bmAFozA==
Last-Modified: Sat, 04 Mar 2023 07:34:51 GMT
ETag: 0x8DB1C82F0CC83A4
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 023b8a72-401e-0037-3c91-58528a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Fri, 17 Mar 2023 05:28:07 GMT
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6989
Expires: Fri, 17 Mar 2023 07:24:36 GMT
Date: Fri, 17 Mar 2023 05:28:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6989
Expires: Fri, 17 Mar 2023 07:24:36 GMT
Date: Fri, 17 Mar 2023 05:28:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6989
Expires: Fri, 17 Mar 2023 07:24:36 GMT
Date: Fri, 17 Mar 2023 05:28:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6989
Expires: Fri, 17 Mar 2023 07:24:36 GMT
Date: Fri, 17 Mar 2023 05:28:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 84762efcb2e1535ae49fca6c1523df33
93e7f138a491d4276a793c2e5b947195ae69a88c
920778735cfb5f0395bbfa1391cb4e90c547d455cac77c8bb161a0c3b55a6a3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "920778735CFB5F0395BBFA1391CB4E90C547D455CAC77C8BB161A0C3B55A6A3F"
Last-Modified: Thu, 16 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6989
Expires: Fri, 17 Mar 2023 07:24:36 GMT
Date: Fri, 17 Mar 2023 05:28:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6272d07-0ccd-41ba-a86f-72932f0783bd.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6272d07-0ccd-41ba-a86f-72932f0783bd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05b82ec8d7e99e9499e8b5a980008c60
280fe711e384d60749c6225ddcc7f57c48845719
305b82d6aa40f5af58100de5007ac484c73c0a49ab7c5715b8ab6e83e10270f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa6272d07-0ccd-41ba-a86f-72932f0783bd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5828
x-amzn-requestid: d366481c-e7c3-4cc5-b3da-c7c4b22f320a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B5KlrFegIAMFa8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64138af0-1c7c39d05a6b31ed1ddcb409;Sampled=0
x-amzn-remapped-date: Thu, 16 Mar 2023 21:32:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: WWj5PE-SRteLqD_zUeyBBarnrGodgVs_FuEh3pqlu8NmuSXEKbtJiA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 618052a0d9c86c1a3bf663f82d041d1c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Mar 2023 21:49:59 GMT
etag: "280fe711e384d60749c6225ddcc7f57c48845719"
content-type: image/jpeg
age: 27488
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32661b66-c29d-4fb2-8a6d-e8d32af65c0c.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32661b66-c29d-4fb2-8a6d-e8d32af65c0c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b237b4b09287ed50ed4b41b5a4bfb339
5114fb56e5d9847562d2c493dbe684ee1057ffba
a78555499f140649e47a5c0a561f36a8002abbceb2ab13189e91faefa6dd298c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32661b66-c29d-4fb2-8a6d-e8d32af65c0c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6291
x-amzn-requestid: 862f541b-8662-40fd-948b-81f454101a06
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BuAzzFL6oAMFuZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640f14e4-337ab28f5f932a4c050a691d;Sampled=0
x-amzn-remapped-date: Mon, 13 Mar 2023 12:19:48 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: -r-kQBuxzGLlPe15PBUIOxhCSiYdWXVxK_nFS3wEr08Sy72W02ohsQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 f268a165a18929fd0a24a3189fbd16b2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Mar 2023 22:36:10 GMT
age: 24717
etag: "5114fb56e5d9847562d2c493dbe684ee1057ffba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde5af798-aa22-49e6-9d78-388e45bbfd8a.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde5af798-aa22-49e6-9d78-388e45bbfd8a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd771cd28d31d94676089147a40bbb6e
66d5c767c89d6ad4a364a9fc38782a4c62e543f4
1ecfaf9e1191630ebd42cebaad8c218cdf6f450b0c64cc21ce3e4aa52d7a5d43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde5af798-aa22-49e6-9d78-388e45bbfd8a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10093
x-amzn-requestid: b3512244-caa8-4631-a70a-c78a994daf07
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B2w-7Ga5IAMF6gA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6412952c-516bfae9748d165357ecd35b;Sampled=0
x-amzn-remapped-date: Thu, 16 Mar 2023 04:03:56 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: V5UmKX5qUdTuu2UqEhzDblAWsJHWfVhxXprWgyunBFXiyTDHn5Oxyw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 ae06b19943a6bad1c1b12b79f7339498.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Mar 2023 11:05:17 GMT
age: 66170
etag: "66d5c767c89d6ad4a364a9fc38782a4c62e543f4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash be71491cee9b47dc3ffb23b4fdff25b3
79c7d22c8df6d305f46c5779ccb9f25169d4d111
e785896e5840fb901ddd0118bef3ccad6b59a96d8eef0e8ccd9c95a3c261ba45
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8487
x-amzn-requestid: 92381f1a-0140-47e9-a971-594a7de36c3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BkEcBGizoAMFgOA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640b1ab3-1a54b65a5d7083e62dcb85ab;Sampled=0
x-amzn-remapped-date: Fri, 10 Mar 2023 11:55:31 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: Nn4eV-UeuWZ02ANOxzTUSgE4UODtaZxeIjp8UJfU8PgUny2shFaDjQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Mar 2023 22:00:53 GMT
age: 26834
etag: "79c7d22c8df6d305f46c5779ccb9f25169d4d111"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb35bbebd-fe94-4a9a-89ef-f9766e41b86e.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb35bbebd-fe94-4a9a-89ef-f9766e41b86e.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4062ca109e37235c9996cd13acaca8ab
d4fcc855ddd9f7a949b66ba5bceba73f7b0c91bd
800e19d4c2fbb828aedb80542563c95b8f1d6022ff604576ed4943f1fc6d607b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb35bbebd-fe94-4a9a-89ef-f9766e41b86e.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11594
x-amzn-requestid: b0875d40-ec76-4541-9e9c-0a86c89bdf22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: B14BfHOkoAMFXIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64123a09-43982eb560373c1449a90e35;Sampled=0
x-amzn-remapped-date: Wed, 15 Mar 2023 21:35:05 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: RnPM_j6OB3YRMpbaG14o5uurKLKWWnY04FcFimt9bPQxGiB0FZFocQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Mar 2023 21:51:09 GMT
age: 27418
etag: "d4fcc855ddd9f7a949b66ba5bceba73f7b0c91bd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10addb30-9797-4bfb-ab40-27590dcd8a0c.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10addb30-9797-4bfb-ab40-27590dcd8a0c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8d0d0c23818e0992d7081d19d86d752a
5f96d26521f4db9c8858b72d5c60f5b06fd0bba1
092427d520bfea7cf5cac7f160624001496ad5f54e8c8554a1c8aea942a7db87
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F10addb30-9797-4bfb-ab40-27590dcd8a0c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6871
x-amzn-requestid: 56a9e84e-6436-4726-a8b3-efc08485eb58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: BmtHXG6IIAMFRTQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-640c2895-6dc08086321fb6c016eb88e9;Sampled=0
x-amzn-remapped-date: Sat, 11 Mar 2023 07:07:01 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: SDQGfzJOO-MuuJXlOI2vqvE8pgmDt0NOGI6aDLPTvG78ZWaXxM-mGg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ea699166e6ec77aa410ff505b0a8ce18.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Mar 2023 22:00:08 GMT
age: 26879
etag: "5f96d26521f4db9c8858b72d5c60f5b06fd0bba1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.att.com/scripts/adobe/prod/detm-container-hdr.js
23.38.201.115200 OK 30 kB URL HTTP/2 www.att.com/scripts/adobe/prod/detm-container-hdr.js
IP 23.38.201.115:0
File type ASCII text, with very long lines (49504)
Hash 24f94df12a6536c6dc3071b0a207e669
75a3ea61d849053f14c55e7c0f55cd1b2175194a
a6a40d3c47b13447aac2a02064295b13ae078d4324e3672adf8cb3782777c108
GET /scripts/adobe/prod/detm-container-hdr.js HTTP/1.1
Host: www.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "e56c57da62be403d4da5c325ccf2a412:1678238192.610832"
last-modified: Wed, 08 Mar 2023 01:16:32 GMT
server: AkamaiNetStorage
content-encoding: gzip
content-length: 30485
date: Fri, 17 Mar 2023 05:28:08 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="466397_388255502_410017385_23_11469_1_0";dur=1
aka-global-request-id-uxtime: 0.0e4f2417.1679030888.18705e69
cache-control: no-cache, private, max-age=7776000
x-employment: If you are reading this, please consider a technology job at AT&T www.att.jobs
strict-transport-security: max-age=15768000 ; preload
X-Firefox-Spdy: h2
www.att.com/scripts/adobe/prod/mbox-contents.js
23.38.201.115200 OK 36 kB URL HTTP/2 www.att.com/scripts/adobe/prod/mbox-contents.js
IP 23.38.201.115:0
File type ASCII text, with very long lines (64475)
Hash cf223cd01c6249bce8bb1e7d8e4f9911
945bc5b7c66a7a042c31be7f6e95251ed010e88d
ea6f3402af6461cc80a8f1f3e11d2e88c90a7e1236f2cb18ea8cf081b9026f45
GET /scripts/adobe/prod/mbox-contents.js HTTP/1.1
Host: www.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "5d7d69dc820bd519c4643e02a89c66d9:1658361568.37808"
last-modified: Wed, 20 Jul 2022 23:59:28 GMT
server: AkamaiNetStorage
content-encoding: gzip
content-length: 36239
expires: Sun, 16 Apr 2023 05:28:08 GMT
date: Fri, 17 Mar 2023 05:28:08 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=22, ak_p; desc="466397_388255502_410017462_2285_10698_7_0";dur=1
aka-global-request-id-uxtime: 0.843a2f17.1678746634.4c68a817, 0.0e4f2417.1679030888.18705eb6
cache-control: no-cache, private, max-age=7776000
x-employment: If you are reading this, please consider a technology job at AT&T www.att.jobs, If you are reading this, please consider a technology job at AT&T www.att.jobs
strict-transport-security: max-age=15768000 ; preload
X-Firefox-Spdy: h2
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash b4fb230e2d592dd133f6e48744379a8c
90523a83dd65e561e53169731bedb34a9bb144bd
69caab2e0771354a4ef11b03f6e5373c25c42c75af75811b839425507aaf5616
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1316
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 17 Mar 2023 05:28:08 GMT
Last-Modified: Fri, 17 Mar 2023 05:06:12 GMT
Server: ECAcc (amb/6AD5)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash b4fb230e2d592dd133f6e48744379a8c
90523a83dd65e561e53169731bedb34a9bb144bd
69caab2e0771354a4ef11b03f6e5373c25c42c75af75811b839425507aaf5616
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2096
Cache-Control: max-age=93696
Content-Type: application/ocsp-response
Date: Fri, 17 Mar 2023 05:28:08 GMT
Etag: "6412bd38-1d7"
Expires: Sat, 18 Mar 2023 07:29:44 GMT
Last-Modified: Thu, 16 Mar 2023 06:54:48 GMT
Server: ECAcc (amb/6AFD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash b4fb230e2d592dd133f6e48744379a8c
90523a83dd65e561e53169731bedb34a9bb144bd
69caab2e0771354a4ef11b03f6e5373c25c42c75af75811b839425507aaf5616
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2096
Cache-Control: max-age=93696
Content-Type: application/ocsp-response
Date: Fri, 17 Mar 2023 05:28:08 GMT
Etag: "6412bd38-1d7"
Expires: Sat, 18 Mar 2023 07:29:44 GMT
Last-Modified: Thu, 16 Mar 2023 06:54:48 GMT
Server: ECAcc (amb/6AFD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash b4fb230e2d592dd133f6e48744379a8c
90523a83dd65e561e53169731bedb34a9bb144bd
69caab2e0771354a4ef11b03f6e5373c25c42c75af75811b839425507aaf5616
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=91600
Content-Type: application/ocsp-response
Date: Fri, 17 Mar 2023 05:28:08 GMT
Etag: "6412bd38-1d7"
Expires: Sat, 18 Mar 2023 06:54:48 GMT
Last-Modified: Thu, 16 Mar 2023 06:54:48 GMT
Server: nginx
Content-Length: 471
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash b4fb230e2d592dd133f6e48744379a8c
90523a83dd65e561e53169731bedb34a9bb144bd
69caab2e0771354a4ef11b03f6e5373c25c42c75af75811b839425507aaf5616
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=91600
Content-Type: application/ocsp-response
Date: Fri, 17 Mar 2023 05:28:08 GMT
Etag: "6412bd38-1d7"
Expires: Sat, 18 Mar 2023 06:54:48 GMT
Last-Modified: Thu, 16 Mar 2023 06:54:48 GMT
Server: nginx
Content-Length: 471
signin.att.com/static/siam/en/halo_c/halo-c-login/runtime.js?v=16.4.3
144.161.77.234200 OK 735 B URL HTTP/1.1 signin.att.com/static/siam/en/halo_c/halo-c-login/runtime.js?v=16.4.3
IP 144.161.77.234:0
File type ASCII text, with very long lines (1485), with no line terminators
Hash 5964fb377ca1ba0ea3f407108f4cbce1
35680661274d82f85fe131116f9cbe2d2a81340d
23129895ced13bebb1a2c3b0408a47fcbaf58b7b6a09390952170b4fd7d84e73
GET /static/siam/en/halo_c/halo-c-login/runtime.js?v=16.4.3 HTTP/1.1
Host: signin.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/javascript
date: Fri, 17 Mar 2023 05:28:08 GMT
etag: "5cd-5f280cfb47880"
last-modified: Wed, 18 Jan 2023 02:45:38 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
transfer-encoding: chunked
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
apser: p577
strict-transport-security: max-age=31536000; includeSubDomains; preload
iam_on: 604
signin.att.com/static/siam/en/halo_c/halo-c-login/main.js?v=16.4.3
144.161.77.234200 OK 30 kB URL HTTP/1.1 signin.att.com/static/siam/en/halo_c/halo-c-login/main.js?v=16.4.3
IP 144.161.77.234:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash c60377ee4f67d298b129d474c41bfdf7
14870a1f6fb792289bc38e0677862819aea04e01
4a6c5a34038e6c56367b27acb7b016e8064f543a766f4f6fe2add5c6dd539f24
GET /static/siam/en/halo_c/halo-c-login/main.js?v=16.4.3 HTTP/1.1
Host: signin.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/javascript
date: Fri, 17 Mar 2023 05:28:08 GMT
etag: "1b3fa-5f280cfb47880"
last-modified: Wed, 18 Jan 2023 02:45:38 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
transfer-encoding: chunked
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
apser: p527
strict-transport-security: max-age=31536000; includeSubDomains; preload
iam_on: 604
signin.att.com/static/siam/en/halo_c/halo-c-login/polyfills.js?v=16.4.3
144.161.77.234200 OK 18 kB URL HTTP/1.1 signin.att.com/static/siam/en/halo_c/halo-c-login/polyfills.js?v=16.4.3
IP 144.161.77.234:0
File type ASCII text, with very long lines (46615), with no line terminators
Hash 557384897bc34966949d6a84b22505b3
b14788b4d86b11b4613dda29123a3d5283059aeb
fffb9dee08d5f5299ea1eddb59093da529225bd38bb4667bc24c178fc092c07a
GET /static/siam/en/halo_c/halo-c-login/polyfills.js?v=16.4.3 HTTP/1.1
Host: signin.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/javascript
date: Fri, 17 Mar 2023 05:28:08 GMT
etag: "b617-5f280cfb47880"
last-modified: Wed, 18 Jan 2023 02:45:38 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
transfer-encoding: chunked
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
apser: p580
strict-transport-security: max-age=31536000; includeSubDomains; preload
iam_on: 604
signin.att.com/static/siam/en/halo_c/halo-c-login/styles.css?v=16.4.3
144.161.77.234200 OK 33 kB URL HTTP/1.1 signin.att.com/static/siam/en/halo_c/halo-c-login/styles.css?v=16.4.3
IP 144.161.77.234:0
File type ASCII text, with very long lines (65326)
Hash d895c1ff9b80ff6253c6cc02b6a5528d
596941a38c939c624fdfb98a0f0d3a9e1b0f3a32
18a7a6addc696de2c34863016af143c9755b3feef0dda879c11af17e13a6477f
GET /static/siam/en/halo_c/halo-c-login/styles.css?v=16.4.3 HTTP/1.1
Host: signin.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: text/css
date: Fri, 17 Mar 2023 05:28:08 GMT
etag: "26ad9-5f280cfb47880"
last-modified: Wed, 18 Jan 2023 02:45:38 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
transfer-encoding: chunked
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
apser: p578
strict-transport-security: max-age=31536000; includeSubDomains; preload
iam_on: 604
signin-static-js.att.com/scripts/att_common.js
144.161.77.234200 OK 139 kB URL HTTP/1.1 signin-static-js.att.com/scripts/att_common.js
IP 144.161.77.234:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 139 kB (139170 bytes)
Hash 02109dc15de85ba9e7907b0365a9b3a6
028d6e2ca54ad49d98f28d8e914087eabfc3422c
8da53bf593e76828347fd85625c8b4b420392f3add41e060453564cd655fc489
GET /scripts/att_common.js HTTP/1.1
Host: signin-static-js.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Fri, 17 Mar 2023 05:28:08 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
transfer-encoding: chunked
x-frame-options: SAMEORIGIN
cache-control: no-cache, no-store, must-revalidate
expires: 0
strict-transport-security: max-age=31536000; includeSubDomains; preload
pragma: no-cache
iam_on: 604
Set-Cookie: Kd4zPCrb=A-opCu6GAQAA0luZygK7sCeddI4SE6KttE3n9f-aiB-0q9sQrZLZhqeatdDjAVtaKpqcuDv8wH8AAEB3AAAAAA|1|0|d72c9ca650740d4fd3ac2e0343880ba27482ed99; Max-Age=1577847600; Domain=att.com; Path=/
signin.att.com/static/siam/en/halo_c/halo-c-login/vendor.js?v=16.4.3
144.161.77.234200 OK 166 kB URL HTTP/1.1 signin.att.com/static/siam/en/halo_c/halo-c-login/vendor.js?v=16.4.3
IP 144.161.77.234:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 166 kB (166456 bytes)
Hash 346b5269f65142ca4f1d3f8f732d9aeb
e7d3d32245bd699e3244bc96f53cf6f38c8fe590
2d4ecbbc5886aefc311c046e7c64ad9f972ce53d211998dd0e8f8a3969ba33b1
GET /static/siam/en/halo_c/halo-c-login/vendor.js?v=16.4.3 HTTP/1.1
Host: signin.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/javascript
date: Fri, 17 Mar 2023 05:28:08 GMT
etag: "7ac97-5f280cfb47880"
last-modified: Wed, 18 Jan 2023 02:45:38 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
transfer-encoding: chunked
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
apser: p578
strict-transport-security: max-age=31536000; includeSubDomains; preload
iam_on: 604
www.att.com/scripts/ssaf_universal_client/prod/ssaf-uc.js
23.38.201.115200 OK 22 kB URL HTTP/2 www.att.com/scripts/ssaf_universal_client/prod/ssaf-uc.js
IP 23.38.201.115:0
File type ASCII text, with very long lines (65478)
Hash ef16d191c038bea11c09a9c85fa9d0a5
06152c80f41fdc29a5a698d21c8e7f9e56aad8a0
91369eb7d6fce6cd1a78c02593942d0a83ab700fcca66ba4c7a1e8ad05c9ff76
GET /scripts/ssaf_universal_client/prod/ssaf-uc.js HTTP/1.1
Host: www.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
accept-ranges: bytes
content-encoding: br
etag: "4748ee2536ac5708d3e3c32388415a38:1677826134.790297"
last-modified: Wed, 08 Mar 2023 02:13:47 GMT
server: Akamai Resource Optimizer
content-length: 22244
cache-control: max-age=3600
date: Fri, 17 Mar 2023 05:28:10 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, ak_p; desc="466397_388255502_410020081_25_11202_1_0";dur=1
aka-global-request-id-uxtime: 0.8ec84d17.1678241626.5679fc, 0.0e4f2417.1679030890.187068f1
x-employment: If you are reading this, please consider a technology job at AT&T www.att.jobs, If you are reading this, please consider a technology job at AT&T www.att.jobs
strict-transport-security: max-age=15768000 ; preload
X-Firefox-Spdy: h2
www.att.com/acctmgmt/favicon.ico
23.38.201.115200 OK 1.2 kB URL HTTP/2 www.att.com/acctmgmt/favicon.ico
IP 23.38.201.115:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 8cc5501351f013de0ce76fa0a2c59d50
ccc13ea6e1bf7ca9fe31b0dd997981fa8ec6a2e1
42938b72e2ec54515eb9c49145f42b8728cfc0b70170f80aef58ce93032b1c1d
GET /acctmgmt/favicon.ico HTTP/1.1
Host: www.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 1150
last-modified: Fri, 10 Mar 2023 20:51:46 GMT
etag: "640b9862-47e"
accept-ranges: bytes
x-frame-options: https://*.att.com/, http://*.att.com/
cache-control: public, max-age=2592000, s-maxage=900
expires: Sun, 16 Apr 2023 05:28:10 GMT
date: Fri, 17 Mar 2023 05:28:10 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1, dtSInfo;desc="0", dtRpid;desc="170663462", ak_p; desc="466397_388255502_410020088_19_72738_0_0";dur=1
aka-global-request-id-uxtime: 0.0e4f2417.1679030890.187068f8
x-employment: If you are reading this, please consider a technology job at AT&T www.att.jobs
strict-transport-security: max-age=15768000 ; preload
X-Firefox-Spdy: h2
signin.att.com/static/siam/en/halo_c/halo-c-login/assets/fonts/att/ATTAleckSans/woff2/ATTAleckSans_W_Rg.woff2
144.161.77.234200 OK 18 kB URL HTTP/1.1 signin.att.com/static/siam/en/halo_c/halo-c-login/assets/fonts/att/ATTAleckSans/woff2/ATTAleckSans_W_Rg.woff2
IP 144.161.77.234:0
File type Web Open Font Format (Version 2), TrueType, length 18480, version 1.0\012- data
Hash 15d443231ff3a13b0dcab5a9b8fd7276
8833865f3777104a8d58943779c3c47cd9b0ba09
e2740c7b209e33aca7176250d80f94b4924e5e5d18076ee3b95f32a0e20d1f58
GET /static/siam/en/halo_c/halo-c-login/assets/fonts/att/ATTAleckSans/woff2/ATTAleckSans_W_Rg.woff2 HTTP/1.1
Host: signin.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://attonline.blob.core.windows.net
Connection: keep-alive
Referer: https://signin.att.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
content-length: 18480
date: Fri, 17 Mar 2023 05:28:10 GMT
etag: "4830-5f280cfb47880"
last-modified: Wed, 18 Jan 2023 02:45:38 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
apser: p577
strict-transport-security: max-age=31536000; includeSubDomains; preload
iam_on: 604
ocsp.digicert.com/
192.229.221.95200 OK 471 B IP 192.229.221.95:0
Hash 24176e4ba71c3482a0c9729c5479828a
fc1603e634b7ec2e2bf3429d00fd3f5c3f329f6e
207a4e369c59864bdd5c99baa95d710d7e99fc7cbb36f26521e5a515dc98c877
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3186
Cache-Control: max-age=88318
Content-Type: application/ocsp-response
Date: Fri, 17 Mar 2023 05:28:10 GMT
Etag: "6412a3f6-1d7"
Expires: Sat, 18 Mar 2023 06:00:08 GMT
Last-Modified: Thu, 16 Mar 2023 05:07:02 GMT
Server: ECAcc (ska/F6E1)
X-Cache: HIT
Content-Length: 471
signin.att.com/static/siam/en/halo_c/images/logos/att-logo.svg
144.161.77.234200 OK 8.4 kB URL HTTP/1.1 signin.att.com/static/siam/en/halo_c/images/logos/att-logo.svg
IP 144.161.77.234:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3752)
Hash 651e53a3a906f20864aedc525f526a37
3db1539e7cd71b3a644ac803aa65a8de901ed9b9
6982fbe858e30068de9301b49438c83838bc7beb058146703b22b701e6709c7e
GET /static/siam/en/halo_c/images/logos/att-logo.svg HTTP/1.1
Host: signin.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
content-length: 8369
content-type: image/svg+xml
date: Fri, 17 Mar 2023 01:44:48 GMT
etag: "20b1-5f280cfb47880"
last-modified: Wed, 18 Jan 2023 02:45:38 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
apser: p578
age: 13402
strict-transport-security: max-age=31536000; includeSubDomains; preload
iam_on: 604
signin.att.com/static/siam/en/halo_c/cms/login/default/images/checkmark.svg
144.161.77.234200 OK 350 B URL HTTP/1.1 signin.att.com/static/siam/en/halo_c/cms/login/default/images/checkmark.svg
IP 144.161.77.234:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 3360e9ec52b33c87b5acfd5274b1997c
9ee2d0b83e2195ae8e10b721f90fb5a4f6f3fd07
b589ac98cac6d578082d9d2e8bb354abcab6f41f25a081a613227a37def44c9a
GET /static/siam/en/halo_c/cms/login/default/images/checkmark.svg HTTP/1.1
Host: signin.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
content-length: 350
content-type: image/svg+xml
date: Fri, 17 Mar 2023 01:44:48 GMT
etag: "15e-5f280cfb47880"
last-modified: Wed, 18 Jan 2023 02:45:38 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
apser: p578
age: 13402
strict-transport-security: max-age=31536000; includeSubDomains; preload
iam_on: 604
dpm.demdex.net/id?d_visid_ver=3.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=55633F7A534535110A490D44%40AdobeOrg&d_nsid=0&ts=1679030888145
52.51.183.68200 OK 698 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=3.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=55633F7A534535110A490D44%40AdobeOrg&d_nsid=0&ts=1679030888145
IP 52.51.183.68:0
File type JSON data\012- , ASCII text, with very long lines (1476), with no line terminators
Hash 7a5b3077c7ffb52d221c270ecf0a8c10
a22c829e7ef2d2337131faae8c5aeeb9968870f9
f12075abcd00c257caadccd6dcec7e17c500407ee351a9a236a8ab6f03fdf45d
GET /id?d_visid_ver=3.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=55633F7A534535110A490D44%40AdobeOrg&d_nsid=0&ts=1679030888145 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://attonline.blob.core.windows.net
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://attonline.blob.core.windows.net
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-2-v046-02d41f003.edge-irl1.demdex.com 1 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=44845840870860591481984410219309959381; Max-Age=15552000; Expires=Wed, 13 Sep 2023 05:28:10 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: yQIxLJXqQIg=
Content-Length: 698
Connection: keep-alive
signin.att.com/static/siam/en/halo_c/halo-c-login/assets/fonts/att/ATTAleckSans/woff2/ATTAleckSans_W_Md.woff2
144.161.77.234200 OK 20 kB URL HTTP/1.1 signin.att.com/static/siam/en/halo_c/halo-c-login/assets/fonts/att/ATTAleckSans/woff2/ATTAleckSans_W_Md.woff2
IP 144.161.77.234:0
File type Web Open Font Format (Version 2), TrueType, length 19596, version 1.0\012- data
Hash 0c6016d2601693fb28b079401732e491
a6bea66c36ada118fda165e09fded89ee5ed6b1a
59ea63b5ffe0f060e37c24a44b6406943df9e4fca39e2ef43023c2ae9783f220
GET /static/siam/en/halo_c/halo-c-login/assets/fonts/att/ATTAleckSans/woff2/ATTAleckSans_W_Md.woff2 HTTP/1.1
Host: signin.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://attonline.blob.core.windows.net
Connection: keep-alive
Referer: https://signin.att.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
content-length: 19596
date: Fri, 17 Mar 2023 05:28:10 GMT
etag: "4c8c-5f280cfb47880"
last-modified: Wed, 18 Jan 2023 02:45:38 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
apser: p527
strict-transport-security: max-age=31536000; includeSubDomains; preload
iam_on: 604
signin.att.com/static/siam/en/halo_c/cms/login/default/i18n/en.json
144.161.77.234200 OK 4.1 kB URL HTTP/1.1 signin.att.com/static/siam/en/halo_c/cms/login/default/i18n/en.json
IP 144.161.77.234:0
File type JSON data\012- , Unicode text, UTF-8 text
Hash 33419f6922a97d6bb79b4cd01b1e7eb9
5a8b0a816fd37718c219314a8d93ce1431fd8f2b
f4b2c7469290a6243075ce35b69154ee6112bdbf632c78f7de8b973de7bf602f
GET /static/siam/en/halo_c/cms/login/default/i18n/en.json HTTP/1.1
Host: signin.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://attonline.blob.core.windows.net
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
content-length: 4072
content-type: application/json
date: Fri, 17 Mar 2023 05:28:10 GMT
etag: "fe8-5f280cfb47880"
last-modified: Wed, 18 Jan 2023 02:45:38 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
access-control-allow-origin: *
x-frame-options: SAMEORIGIN
apser: p580
strict-transport-security: max-age=31536000; includeSubDomains; preload
iam_on: 604
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 470 B IP 142.250.74.131:0
Hash 3260ee5e9926a47d06c3844c2db90d24
9329949121606f2628264347db6ec92b0e3843fd
27843ab5af420b02292ca6359080b34764d48b061a556b4c9d8b0de7e688dfba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 82
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 17 Mar 2023 05:28:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 470
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fls.doubleclick.net/json?spot=6100125&src=&var=s_3_Integrate_DFA_get_0&host=integrate.112.2o7.net%2Fdfa_echo%3Fvar%3Ds_3_Integrate_DFA_get_0%26AQE%3D1%26A2S%3D1&ord=1679030890176
142.250.74.166200 OK 44 B URL HTTP/2 fls.doubleclick.net/json?spot=6100125&src=&var=s_3_Integrate_DFA_get_0&host=integrate.112.2o7.net%2Fdfa_echo%3Fvar%3Ds_3_Integrate_DFA_get_0%26AQE%3D1%26A2S%3D1&ord=1679030890176
IP 142.250.74.166:0
File type ASCII text, with no line terminators
Hash ff1b31d1567076ffa8bc5e28be29c61e
9d2b2f76983dc37d73dfd443d4e1938fdf9a3333
599b5fba2273b686374385509a958a71c3f112d02450bcb8086bd635058da7e9
GET /json?spot=6100125&src=&var=s_3_Integrate_DFA_get_0&host=integrate.112.2o7.net%2Fdfa_echo%3Fvar%3Ds_3_Integrate_DFA_get_0%26AQE%3D1%26A2S%3D1&ord=1679030890176 HTTP/1.1
Host: fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 17 Mar 2023 05:28:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 44
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 17-Mar-2023 05:43:10 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 470 B IP 142.250.74.131:0
Hash 3260ee5e9926a47d06c3844c2db90d24
9329949121606f2628264347db6ec92b0e3843fd
27843ab5af420b02292ca6359080b34764d48b061a556b4c9d8b0de7e688dfba
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 82
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 17 Mar 2023 05:28:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 470
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
signin-static-js.att.com/scripts/att_common.js?apg
144.161.77.234200 OK 254 kB URL HTTP/1.1 signin-static-js.att.com/scripts/att_common.js?apg
IP 144.161.77.234:0
File type ASCII text, with very long lines (65377)
Size 254 kB (254224 bytes)
Hash 836965ec6a5a56c1bdea68cf2860e37e
0a233b886a19475b15c33001437c00d64a236f88
9e6446c3df057948a2057248064815c0caab704a702e994162b67121e752bb06
GET /scripts/att_common.js?apg HTTP/1.1
Host: signin-static-js.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Fri, 17 Mar 2023 05:28:10 GMT
last-modified: Thu, 01 Sep 2022 03:51:39 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
via: 1.1 google
transfer-encoding: chunked
access-control-allow-origin: https://signin.att.com
x-frame-options: SAMEORIGIN
cache-control: no-cache, no-store, must-revalidate
expires: 0
age: 1847
x-envoy-upstream-service-time: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
strict-transport-security: max-age=31536000; includeSubDomains; preload
pragma: no-cache
iam_on: 604
Set-Cookie: Kd4zPCrb=A3wvCu6GAQAAaTTPERwDtRDySHfIUxw1jJmcoEbTsHA4311HaBe1LSOBLwTUAVtaKpqcuDv8wH8AAEB3AAAAAA|1|0|e72d76753e2f8f3f1785c768f75a0ddc21978ecf; Max-Age=1577847600; Domain=att.com; Path=/
signin-static-js.att.com/scripts/att_common.js?apg
144.161.77.234200 OK 254 kB URL HTTP/1.1 signin-static-js.att.com/scripts/att_common.js?apg
IP 144.161.77.234:0
File type ASCII text, with very long lines (65377)
Size 254 kB (254224 bytes)
Hash 836965ec6a5a56c1bdea68cf2860e37e
0a233b886a19475b15c33001437c00d64a236f88
9e6446c3df057948a2057248064815c0caab704a702e994162b67121e752bb06
GET /scripts/att_common.js?apg HTTP/1.1
Host: signin-static-js.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
accept-ranges: bytes
content-encoding: gzip
content-type: application/javascript; charset=UTF-8
date: Fri, 17 Mar 2023 05:28:10 GMT
last-modified: Thu, 01 Sep 2022 03:51:39 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Accept-Encoding
via: 1.1 google
transfer-encoding: chunked
access-control-allow-origin: https://signin.att.com
x-frame-options: SAMEORIGIN
cache-control: no-cache, no-store, must-revalidate
expires: 0
age: 1160
x-envoy-upstream-service-time: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
strict-transport-security: max-age=31536000; includeSubDomains; preload
pragma: no-cache
iam_on: 604
Set-Cookie: Kd4zPCrb=A4UxCu6GAQAA2UVxgSsf7TBwY5U7wtQTvv-hadsoeBxcaAM-gXAqzMZZv5khAVtaKpqcuDv8wH8AAEB3AAAAAA|1|0|4d4ed7ee7c9df3355a6a25c6fdd06d6b99c6a874; Max-Age=1577847600; Domain=att.com; Path=/
smetrics.att.com/id?d_visid_ver=3.4.0&d_fieldgroup=A&mcorgid=55633F7A534535110A490D44%40AdobeOrg&mid=44941319477030647502010899913416711927&ts=1679030891238
23.38.201.115200 OK 48 B URL HTTP/2 smetrics.att.com/id?d_visid_ver=3.4.0&d_fieldgroup=A&mcorgid=55633F7A534535110A490D44%40AdobeOrg&mid=44941319477030647502010899913416711927&ts=1679030891238
IP 23.38.201.115:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b3aa12f93c9e0230ef57c7863bbaa8e9
a446aa326602baf76240a11131aa00424856ff8e
aeab751dacb678b0371cfba737995dcd194be85e7fdf2a633cb7881dd296468c
GET /id?d_visid_ver=3.4.0&d_fieldgroup=A&mcorgid=55633F7A534535110A490D44%40AdobeOrg&mid=44941319477030647502010899913416711927&ts=1679030891238 HTTP/1.1
Host: smetrics.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://attonline.blob.core.windows.net
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
p3p: CP="This is not a P3P policy"
server: jag
content-type: application/x-javascript;charset=utf-8
content-length: 48
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
date: Fri, 17 Mar 2023 05:28:11 GMT
set-cookie: s_ecid=MCMID%7C44941319477030647502010899913416711927; Path=/; Domain=att.com; Max-Age=63072000; Expires=Sun, 16 Mar 2025 05:28:28 GMT; SameSite=None; Secure
akamai-grn: 0.0e4f2417.1679030891.18706fc1
X-Firefox-Spdy: h2
att.demdex.net/dest5.html?d_nsid=0
52.50.220.58200 OK 2.8 kB URL HTTP/1.1 att.demdex.net/dest5.html?d_nsid=0
IP 52.50.220.58:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Hash ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: att.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Fri, 17 Mar 2023 05:28:11 GMT
DCS: dcs-prod-irl1-2-v046-0c7c3d8a2.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Wed, 8 Feb 2023 11:53:44 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: PCiicC67R2c=
Content-Length: 2791
Connection: keep-alive
signin-static-js.att.com/__imp_apg__/api/dip/v1/dip
144.161.77.234200 OK 206 B URL HTTP/1.1 signin-static-js.att.com/__imp_apg__/api/dip/v1/dip
IP 144.161.77.234:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6bbcceafbabc890d2b1506b88a05ef0c
3c4d14e4c907dd97902bc5ecf86bf224aed6a836
c19e2233e8c308edfede5f3c6a1caeecd69da22e4373d8d50636951a633503ec
POST /__imp_apg__/api/dip/v1/dip HTTP/1.1
Host: signin-static-js.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 2011
Origin: https://attonline.blob.core.windows.net
Connection: keep-alive
Referer: https://attonline.blob.core.windows.net/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-length: 206
content-type: text/html; charset=UTF-8
date: Fri, 17 Mar 2023 05:28:12 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
vary: Origin
via: 1.1 google
access-control-allow-origin: https://attonline.blob.core.windows.net
x-frame-options: SAMEORIGIN
cache-control: no-cache, no-store, must-revalidate
expires: 0
x-envoy-upstream-service-time: 8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
strict-transport-security: max-age=31536000; includeSubDomains; preload
pragma: no-cache
iam_on: 604
Set-Cookie: Kd4zPCrb=A6A4Cu6GAQAAyt0n1cjLuDWuuCot5EnUz886KwN8wDGSkG-Oke-c8ukQ8eaDAVtaKpqcuDv8wH8AAEB3AAAAAA|1|0|d35436ba144041216d8ddf66dcfe47ddc844cf54; Max-Age=1577847600; Domain=att.com; Path=/
signin-static-js.att.com/__imp_apg__/api/imp/v1.0/report/?m&fq=load
144.161.77.234200 OK 255 B URL HTTP/1.1 signin-static-js.att.com/__imp_apg__/api/imp/v1.0/report/?m&fq=load
IP 144.161.77.234:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8610760fd4142f26e42b50ccdc6411b1
b1d877890dbdcca65f1c76e226aaea77040f8cf5
967e9cd65d9a154477bd9f9635dd285e7345cc0c096d0447375ff930684d6f83
POST /__imp_apg__/api/imp/v1.0/report/?m&fq=load HTTP/1.1
Host: signin-static-js.att.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/plain,*/*;q=0.9
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://attonline.blob.core.windows.net/
content-type: text/plain;charset=UTF-8
Origin: https://attonline.blob.core.windows.net
Content-Length: 576
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-encoding: gzip
content-type: text/plain; charset=UTF-8
date: Fri, 17 Mar 2023 05:28:14 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
via: 1.1 google
transfer-encoding: chunked
access-control-allow-origin: https://attonline.blob.core.windows.net
access-control-allow-methods: OPTIONS, GET, POST
access-control-allow-headers: Accept,DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-credentials: true
x-frame-options: SAMEORIGIN
cache-control: no-cache, no-store, must-revalidate
expires: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
strict-transport-security: max-age=31536000; includeSubDomains; preload
pragma: no-cache
iam_on: 604
Set-Cookie: Kd4zPCrb=A5I-Cu6GAQAAT6Sz-hbJyIKWfj3YoinrFotW6WQsyk219lJbbjBwziBRUmFzAVtaKpqcuDv8wH8AAEB3AAAAAA|1|0|9b7be1fa1ee01612078270f92700fe09d01b890d; Max-Age=1577847600; Domain=att.com; Path=/