Report - www.prizegives.com/apc/63ce7d59-2f3e-42cd-a8cc-be764cff5eb6/81be53b6-0e55-4078-afea-3921dab0d6ea/dfe971ef-81ae-4bdc-bb5c-a5c4e49fd8ff/login?id=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

Report Overview

Submitted URL
www.prizegives.com/apc/63ce7d59-2f3e-42cd-a8cc-be764cff5eb6/81be53b6-0e55-4078-afea-3921dab0d6ea/dfe971ef-81ae-4bdc-bb5c-a5c4e49fd8ff/login?id=OVZtOVVHdURqOXRtSm1vczdUY0JuME9lK1VUenRqeGhoOVZWUWxuUEkxZ3dGTk11Qkh2ZVBwTnRhN3ZRY090THJIdHlnSEdidGE2ekV0VHZpQ1ErbVVIRzNPNDBaVitKVzhpMUZoV2crUkhKQW9JejRBYkVQUGd1UjF5clJwdWVaaGhhMWxUcW1kZWU5bmxPcWY3ODdpNmxMRktrYm5oQ2dvaUo1N3E3LzNtQURQM0dEbUdNeFZtYk8yam8xWDBNZ3VFYlpHR0Rad2kvYXpKeU5OVEJpL3IxRzZ4eDZhT1JNMCtuWTBJKzl5cVZnT1Q5SnEzTTVRZGx4UU1keGliS281bmJhZVFiNENzRnprbWRKa0VNMGd6bnlJOWc1eE5vSHFtRG5mVUwyRnY1K2dOZUl4Y0tNenFEV2VzUHEvRlMyVDBkTk5LdWJxU1lrcHkzSDZxYUZDQzFBU3hzNEdySmE2WnBDcUpSK0poU0svekh3UWVCc1VHR0FGUkdKQ2puOHU1SDIyRGNyMVhKRHRMN25oMXBCUT09
IP
13.107.237.53
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2023-03-28 14:31:27
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
5
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	52.89.222.161
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.8 kB	75 kB	34.120.237.76
www.prizegives.com	unknown	2022-06-06T17:46:36Z	2023-03-29T19:21:20Z	6.5 kB	100 kB	13.107.238.53
aadcdn.msauth.net	1421	2018-11-19T11:50:03Z	2023-03-29T05:22:29Z	1.4 kB	5.6 kB	13.107.238.53
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	2.7 kB	7.1 kB	23.36.76.226
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239
oneocsp.microsoft.com	1473	2020-08-13T08:58:55Z	2023-03-29T05:30:56Z	349 B	2.3 kB	204.79.197.203

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-28 14:31:37	low	Client IP	Internal IP	ET INFO Microsoft Attack Simulation Training Domain in DNS Lookup (prizegives .com)
2023-03-28 14:31:37	low	Client IP	Internal IP	ET INFO Microsoft Defender Attack Simulation Training Domain in DNS Lookup (prizegives .com)
2023-03-28 14:31:37	low	Client IP	Internal IP	ET INFO Microsoft Attack Simulation Training Domain in DNS Lookup (prizegives .com)
2023-03-28 14:31:37	low	Client IP	Internal IP	ET INFO Microsoft Defender Attack Simulation Training Domain in DNS Lookup (prizegives .com)
2023-03-28 14:31:37	low	13.107.238.53	Client IP	ET INFO Observed Microsoft Attack Simulation Training SSL Cert (attemplate .com)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (2)

	URL	Size	First Seen	Last Seen
	www.prizegives.com/Content/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-04-19
Pretty URL www.prizegives.com/Content/jquery-3.5.1.min.js IP 13.107.238.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-04-19 15:45:34 Times Seen14143 Hash b61aa6e2d68d21b3546b5b418bf0e9c3 9c1398f0de4c869dacb1c9ab1a8cc327f5421ff7 f36844906ad2309877aae3121b87fb15b9e09803cb4c333adc7e1e35ac92e14b Loading...

	www.prizegives.com/apc/63ce7d59-2f3e-42cd-a8cc-be764cff5eb6/81be53b6-0e55-4078-afea-3921dab0d6ea/dfe971ef-81ae-4bdc-bb5c-a5c4e49fd8ff/login?id=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	133 B	2023-03-07	2023-04-05
Pretty URL www.prizegives.com/apc/63ce7d59-2f3e-42cd-a8cc-be764cff5eb6/81be53b6-0e55-4078-afea-3921dab0d6ea/dfe971ef-81ae-4bdc-bb5c-a5c4e49fd8ff/login?id=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 IP 13.107.238.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:35 Last Seen2023-04-05 22:13:29 Times Seen133 Hash 9425ba1983746fad60064458b1024818 d148d4c5281448aef3ad1fdfd9e39181eacab1fa 2f49f455e7aa9b8aca1578edce4d095eec897d2eb24c5d1668dab021b7e170c9 Loading...

HTTP Transactions (30)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 93f633ce30c038eb581544323c5a971e 2f60526cb750c6babccc207f75fb5a8ae6f7598b 0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8" Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2627 Expires: Tue, 28 Mar 2023 15:15:03 GMT Date: Tue, 28 Mar 2023 14:31:16 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c83d39f350161ed2f5d20dcd68e47c92 2695a888e652cb314f8094cc6073c3364336d272 62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC" Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12828 Expires: Tue, 28 Mar 2023 18:05:04 GMT Date: Tue, 28 Mar 2023 14:31:16 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 5ad3eec59bebbf969f175627757507c1 b176af3a70db378c9e1f219bab24d9d446070d6f 704fa284035b4c9aa487331b516f5f11c324e204756ae2503bad2606ed34f25e HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "704FA284035B4C9AA487331B516F5F11C324E204756AE2503BAD2606ED34F25E" Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10704 Expires: Tue, 28 Mar 2023 17:29:40 GMT Date: Tue, 28 Mar 2023 14:31:16 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 7f03faaba3392caae6dae54467bfdf6d 57ea1f14e8bfbcca8190c706d708c9fda12442c1 02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Retry-After, Content-Type, Backoff, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 28 Mar 2023 14:28:03 GMT content-type: application/json age: 193 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: iRTIWr2mJ2waDQ03QD2PHYWuL3pwHhnErtRF0XdnGfO9jrwdeP/e6+KadkuzUgYtqCOcCQ1Gt94= x-amz-request-id: 8JNS4FQW53501ZJ0 x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 28 Mar 2023 13:56:14 GMT age: 2102 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	oneocsp.microsoft.com/ocsp	204.79.197.203	200 OK	1.8 kB
URL HTTP/1.1 oneocsp.microsoft.com/ocsp IP 204.79.197.203:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type data Size 1.8 kB (1777 bytes) Hash 9ba603985a5b5e6e2dfa7f988a88d3a9 7b378928a5341d388fe38d2e5e0a0bf46987b820 e4abb65f5879e9bd43ace23c5080ed9cdfc7f245c15fd3aa3b6d81f4d1c1341b HTTP Headers `POST /ocsp HTTP/1.1 Host: oneocsp.microsoft.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 86 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Cache-Control: max-age=86400 Content-Length: 1777 Content-Type: application/ocsp-response Expires: Mon, 03 Apr 2023 15:50:17 GMT Last-Modified: Tue, 28 Mar 2023 05:09:35 GMT ETag: "e4abb65f5879e9bd43ace23c5080ed9cdfc7f245c15fd3aa3b6d81f4d1c1341b" X-Powered-By: ASP.NET x-content-type-options: nosniff X-Cache: CONFIG_NOCACHE X-MSEdge-Ref: Ref A: 2027B4ACB5534C869F5F7DB1493FF161 Ref B: OSL30EDGE0506 Ref C: 2023-03-28T14:31:16Z Date: Tue, 28 Mar 2023 14:31:15 GMT`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 28 Mar 2023 14:31:16 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Last-Modified, Content-Type, Backoff, Alert, Retry-After, Cache-Control, Content-Length, Pragma, Expires, ETag content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 28 Mar 2023 14:17:25 GMT age: 832 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash da5340ee69a1000f751686df9e716663 a5da880a61ed119790a7990bbdcc0c97eecf04f2 d1ff10bfe40f290935abe1feeb975a6af8cf310f9ce9d45bbf482a604da73560 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D1FF10BFE40F290935ABE1FEEB975A6AF8CF310F9CE9D45BBF482A604DA73560" Last-Modified: Mon, 27 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3513 Expires: Tue, 28 Mar 2023 15:29:50 GMT Date: Tue, 28 Mar 2023 14:31:17 GMT Connection: keep-alive`

	push.services.mozilla.com/	52.89.222.161	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.89.222.161:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: d61htEB6JeGbDoJjJA3tzg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: Y0Y/YztcUZ4yxWw67GpxzmsVriY=`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11828 Expires: Tue, 28 Mar 2023 17:48:26 GMT Date: Tue, 28 Mar 2023 14:31:18 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11828 Expires: Tue, 28 Mar 2023 17:48:26 GMT Date: Tue, 28 Mar 2023 14:31:18 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11828 Expires: Tue, 28 Mar 2023 17:48:26 GMT Date: Tue, 28 Mar 2023 14:31:18 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash be1cd1cf8e462ca6f6acb2f132e614d5 037f3bc7ab850fa2c69f2584bb24340b25bb6f3c e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA" Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=11828 Expires: Tue, 28 Mar 2023 17:48:26 GMT Date: Tue, 28 Mar 2023 14:31:18 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10744 bytes) Hash ada29e049501b12a35b0bcc5f68e3e57 5c1ba9bffbcc9007e7f119dbb3197db34a12f8da b45583b5845129386a456e03fbdba25305c8d6d9fb5a8f01d783816ced080629 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb739a909-c509-4c7a-b5a6-250435d88a54.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10744 x-amzn-requestid: d693d820-7eed-47a3-9b0b-8f43c141bd3a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdbogF0poAMFTAg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220c9c-22ab350146e8a3a606f74c42;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:32 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: KAI78tfv0ATn1DQvBGyodBs9UWsIGdj1Fa50KowbUAO4ab2ceaYhMw== via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 21:49:26 GMT age: 60112 etag: "5c1ba9bffbcc9007e7f119dbb3197db34a12f8da" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg	34.120.237.76	200 OK	7.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.5 kB (7537 bytes) Hash 5fdd8a3f935830ca9e5ffdb5824acebc 39caaddec703fdad962d03fff8687bad2c1df4ad 6fe6301fb3610c3e8a9b62671579db53189bb62ead4cf5ab30a1f1e0b90b8ca2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd937575-8f71-4732-8bca-faaeed83b6a1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7537 x-amzn-requestid: 2fb06f69-4757-4ba5-9f20-6e829127b931 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdbqWETgoAMFV5g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220ca8-6421e38b3a0ac0590ffa8b52;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:44 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: JZfiBSqQdWXqpaxSlepC6hEJ888ja6o10GW0KziDifD8KdTmDTn0eQ== via: 1.1 4e4278a2778e72cc34feef6db603088c.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 22:05:18 GMT age: 59160 etag: "39caaddec703fdad962d03fff8687bad2c1df4ad" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg	34.120.237.76	200 OK	9.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.0 kB (8961 bytes) Hash 789f11978a1149984408fbbb9a2b3f81 078bd523107096bab5e26d42b18e316c253f1ca7 7974980290443b64126f512686261150cd27331cb7b32a96d1167a97d046e8a3 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F858e946a-2e67-4e7b-b78f-763226855b6d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8961 x-amzn-requestid: 9277e35d-8fe8-482e-b65c-b132dfcbd87e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdbqBGl0IAMFy4w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220ca6-7869936b33cbf3633c68e7ac;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:42 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: Xz5zjv-po5mgSFz_kkZZ5Hvw9SxY-3d-J2DpvFWxM-iI4jXTsUbiyg== via: 1.1 e92cc925fc8895560cd0628c67f58828.cloudfront.net (CloudFront), 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 google date: Tue, 28 Mar 2023 10:16:22 GMT age: 15296 etag: "078bd523107096bab5e26d42b18e316c253f1ca7" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg	34.120.237.76	200 OK	4.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.0 kB (4000 bytes) Hash 85351059b67b0a42eda7e69a31b3b4b4 b798268806dc2f79f033e5872676019faf0e0cc1 86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4000 x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CJpraEqyoAMFgNQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0 x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: I3GuoZ4ZxAtz0sKe3wrW67aitLlCAbaZkiPw23fl0F3FoumJDEnXiQ== via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google date: Tue, 28 Mar 2023 10:12:21 GMT age: 15537 etag: "b798268806dc2f79f033e5872676019faf0e0cc1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg	34.120.237.76	200 OK	7.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.4 kB (7426 bytes) Hash 1da68df9d96e2758e37b9f15daab027b 5ff19ed6dc5752aa4b15fb88da972b736fd55783 ad924425946dbdf309c764e7097e676185516301feb7722b30d95ffd50b4353f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F53327ce0-8541-4bc8-bd51-59cee099b396.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7426 x-amzn-requestid: 85a30298-4613-4a96-bdba-0899fe9f9475 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdcsgGZsoAMFQkw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220e4f-10db431e7632048d7b15e0ec;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:44:47 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: JDa9YUJ9xo5mo8tb7poZC8XJDp6USTidZjWEwTZCrioJxR7vur6uJw== via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 22:00:12 GMT age: 59466 etag: "5ff19ed6dc5752aa4b15fb88da972b736fd55783" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png	34.120.237.76	200 OK	20 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 20 kB (20349 bytes) Hash b3e093e7b5c12cfc2aee601f823ea47e d76b3958471b2ed70a2b52f078ec638748fdb441 de4fc669195611c4ea6fe7d920482987aef077973b4973c01e2f362aeb18c2ea HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178b294b-fb7e-4482-a48e-31bbcc320554.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 20349 x-amzn-requestid: 8e810007-5602-40d0-b103-da5421381d67 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CdbpjHdcoAMFSuw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64220ca3-22f4671a5cd5fab36268ae3f;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 21:37:39 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: -rX6JXPNzVJyz9ykqPUCTNBUK9NOK2CAwrrVNPsoVfCDIEeH3AS3bQ== via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 google date: Mon, 27 Mar 2023 21:55:30 GMT age: 59748 etag: "d76b3958471b2ed70a2b52f078ec638748fdb441" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.prizegives.com/Content/jquery-3.5.1.min.js	13.107.238.53	200 OK	90 kB
URL HTTP/2 www.prizegives.com/Content/jquery-3.5.1.min.js IP 13.107.238.53:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type ASCII text, with very long lines (65450), with CRLF line terminators Size 90 kB (89478 bytes) Hash b61aa6e2d68d21b3546b5b418bf0e9c3 9c1398f0de4c869dacb1c9ab1a8cc327f5421ff7 f36844906ad2309877aae3121b87fb15b9e09803cb4c333adc7e1e35ac92e14b HTTP Headers GET /Content/jquery-3.5.1.min.js HTTP/1.1 Host: www.prizegives.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.prizegives.com/apc/63ce7d59-2f3e-42cd-a8cc-be764cff5eb6/81be53b6-0e55-4078-afea-3921dab0d6ea/dfe971ef-81ae-4bdc-bb5c-a5c4e49fd8ff/login?id=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 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK content-length: 89478 content-type: application/javascript last-modified: Thu, 16 Mar 2023 08:00:43 GMT accept-ranges: bytes etag: "1d957dd68185a06" request-context: appId= strict-transport-security: max-age=2592000 x-cache: CONFIG_NOCACHE x-azure-ref: 0N/oiZAAAAADC0hfaYmBcSpLG5EFDmYrdU1ZHMjBFREdFMDYwNgAyMDQ2ODBkMy1lN2MyLTRjZTktOGNlNy00ZGJmZWExY2VjODA= date: Tue, 28 Mar 2023 14:31:19 GMT X-Firefox-Spdy: h2`

	aadcdn.msauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg	13.107.238.53	200 OK	1.4 kB
URL HTTP/2 aadcdn.msauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg IP 13.107.238.53:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3651), with no line terminators Size 1.4 kB (1435 bytes) Hash 9f368bc4580fed907775f31c6b26d6cf e393a40b3e337f43057eee3de189f197ab056451 7ecbba946c099539c3d9c03f4b6804958900e5b90d48336eea7e5a2ed050fa36 HTTP Headers `GET /shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1 Host: aadcdn.msauth.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.prizegives.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK cache-control: public, max-age=31536000 content-length: 1435 content-type: image/svg+xml content-encoding: gzip content-md5: nzaLxFgP7ZB3dfMcaybWzw== last-modified: Fri, 17 Jan 2020 19:28:38 GMT etag: 0x8D79B8373CB2849 x-cache: TCP_HIT x-ms-request-id: ceb60484-501e-0022-2eba-5ef044000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref-originshield: 01WEeZAAAAAByuTMrMTDRQrFYQutWL0z1QU1TMDRFREdFMTkxMwAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY= x-azure-ref: 0N/oiZAAAAADUwqPwMPIcSIKboBs9wS1eU1ZHMjBFREdFMDYxMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY= date: Tue, 28 Mar 2023 14:31:19 GMT X-Firefox-Spdy: h2

	aadcdn.msauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg	13.107.238.53	200 OK	621 B
URL HTTP/2 aadcdn.msauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg IP 13.107.238.53:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1592), with no line terminators Size 621 B (621 bytes) Hash 4761405717e938d7e7400bb15715db1e 76fed7c229d353a27db3257f5927c1eaf0ab8de9 f7ed91a1dab5bb2802a7a3b3890df4777588ccbe04903260fba83e6e64c90ddf HTTP Headers `GET /shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg HTTP/1.1 Host: aadcdn.msauth.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.prizegives.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK cache-control: public, max-age=31536000 content-length: 621 content-type: image/svg+xml content-encoding: gzip content-md5: R2FAVxfpONfnQAuxVxXbHg== last-modified: Tue, 10 Nov 2020 03:41:24 GMT etag: 0x8D8852A7FA6B761 x-cache: TCP_HIT x-ms-request-id: 98487408-301e-0060-6aec-5f7551000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref-originshield: 0FeIiZAAAAAAUAfRI7LXoTYCV/ToMsFUnQU1TMDRFREdFMTkyMAAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY= x-azure-ref: 0N/oiZAAAAAA6EwwaUnBBQZExODV3SLJ8U1ZHMjBFREdFMDYxMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY= date: Tue, 28 Mar 2023 14:31:19 GMT X-Firefox-Spdy: h2

	www.prizegives.com/Content/Sign_In_files/style.css	13.107.238.53	200 OK	7.9 kB
URL HTTP/2 www.prizegives.com/Content/Sign_In_files/style.css IP 13.107.238.53:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Unicode text, UTF-8 text, with CRLF line terminators Size 7.9 kB (7868 bytes) Hash bad3e4d73ab8638ef18d6b46780111a9 4c253cf88be490dd7e435bc3abfbbd18d2011227 f116760bd4b44c1a29b36dd4d59729bad9091a9b0e89c2b470bff0086982a822 HTTP Headers GET /Content/Sign_In_files/style.css HTTP/1.1 Host: www.prizegives.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.prizegives.com/apc/63ce7d59-2f3e-42cd-a8cc-be764cff5eb6/81be53b6-0e55-4078-afea-3921dab0d6ea/dfe971ef-81ae-4bdc-bb5c-a5c4e49fd8ff/login?id=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 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK content-length: 7868 content-type: text/css last-modified: Fri, 17 Mar 2023 07:28:14 GMT accept-ranges: bytes etag: "1d958a208d0e5bc" request-context: appId= strict-transport-security: max-age=2592000 x-cache: CONFIG_NOCACHE x-azure-ref: 0N/oiZAAAAADCRrNA7IboQpTRhvCDzexGU1ZHMjBFREdFMDYwNgAyMDQ2ODBkMy1lN2MyLTRjZTktOGNlNy00ZGJmZWExY2VjODA= date: Tue, 28 Mar 2023 14:31:19 GMT X-Firefox-Spdy: h2`

	aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg	13.107.238.53	200 OK	673 B
URL HTTP/2 aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg IP 13.107.238.53:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1864), with no line terminators Size 673 B (673 bytes) Hash 0e176276362b94279a4492511bfcbd98 389fe6b51f62254bb98939896b8c89ebeffe2a02 9a2c174ae45cac057822844211156a5ed293e65c5f69e1d211a7206472c5c80c HTTP Headers `GET /shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1 Host: aadcdn.msauth.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.prizegives.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK cache-control: public, max-age=31536000 content-length: 673 content-type: image/svg+xml content-encoding: gzip content-md5: DhdidjYrlCeaRJJRG/y9mA== last-modified: Wed, 12 Feb 2020 22:01:30 GMT etag: 0x8D7B0071D86E386 x-cache: TCP_HIT x-ms-request-id: 38a1faaa-001e-003f-2436-619f7d000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref-originshield: 0x78iZAAAAAAUhuJdFUIHRpUDYH7W5DN/QU1TMDRFREdFMTgwOQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY= x-azure-ref: 0N/oiZAAAAAClWyL8xp7YSIL02pu8D0mpU1ZHMjBFREdFMDYxMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY= date: Tue, 28 Mar 2023 14:31:19 GMT X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F904edce6-7c76-4531-a179-4144164cbbd1.jpeg	34.120.237.76	200 OK	8.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F904edce6-7c76-4531-a179-4144164cbbd1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.4 kB (8394 bytes) Hash 18fd7af8779cf8321e52f92f5797ec7d dea3b15ef5ad129e736eac0787861c2f635da044 142485409b9fad01710d2a2aa96deccbb953e0a4f00cdac7bf2af9d98390d04a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F904edce6-7c76-4531-a179-4144164cbbd1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: nginx content-length: 8394 x-amzn-requestid: 7f842fb6-0dfe-4eae-a9b5-59a3394552ae x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Cb7VkFtRoAMF-xQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64217289-78aaa1b73a3d10530672a56d;Sampled=0 x-amzn-remapped-date: Mon, 27 Mar 2023 10:40:09 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: TpfXXxs_lllcGY0OKhNeNBuTKohudBPyMQ24kClp5yMIhJ3Hs6WYIw== via: 1.1 304b956e2039e07753fa39109152d594.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google date: Tue, 28 Mar 2023 10:59:51 GMT age: 12694 etag: "dea3b15ef5ad129e736eac0787861c2f635da044" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.prizegives.com/apc/63ce7d59-2f3e-42cd-a8cc-be764cff5eb6/81be53b6-0e55-4078-afea-3921dab0d6ea/dfe971ef-81ae-4bdc-bb5c-a5c4e49fd8ff/login?id=OVZtOVVHdURqOXRtSm1vczdUY0JuME9lK1VUenRqeGhoOVZWUWxuUEkxZ3dGTk11Qkh2ZVBwTnRhN3ZRY090THJIdHlnSEdidGE2ekV0VHZpQ1ErbVVIRzNPNDBaVitKVzhpMUZoV2crUkhKQW9JejRBYkVQUGd1UjF5clJwdWVaaGhhMWxUcW1kZWU5bmxPcWY3ODdpNmxMRktrYm5oQ2dvaUo1N3E3LzNtQURQM0dEbUdNeFZtYk8yam8xWDBNZ3VFYlpHR0Rad2kvYXpKeU5OVEJpL3IxRzZ4eDZhT1JNMCtuWTBJKzl5cVZnT1Q5SnEzTTVRZGx4UU1keGliS281bmJhZVFiNENzRnprbWRKa0VNMGd6bnlJOWc1eE5vSHFtRG5mVUwyRnY1K2dOZUl4Y0tNenFEV2VzUHEvRlMyVDBkTk5LdWJxU1lrcHkzSDZxYUZDQzFBU3hzNEdySmE2WnBDcUpSK0poU0svekh3UWVCc1VHR0FGUkdKQ2puOHU1SDIyRGNyMVhKRHRMN25oMXBCUT09	13.107.238.53	200 OK	0 B
URL HTTP/2 www.prizegives.com/apc/63ce7d59-2f3e-42cd-a8cc-be764cff5eb6/81be53b6-0e55-4078-afea-3921dab0d6ea/dfe971ef-81ae-4bdc-bb5c-a5c4e49fd8ff/login?id=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 IP 13.107.238.53:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers GET /apc/63ce7d59-2f3e-42cd-a8cc-be764cff5eb6/81be53b6-0e55-4078-afea-3921dab0d6ea/dfe971ef-81ae-4bdc-bb5c-a5c4e49fd8ff/login?id=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 HTTP/1.1 Host: www.prizegives.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 `HTTP/2 200 OK content-type: text/html; charset=utf-8 request-context: appId= strict-transport-security: max-age=2592000 x-cache: CONFIG_NOCACHE x-azure-ref: 0NPoiZAAAAAAF7ih6Kj/vR4DJUpL9VCYGU1ZHMjBFREdFMDYwNgAyMDQ2ODBkMy1lN2MyLTRjZTktOGNlNy00ZGJmZWExY2VjODA= date: Tue, 28 Mar 2023 14:31:19 GMT X-Firefox-Spdy: h2`

	www.prizegives.com/Content/bootstrap.min.js	13.107.238.53	500 Internal Server Error	0 B
URL HTTP/2 www.prizegives.com/Content/bootstrap.min.js IP 13.107.238.53:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers GET /Content/bootstrap.min.js HTTP/1.1 Host: www.prizegives.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.prizegives.com/apc/63ce7d59-2f3e-42cd-a8cc-be764cff5eb6/81be53b6-0e55-4078-afea-3921dab0d6ea/dfe971ef-81ae-4bdc-bb5c-a5c4e49fd8ff/login?id=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 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 500 Internal Server Error content-type: text/html; charset=utf-8 request-context: appId= strict-transport-security: max-age=2592000 x-cache: CONFIG_NOCACHE x-azure-ref: 0N/oiZAAAAADoFdYPwaTFTYvX7NNRrzjuU1ZHMjBFREdFMDYwNgAyMDQ2ODBkMy1lN2MyLTRjZTktOGNlNy00ZGJmZWExY2VjODA= date: Tue, 28 Mar 2023 14:31:19 GMT X-Firefox-Spdy: h2`

	www.prizegives.com/Scripts/jquery-1.10.2.min.js	13.107.238.53	500 Internal Server Error	0 B
URL HTTP/2 www.prizegives.com/Scripts/jquery-1.10.2.min.js IP 13.107.238.53:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers GET /Scripts/jquery-1.10.2.min.js HTTP/1.1 Host: www.prizegives.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.prizegives.com/apc/63ce7d59-2f3e-42cd-a8cc-be764cff5eb6/81be53b6-0e55-4078-afea-3921dab0d6ea/dfe971ef-81ae-4bdc-bb5c-a5c4e49fd8ff/login?id=OVZtOVVHdURqOXRtSm1vczdUY0JuME9lK1VUenRqeGhoOVZWUWxuUEkxZ3dGTk11Qkh2ZVBwTnRhN3ZRY090THJIdHlnSEdidGE2ekV0VHZpQ1ErbVVIRzNPNDBaVitKVzhpMUZoV2crUkhKQW9JejRBYkVQUGd1UjF5clJwdWVaaGhhMWxUcW1kZWU5bmxPcWY3ODdpNmxMRktrYm5oQ2dvaUo1N3E3LzNtQURQM0dEbUdNeFZtYk8yam8xWDBNZ3VFYlpHR0Rad2kvYXpKeU5OVEJpL3IxRzZ4eDZhT1JNMCtuWTBJKzl5cVZnT1Q5SnEzTTVRZGx4UU1keGliS281bmJhZVFiNENzRnprbWRKa0VNMGd6bnlJOWc1eE5vSHFtRG5mVUwyRnY1K2dOZUl4Y0tNenFEV2VzUHEvRlMyVDBkTk5LdWJxU1lrcHkzSDZxYUZDQzFBU3hzNEdySmE2WnBDcUpSK0poU0svekh3UWVCc1VHR0FGUkdKQ2puOHU1SDIyRGNyMVhKRHRMN25oMXBCUT09 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 500 Internal Server Error content-type: text/html; charset=utf-8 request-context: appId= strict-transport-security: max-age=2592000 x-cache: CONFIG_NOCACHE x-azure-ref: 0N/oiZAAAAACLu7AOKQ6aT4zZlRuLl+jMU1ZHMjBFREdFMDYwNgAyMDQ2ODBkMy1lN2MyLTRjZTktOGNlNy00ZGJmZWExY2VjODA= date: Tue, 28 Mar 2023 14:31:20 GMT X-Firefox-Spdy: h2`

	www.prizegives.com/Content/bootstrap.min.js	13.107.238.53	500 Internal Server Error	0 B
URL HTTP/2 www.prizegives.com/Content/bootstrap.min.js IP 13.107.238.53:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers GET /Content/bootstrap.min.js HTTP/1.1 Host: www.prizegives.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.prizegives.com/apc/63ce7d59-2f3e-42cd-a8cc-be764cff5eb6/81be53b6-0e55-4078-afea-3921dab0d6ea/dfe971ef-81ae-4bdc-bb5c-a5c4e49fd8ff/login?id=OVZtOVVHdURqOXRtSm1vczdUY0JuME9lK1VUenRqeGhoOVZWUWxuUEkxZ3dGTk11Qkh2ZVBwTnRhN3ZRY090THJIdHlnSEdidGE2ekV0VHZpQ1ErbVVIRzNPNDBaVitKVzhpMUZoV2crUkhKQW9JejRBYkVQUGd1UjF5clJwdWVaaGhhMWxUcW1kZWU5bmxPcWY3ODdpNmxMRktrYm5oQ2dvaUo1N3E3LzNtQURQM0dEbUdNeFZtYk8yam8xWDBNZ3VFYlpHR0Rad2kvYXpKeU5OVEJpL3IxRzZ4eDZhT1JNMCtuWTBJKzl5cVZnT1Q5SnEzTTVRZGx4UU1keGliS281bmJhZVFiNENzRnprbWRKa0VNMGd6bnlJOWc1eE5vSHFtRG5mVUwyRnY1K2dOZUl4Y0tNenFEV2VzUHEvRlMyVDBkTk5LdWJxU1lrcHkzSDZxYUZDQzFBU3hzNEdySmE2WnBDcUpSK0poU0svekh3UWVCc1VHR0FGUkdKQ2puOHU1SDIyRGNyMVhKRHRMN25oMXBCUT09 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 500 Internal Server Error content-type: text/html; charset=utf-8 request-context: appId= strict-transport-security: max-age=2592000 x-cache: CONFIG_NOCACHE x-azure-ref: 0OPoiZAAAAAAjsdUG88yuQYTGOgJC8xiTU1ZHMjBFREdFMDYwNgAyMDQ2ODBkMy1lN2MyLTRjZTktOGNlNy00ZGJmZWExY2VjODA= date: Tue, 28 Mar 2023 14:31:20 GMT X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (2)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (30)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type