Report - connect.chronicle.com/preference-center-COP.html

Report Overview

Submitted URL
connect.chronicle.com/preference-center-COP.html
IP
104.17.72.206
ASN
#13335 CLOUDFLARENET
Submitted
2022-10-24 13:59:31
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	1.3 kB	3.5 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	401 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	987 B	2.2 kB	93.184.220.29
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	594 B	127 B	52.39.57.61
cdn.blueconic.net	6883	2016-10-03T10:47:59Z	2023-03-09T10:31:39Z	359 B	42 kB	54.230.111.91
931-eka-218.mktoresp.com	221064	2019-03-22T09:13:05Z	2023-03-06T01:26:46Z	696 B	305 B	192.28.144.124
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	321 B	229 B	34.117.237.239
connect.chronicle.com	243148	2019-04-10T02:46:28Z	2023-03-06T01:24:55Z	6.9 kB	165 kB	104.17.74.206
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-10T05:10:00Z	758 B	2.8 kB	143.204.55.36
munchkin.marketo.net	3550	2012-12-17T01:39:54Z	2023-03-10T12:40:34Z	727 B	6.4 kB	88.221.99.189
c950.chronicle.com	236132	2021-04-16T12:40:33Z	2023-03-06T01:26:45Z	4.5 kB	71 kB	143.204.55.61
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	66 kB	34.120.237.76
marketoerror.chronicle.com	unknown	2022-07-18T20:57:13Z	2022-12-01T16:39:26Z	685 B	1.0 kB	54.230.111.34
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	338 B	984 B	143.204.42.158

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	c950.chronicle.com/plugin/library/748e4b8d10a1593c32c694829bde03fa	448 kB	2023-03-10	2023-03-10
Pretty URL c950.chronicle.com/plugin/library/748e4b8d10a1593c32c694829bde03fa IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:23:23 Last Seen2023-03-10 18:11:49 Times Seen1 Hash 748e4b8d10a1593c32c694829bde03fa 5d09f21809b53207dd26c14616cfa0806c8dcc59 8f47af6c71293b2a529616b4eb9e58c1eab515109444e9ebd03661e73d6a0d84 Loading...

	cdn.blueconic.net/chronicle.js	140 kB	2023-03-07	2023-03-10
Pretty URL cdn.blueconic.net/chronicle.js IP 54.230.111.91 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:57:57 Last Seen2023-03-10 14:23:26 Times Seen1 Hash ca0c09e1098eb5b9b67ddb49cbf0fe90 8ea5848f2e28584accbd53e01335cfc1909c167a 7fa283fdec1282353a15502f236d180f52d971ccf743ffdbbddf58ce64979f3d Loading...

	connect.chronicle.com/preference-center-COP.html	499 B	2023-03-10	2024-02-01
Pretty URL connect.chronicle.com/preference-center-COP.html IP 104.17.74.206 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:23:23 Last Seen2024-02-01 19:17:14 Times Seen19 Hash bf9c28e588484ed580a5da9e3884d6ff 6e9d95f8fe723c54b12e82c893e212cb8836aef2 a9fbc5b35b06ad4f41f05a75cf79028255c3a28f4352df4e8b802710a858a114 Loading...

	connect.chronicle.com/preference-center-COP.html	310 B	2023-03-10	2023-12-07
Pretty URL connect.chronicle.com/preference-center-COP.html IP 104.17.74.206 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:23:23 Last Seen2023-12-07 05:44:56 Times Seen5 Hash e2b938747ef48692f99bc99abff7f0dc de5c49089a284159341e05243da5a40e2cb0838b 9009a5321cca764bcf991a23da4fe27658e0d095ca63a7e20fb1c1f4dac74296 Loading...

	connect.chronicle.com/js/forms2/js/forms2.min.js	213 kB	2023-03-08	2024-04-03
Pretty URL connect.chronicle.com/js/forms2/js/forms2.min.js IP 104.17.74.206 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:11:29 Last Seen2024-04-03 22:21:38 Times Seen1285 Hash f5412edf272d432f2a4c2af0b83bcc2a f70a3689dbe815e0f5d030b5ec21dcbf96b3b29f 0694124dd8cf871b521cf06ce0b2419ebbe18d3f45658b50c4b038b647fbc849 Loading...

	connect.chronicle.com/preference-center-COP.html	10 kB	2023-03-10	2023-03-10
Pretty URL connect.chronicle.com/preference-center-COP.html IP 104.17.74.206 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:23:23 Last Seen2023-03-10 14:23:26 Times Seen1 Hash c897965940c49d0361006cafd027a817 938efc78ef147d986c14298955bc583690aaf3c5 d587fe181e5d77d2eca6a1c085c430c4f5876be9d5376302b66c2b25f5e6b784 Loading...

	connect.chronicle.com/preference-center-COP.html	9.9 kB	2023-03-10	2023-03-10
Pretty URL connect.chronicle.com/preference-center-COP.html IP 104.17.74.206 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:23:23 Last Seen2023-03-10 14:23:26 Times Seen1 Hash 0facc2d0391552ab44ee043edf400fdc ca40472ea2875abfd0b2035664c81fe1d0fa098f e1ceca678d89ad51fe42e63752bc44a82e4a90080f5bf00049259de0bfdfe8e0 Loading...

	munchkin.marketo.net//munchkin.js	1.3 kB	2023-03-07	2023-03-26
Pretty URL munchkin.marketo.net//munchkin.js IP 88.221.99.189 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:16:17 Last Seen2023-03-26 05:09:23 Times Seen2 Hash 92b41a298690c047b0c4602dd843cba4 113a9f02379bc6a5f57352c650f31eb36dc30e55 91a50850c517899e1c975079158949f7a500ddf5a7307fe36bf50092926beedc Loading...

	connect.chronicle.com/preference-center-COP.html	84 B	2023-03-10	2023-08-14
Pretty URL connect.chronicle.com/preference-center-COP.html IP 104.17.74.206 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:23:23 Last Seen2023-08-14 20:59:00 Times Seen2 Hash 515bb4e6bba2da8fcbe5e60c4a1406c7 a8a9007ea7277f9ac79230620c12a5eacba1ee7a 22494afc6de7effcd2a52f08e0ca1b875dcc609ea317e8fb44c5121f6b05e528 Loading...

	connect.chronicle.com/js/stripmkttok.js	1.5 kB	2023-03-07	2024-04-24
Pretty URL connect.chronicle.com/js/stripmkttok.js IP 104.17.74.206 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:38:11 Last Seen2024-04-24 13:33:26 Times Seen1470 Hash 19cfad3d14d21907820ad1a443f75427 738250ad711f2e478f4448e6e65876fbcdbc3653 f7545b96ed2740220c349ae9deb614faf1f0f211d4cf710788e0790f74cc9715 Loading...

	c950.chronicle.com/plugin/plugin/5746910b43ff743cc24d868ffcc74f48	273 kB	2023-03-10	2023-03-10
Pretty URL c950.chronicle.com/plugin/plugin/5746910b43ff743cc24d868ffcc74f48 IP 143.204.55.61 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:23:23 Last Seen2023-03-10 18:11:49 Times Seen1 Hash 5746910b43ff743cc24d868ffcc74f48 26bea0523c898b577d2337f0364e9699c84de822 92f883928497b0c6a6f74a5c9b9cff2aaa10405519912f933759fab7c0f2b2f3 Loading...

	munchkin.marketo.net/162/munchkin.js	11 kB	2023-03-07	2023-04-19
Pretty URL munchkin.marketo.net/162/munchkin.js IP 88.221.99.189 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:31 Last Seen2023-04-19 07:11:13 Times Seen43 Hash 75daf56f6191efe42577301908659c29 36755bfde0d722baa6794d18d2b8c57ca4a738e0 5d4972183041556a4368526fbac13acafc83de9ff3ca29ce81f31eb29c8f8a57 Loading...

HTTP Transactions (40)

	URL	IP	Response	Size
	connect.chronicle.com/preference-center-COP.html	104.17.74.206	301 Moved Permanently	264 B
URL HTTP/1.1 connect.chronicle.com/preference-center-COP.html IP 104.17.74.206:0 ASN #13335 CLOUDFLARENET File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 264 B (264 bytes) Hash 79a81cb60293c5750c188ecd9c0b8790 0d30ca791d01dcf92ad27fc8e377b849eaaec4b5 76fb7fc9a615b04de4fb262e33838bc4d93e3ef53b9161b045db6ceec33833f5 HTTP Headers `GET /preference-center-COP.html HTTP/1.1 Host: connect.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` HTTP/1.1 301 Moved Permanently Date: Mon, 24 Oct 2022 13:59:20 GMT Content-Type: text/html; charset=iso-8859-1 Transfer-Encoding: chunked Connection: keep-alive Location: https://connect.chronicle.com/preference-center-COP.html Vary: Accept-Encoding X-Cache-Status: MISS X-MKTO-Nginx-Cache: true CF-Cache-Status: DYNAMIC Set-Cookie: __cf_bm=s2SWUTExqg__jZo8oW3f0eZZIra3YW1rw5MugjBFtuU-1666619960-0-Acj2LNxa5fQQ9upEOjscNQnb2crqfCmcEI62L1fw3+iZ//Sw3KByJIbc+hu0g7ox2z///oX7ppachwuvv1V25oo=; path=/; expires=Mon, 24-Oct-22 14:29:20 GMT; domain=.connect.chronicle.com; HttpOnly; SameSite=None Server: cloudflare CF-RAY: 75f33b809d98b51b-OSL

	firefox.settings.services.mozilla.com/v1/	143.204.55.36	200 OK	939 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/ IP 143.204.55.36:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash bdb8b66c705a7b996496d780f50c00b5 403ae92039fcc933870f51f913f78ccaf9652256 c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Alert, Content-Length, Content-Type, Retry-After, Backoff Cache-Control: max-age=3600 Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Mon, 24 Oct 2022 13:23:33 GMT Expires: Mon, 24 Oct 2022 14:06:41 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: QUyANiHbMO88ymjIRAY2DCyyWZtnMJzNey8HtbkmT8T1-Q7ERnIrRw== Age: 2147

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 73c4166ca864f777db2cc1cd8658a7c2 c56b66b0b7c8516d4d5bfafe0c166711c78f3d25 310c633350812c064e159275b6dbbdba6d6a5991a54ccfcc23459320c6513572 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "310C633350812C064E159275B6DBBDBA6D6A5991A54CCFCC23459320C6513572" Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7136 Expires: Mon, 24 Oct 2022 15:58:16 GMT Date: Mon, 24 Oct 2022 13:59:20 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ae56efd62a0d9249d98573172eb8b28b 5ff4e9959be677ad76c26ca73f9ef4feb9fa2f28 82d9ee4948fce839f7edb1f8490c4213cded3912464a4169b0bf6a61278694bd HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "82D9EE4948FCE839F7EDB1F8490C4213CDED3912464A4169B0BF6A61278694BD" Last-Modified: Sat, 22 Oct 2022 14:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7116 Expires: Mon, 24 Oct 2022 15:57:56 GMT Date: Mon, 24 Oct 2022 13:59:20 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: 7DanGiapPrkW8flmyEh0xB/MPoBtFdC7Y42Cg3g0UeawpC6hUecIHMCxxLkSzVpkc5wA2B9Kn64= x-amz-request-id: 1AW7M215XGEM7VM7 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 24 Oct 2022 13:08:31 GMT age: 3049 last-modified: Fri, 30 Sep 2022 18:50:55 GMT etag: "67d5a988edcda47bc3b3b3f65d32b4b6" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 24 Oct 2022 13:59:20 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash 4a5c0bec6e13284b901409195ff754ef 1dce3aecc6d65a11641071ade69ba68741918636 8939f2fbaba9ba6349c214fa1e2aed58602b09650e4f8ce48365853ed5cc21a7 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=146274 Content-Type: application/ocsp-response Date: Mon, 24 Oct 2022 13:59:20 GMT Etag: "6356329a-116" Expires: Wed, 26 Oct 2022 06:37:14 GMT Last-Modified: Mon, 24 Oct 2022 06:37:14 GMT Server: nginx Content-Length: 278`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	143.204.55.36	200 OK	329 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 143.204.55.36:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Cache-Control: max-age=3600 Date: Mon, 24 Oct 2022 13:33:32 GMT Expires: Mon, 24 Oct 2022 13:57:55 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 9qXd45Oo9Sd1NZy_rxoUL-O4qNr_L850ygB7FySnc9XN_j5uJ5CqQQ== Age: 1549

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 7c6fdc8e76ef5875b5c965ade2df503e 45d548aa2a9d7ede163743274790700878eaea62 d2ff6eacd48af4892a2642e5d7bb925ca683062139f5a5cb4047f6f706830618 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2280 Cache-Control: max-age=153924 Content-Type: application/ocsp-response Date: Mon, 24 Oct 2022 13:59:21 GMT Etag: "63564795-1d7" Expires: Wed, 26 Oct 2022 08:44:45 GMT Last-Modified: Mon, 24 Oct 2022 08:06:45 GMT Server: ECS (ska/F71A) X-Cache: HIT Content-Length: 471`

	munchkin.marketo.net//munchkin.js	88.221.99.189	200 OK	728 B
URL HTTP/1.1 munchkin.marketo.net//munchkin.js IP 88.221.99.189:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (521) Size 728 B (728 bytes) Hash 51a92d8c69733d719447dea0416ed039 69f4c1e0b7ebba812bc096708d57627927dff265 cb483c0ea4012ac512bcba6204b37622b388c1aefd4ae9028f60abb965f23d29 HTTP Headers `GET //munchkin.js HTTP/1.1 Host: munchkin.marketo.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://connect.chronicle.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Type: application/x-javascript ETag: "92b41a298690c047b0c4602dd843cba4:1662686319.691662" Last-Modified: Fri, 09 Sep 2022 01:18:39 GMT Server: AkamaiNetStorage Vary: Accept-Encoding Content-Encoding: gzip Date: Mon, 24 Oct 2022 13:59:21 GMT Content-Length: 728 Connection: keep-alive P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"`

	cdn.blueconic.net/chronicle.js	54.230.111.91	200 OK	41 kB
URL HTTP/2 cdn.blueconic.net/chronicle.js IP 54.230.111.91:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (14598) Size 41 kB (41147 bytes) Hash 83b2c16f1a5b462b483e6b0cfc9c130e 59bed7917d460f8a3855c388e8cdd7534672aeac b595cb20b63dabcbcde225f28ecc438b593a6fbc13879ada4a4e1430efbe915d HTTP Headers `GET /chronicle.js HTTP/1.1 Host: cdn.blueconic.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://connect.chronicle.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/javascript; charset=utf-8 content-length: 41147 server: - last-modified: Tue, 16 Aug 2022 20:14:24 GMT accept-ranges: none content-encoding: gzip x-content-type-options: nosniff x-robots-tag: noindex, nofollow x-permitted-cross-domain-policies: master-only x-xss-protection: 1; mode=block date: Mon, 24 Oct 2022 13:59:21 GMT cache-control: public, max-age=600, s-maxage=500 etag: "22141-5e66164feb6c0-gzip" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 4p1wZEj0_HyTMSOPkjl2L0gV-6wlHfIBgJyWZmUH7A10_pkwNzo3cQ== age: 73 X-Firefox-Spdy: h2

	connect.chronicle.com/css/mktLPSupportCompat.css	104.17.74.206	200 OK	635 B
URL HTTP/2 connect.chronicle.com/css/mktLPSupportCompat.css IP 104.17.74.206:0 ASN #13335 CLOUDFLARENET File type ASCII text Size 635 B (635 bytes) Hash 742fdc6434a4b2a84369f67cc56572c5 92bd3d8493a55d70cba8243dc8349d3fd208295f 05d86916083ddd16a026401d56f79543e3f5fdcf88d63e72768d473c42643c8b HTTP Headers GET /css/mktLPSupportCompat.css HTTP/1.1 Host: connect.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://connect.chronicle.com/preference-center-COP.html Cookie: BIGipServerab33web-nginx-app_https=!y04T9iDkNs/eLSbn/+ZT2Dlakae2C5Xn85S2EkR195k5PjflUsd7d5BpDo/I4pfbAEeqdQ8fTtt+1RA=; __cf_bm=euoz2zI_ihv.zB5d_9fkn3z_yyVsIClVhcoihQrRzMc-1666619961-0-AfKh5Q6anGysiBR0dx3jKlTGRBV54t+rQhnyWhIIshNwGcv3hmPJdGGrOtBiTlepYpRS3IMl8lcEaNUolucFqO0= Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Mon, 24 Oct 2022 13:59:21 GMT content-type: text/css content-length: 635 last-modified: Tue, 04 Oct 2022 18:03:55 GMT etag: "2021520-633-5ea39489038c0" vary: Accept-Encoding content-encoding: gzip x-content-type-options: nosniff cf-cache-status: MISS expires: Mon, 24 Oct 2022 17:59:21 GMT cache-control: public, max-age=14400 accept-ranges: bytes server: cloudflare cf-ray: 75f33b86ba0ab4fd-OSL X-Firefox-Spdy: h2`

	connect.chronicle.com/preference-center-COP.html	104.17.74.206	200 OK	13 kB
URL HTTP/2 connect.chronicle.com/preference-center-COP.html IP 104.17.74.206:0 ASN #13335 CLOUDFLARENET File type data Size 13 kB (13315 bytes) Hash 0944a37114643b57fd4607b3bfc47760 eb46b1865c7690a1e5305b982f5bf15d2cc6a6b6 568ca43aa50692094cae3736dc0c67cfc61133bb8d6a2abcfcc82db89e5e8b35 HTTP Headers `GET /preference-center-COP.html HTTP/1.1 Host: connect.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Mon, 24 Oct 2022 13:59:21 GMT content-type: text/html; charset=utf-8 cache-control: stale-while-revalidate=60, max-age=300, public p3p: CP="CAO CURa ADMa DEVa TAIa OUR IND UNI COM NAV INT" x-asset-type: LP vary: *,Accept-Encoding x-content-type-options: nosniff x-cache-status: EXPIRED x-mkto-nginx-cache: true cf-cache-status: DYNAMIC set-cookie: BIGipServerab33web-nginx-app_https=!y04T9iDkNs/eLSbn/+ZT2Dlakae2C5Xn85S2EkR195k5PjflUsd7d5BpDo/I4pfbAEeqdQ8fTtt+1RA=; Path=/; Version=1; Secure; Httponly __cf_bm=euoz2zI_ihv.zB5d_9fkn3z_yyVsIClVhcoihQrRzMc-1666619961-0-AfKh5Q6anGysiBR0dx3jKlTGRBV54t+rQhnyWhIIshNwGcv3hmPJdGGrOtBiTlepYpRS3IMl8lcEaNUolucFqO0=; path=/; expires=Mon, 24-Oct-22 14:29:21 GMT; domain=.connect.chronicle.com; HttpOnly; Secure; SameSite=None server: cloudflare cf-ray: 75f33b83fdf6b4fd-OSL content-encoding: gzip X-Firefox-Spdy: h2

	connect.chronicle.com/js/stripmkttok.js	104.17.74.206	200 OK	678 B
URL HTTP/2 connect.chronicle.com/js/stripmkttok.js IP 104.17.74.206:0 ASN #13335 CLOUDFLARENET File type ASCII text Size 678 B (678 bytes) Hash 3fdef86d42eeb7dfcfb73a530ee91fc5 2607ea641352760e576457f45118a7669410f985 8a52a2135e190805e486c15721ae5af8a353d2882d515a316aa106e8c0a38099 HTTP Headers GET /js/stripmkttok.js HTTP/1.1 Host: connect.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://connect.chronicle.com/preference-center-COP.html Cookie: BIGipServerab33web-nginx-app_https=!y04T9iDkNs/eLSbn/+ZT2Dlakae2C5Xn85S2EkR195k5PjflUsd7d5BpDo/I4pfbAEeqdQ8fTtt+1RA=; __cf_bm=euoz2zI_ihv.zB5d_9fkn3z_yyVsIClVhcoihQrRzMc-1666619961-0-AfKh5Q6anGysiBR0dx3jKlTGRBV54t+rQhnyWhIIshNwGcv3hmPJdGGrOtBiTlepYpRS3IMl8lcEaNUolucFqO0= Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Mon, 24 Oct 2022 13:59:21 GMT content-type: application/x-javascript content-length: 678 last-modified: Tue, 04 Oct 2022 18:03:50 GMT etag: "2040e38-602-5ea394843ed80" vary: Accept-Encoding content-encoding: gzip x-content-type-options: nosniff cf-cache-status: MISS expires: Mon, 24 Oct 2022 17:59:21 GMT cache-control: public, max-age=14400 accept-ranges: bytes server: cloudflare cf-ray: 75f33b86ca16b4fd-OSL X-Firefox-Spdy: h2`

	push.services.mozilla.com/	52.39.57.61	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.39.57.61:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: MkR+CClBbFqYqlHh+EXbaA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: uBpf9hI/nfgDNz1YgKo5axBXLYo=`

	c950.chronicle.com/DG/DEFAULT/rest/rpc/1058?referer=https%3A%2F%2Fconnect.chronicle.com%2Fpreference-center-COP.html&bcsessionid=&bctempid=&overruleReferrer=&time=2022-10-24T13%3A59%3A20%2B00%3A00&ts=1666619960552	143.204.55.61	200 OK	4.0 kB
URL HTTP/2 c950.chronicle.com/DG/DEFAULT/rest/rpc/1058?referer=https%3A%2F%2Fconnect.chronicle.com%2Fpreference-center-COP.html&bcsessionid=&bctempid=&overruleReferrer=&time=2022-10-24T13%3A59%3A20%2B00%3A00&ts=1666619960552 IP 143.204.55.61:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (19078), with no line terminators Size 4.0 kB (3994 bytes) Hash ea1d1cf5cba9bfdb4744003c151c4a88 162a4ecd6041bc08fc7dfbc5f44833e6d4031833 44d3fa68a47a929cf0a7fd9fe8bb16caa9a401e3326b80c135aec84cb2588da0 HTTP Headers POST /DG/DEFAULT/rest/rpc/1058?referer=https%3A%2F%2Fconnect.chronicle.com%2Fpreference-center-COP.html&bcsessionid=&bctempid=&overruleReferrer=&time=2022-10-24T13%3A59%3A20%2B00%3A00&ts=1666619960552 HTTP/1.1 Host: c950.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 825 Origin: https://connect.chronicle.com Connection: keep-alive Referer: https://connect.chronicle.com/ Cookie: bc_tstgrp=10 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site HTTP/2 200 OK content-type: application/json; charset=utf-8 content-length: 3994 date: Mon, 24 Oct 2022 13:59:21 GMT set-cookie: AWSALB=w1SZJuw08HDVQlA+TSovB8AJIJkR44Zg3fzEIL/hTooqXQLQQpex2yzNjouu7wul6Vz49kG3bxsFMnqBq504XMJFgi6ZV/B9nibGvEHu3cYbt8LOP/S4U0bf+raj; Expires=Mon, 31 Oct 2022 13:59:21 GMT; Path=/ AWSALBCORS=w1SZJuw08HDVQlA+TSovB8AJIJkR44Zg3fzEIL/hTooqXQLQQpex2yzNjouu7wul6Vz49kG3bxsFMnqBq504XMJFgi6ZV/B9nibGvEHu3cYbt8LOP/S4U0bf+raj; Expires=Mon, 31 Oct 2022 13:59:21 GMT; Path=/; SameSite=None; Secure BCTempID=c112f769-458b-4b41-ada3-a2bc027b2dee;Path=/DG/DEFAULT;Expires=Mon, 24-Oct-2022 14:09:21 GMT;Secure;SameSite=None BCReferrerOverrule="";Version=1;Path=/;Expires=Thu, 01-Jan-1970 00:00:00 GMT;Max-Age=0;Secure;HttpOnly;SameSite=None server: - x-content-type-options: nosniff x-permitted-cross-domain-policies: master-only x-robots-tag: noindex, nofollow x-xss-protection: 1; mode=block p3p: policyref="", CP="DSP" access-control-allow-origin: https://connect.chronicle.com access-control-allow-credentials: true pragma: no-cache expires: Thu, 01 Jan 1970 00:00:00 GMT cache-control: no-cache, no-store, no-transform, must-revalidate, private content-encoding: gzip x-cache: Miss from cloudfront via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 3zWooU-LUJccX0z47jGTZrBqxP03Aw7H7GWrpIRmsWGwHY4ktnhgLg== X-Firefox-Spdy: h2

	c950.chronicle.com/plugin/plugin/5746910b43ff743cc24d868ffcc74f48	143.204.55.61	200 OK	61 kB
URL HTTP/2 c950.chronicle.com/plugin/plugin/5746910b43ff743cc24d868ffcc74f48 IP 143.204.55.61:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 61 kB (60578 bytes) Hash 38d9d5664f4eeb2f5132f76c342adcd1 c2c393803b0206568f4952c5d6f410e7e91f054e 62ce3beceabe5c1a8b5db2c23b88070a7d5add216c557a9b115cdee68d70428f HTTP Headers GET /plugin/plugin/5746910b43ff743cc24d868ffcc74f48 HTTP/1.1 Host: c950.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://connect.chronicle.com/ Cookie: bc_tstgrp=10; AWSALB=w1SZJuw08HDVQlA+TSovB8AJIJkR44Zg3fzEIL/hTooqXQLQQpex2yzNjouu7wul6Vz49kG3bxsFMnqBq504XMJFgi6ZV/B9nibGvEHu3cYbt8LOP/S4U0bf+raj; AWSALBCORS=w1SZJuw08HDVQlA+TSovB8AJIJkR44Zg3fzEIL/hTooqXQLQQpex2yzNjouu7wul6Vz49kG3bxsFMnqBq504XMJFgi6ZV/B9nibGvEHu3cYbt8LOP/S4U0bf+raj Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK content-type: text/javascript; charset=utf-8 content-length: 60578 date: Mon, 03 Oct 2022 13:20:06 GMT server: - x-content-type-options: nosniff x-permitted-cross-domain-policies: master-only x-robots-tag: noindex, nofollow x-xss-protection: 1; mode=block p3p: policyref="", CP="DSP" cache-control: public, no-cache="Set-Cookie", max-age=31536000 etag: 5746910b43ff743cc24d868ffcc74f48 expires: Tue, 03 Oct 2023 13:20:06 GMT last-modified: Sun, 02 Oct 2022 13:20:06 GMT content-encoding: gzip x-cache: Hit from cloudfront via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: 1WBhGIf2vInky_bfLghQPVdYSwCAkrMnSrW27Lpui5-wFk0lQFby_w== age: 1816756 X-Firefox-Spdy: h2

	connect.chronicle.com/index.php/form/getForm?munchkinId=931-EKA-218&form=2964	104.17.74.206	200 OK	140 kB
URL HTTP/2 connect.chronicle.com/index.php/form/getForm?munchkinId=931-EKA-218&form=2964 IP 104.17.74.206:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (13953) Size 140 kB (139774 bytes) Hash 0480f7f674c9d49d0e02d3418893056b e38e1e92b34ed3ca266347f83355b80838b528ef a27b61c877d5e0a6c89357938544783a689900fcc901d752161d4430699fd72a HTTP Headers GET /index.php/form/getForm?munchkinId=931-EKA-218&form=2964 HTTP/1.1 Host: connect.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://connect.chronicle.com/preference-center-COP.html Cookie: BIGipServerab33web-nginx-app_https=!y04T9iDkNs/eLSbn/+ZT2Dlakae2C5Xn85S2EkR195k5PjflUsd7d5BpDo/I4pfbAEeqdQ8fTtt+1RA=; __cf_bm=euoz2zI_ihv.zB5d_9fkn3z_yyVsIClVhcoihQrRzMc-1666619961-0-AfKh5Q6anGysiBR0dx3jKlTGRBV54t+rQhnyWhIIshNwGcv3hmPJdGGrOtBiTlepYpRS3IMl8lcEaNUolucFqO0=; bc_tstgrp=10 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Mon, 24 Oct 2022 13:59:21 GMT content-type: application/javascript; charset=utf-8 cached: true vary: Accept-Encoding server: cloudflare cf-ray: 75f33b89de0eb4fd-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	connect.chronicle.com/index.php/form/getForm?munchkinId=931-EKA-218&form=2961	104.17.74.206	200 OK	4.8 kB
URL HTTP/2 connect.chronicle.com/index.php/form/getForm?munchkinId=931-EKA-218&form=2961 IP 104.17.74.206:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (9388) Size 4.8 kB (4849 bytes) Hash 28874ad3880d3ffa2331d33a3592444b 5e9291a7f533ccebeb65b66630e0f9eea44f68d8 a821d0d55d948e5becb97b041c189a9942d91c5da208f3f6498ca38ea94305a7 HTTP Headers GET /index.php/form/getForm?munchkinId=931-EKA-218&form=2961 HTTP/1.1 Host: connect.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://connect.chronicle.com/preference-center-COP.html Cookie: BIGipServerab33web-nginx-app_https=!y04T9iDkNs/eLSbn/+ZT2Dlakae2C5Xn85S2EkR195k5PjflUsd7d5BpDo/I4pfbAEeqdQ8fTtt+1RA=; __cf_bm=euoz2zI_ihv.zB5d_9fkn3z_yyVsIClVhcoihQrRzMc-1666619961-0-AfKh5Q6anGysiBR0dx3jKlTGRBV54t+rQhnyWhIIshNwGcv3hmPJdGGrOtBiTlepYpRS3IMl8lcEaNUolucFqO0=; bc_tstgrp=10 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Mon, 24 Oct 2022 13:59:21 GMT content-type: application/javascript; charset=utf-8 cached: true vary: Accept-Encoding server: cloudflare cf-ray: 75f33b897da4b4fd-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	connect.chronicle.com/js/forms2/css/forms2-theme-simple.css	104.17.74.206	200 OK	242 B
URL HTTP/2 connect.chronicle.com/js/forms2/css/forms2-theme-simple.css IP 104.17.74.206:0 ASN #13335 CLOUDFLARENET File type ASCII text Size 242 B (242 bytes) Hash 4720e1ea424406eec04e5d4ede18e205 25109e2837aa426e95c520b559610c634c7ec5f5 2a8ee84e76124d7889489dc64bc710203023c652a6980f3cb17e341fdbc30907 HTTP Headers GET /js/forms2/css/forms2-theme-simple.css HTTP/1.1 Host: connect.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://connect.chronicle.com/preference-center-COP.html Cookie: BIGipServerab33web-nginx-app_https=!y04T9iDkNs/eLSbn/+ZT2Dlakae2C5Xn85S2EkR195k5PjflUsd7d5BpDo/I4pfbAEeqdQ8fTtt+1RA=; __cf_bm=euoz2zI_ihv.zB5d_9fkn3z_yyVsIClVhcoihQrRzMc-1666619961-0-AfKh5Q6anGysiBR0dx3jKlTGRBV54t+rQhnyWhIIshNwGcv3hmPJdGGrOtBiTlepYpRS3IMl8lcEaNUolucFqO0=; bc_tstgrp=10 Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Mon, 24 Oct 2022 13:59:22 GMT content-type: text/css content-length: 242 last-modified: Tue, 04 Oct 2022 18:03:49 GMT etag: "204061d-33a-5ea394834ab40" vary: Accept-Encoding content-encoding: gzip x-content-type-options: nosniff cf-cache-status: MISS expires: Mon, 24 Oct 2022 17:59:22 GMT cache-control: public, max-age=14400 accept-ranges: bytes server: cloudflare cf-ray: 75f33b8a3e8eb4fd-OSL X-Firefox-Spdy: h2`

	munchkin.marketo.net/162/munchkin.js	88.221.99.189	200 OK	4.7 kB
URL HTTP/1.1 munchkin.marketo.net/162/munchkin.js IP 88.221.99.189:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (606) Size 4.7 kB (4677 bytes) Hash 3e9baed982956735f6e0a0e756d97ed9 9223be6a494a10959101a7942419df7b05b84d73 930a508ed0ea6b4861d19c0738360182514010913c4ebfe9352064ae5006f8a1 HTTP Headers `GET /162/munchkin.js HTTP/1.1 Host: munchkin.marketo.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://connect.chronicle.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Accept-Ranges: bytes Content-Type: application/x-javascript ETag: "75daf56f6191efe42577301908659c29:1656637152.894482" Last-Modified: Fri, 01 Jul 2022 00:59:12 GMT Server: AkamaiNetStorage Vary: Accept-Encoding Content-Encoding: gzip Cache-Control: max-age=8640000 Expires: Wed, 01 Feb 2023 13:59:22 GMT Date: Mon, 24 Oct 2022 13:59:22 GMT Content-Length: 4677 Connection: keep-alive P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"`

	c950.chronicle.com/DG/DEFAULT/rest/rpc/1058/LB-Zone-3?referer=https%3A%2F%2Fconnect.chronicle.com%2Fpreference-center-COP.html&bcsessionid=&bctempid=c112f769-458b-4b41-ada3-a2bc027b2dee&overruleReferrer=&time=2022-10-24T13%3A59%3A21%2B00%3A00&ts=1666619961175	143.204.55.61	200 OK	552 B
URL HTTP/2 c950.chronicle.com/DG/DEFAULT/rest/rpc/1058/LB-Zone-3?referer=https%3A%2F%2Fconnect.chronicle.com%2Fpreference-center-COP.html&bcsessionid=&bctempid=c112f769-458b-4b41-ada3-a2bc027b2dee&overruleReferrer=&time=2022-10-24T13%3A59%3A21%2B00%3A00&ts=1666619961175 IP 143.204.55.61:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (1188), with no line terminators Size 552 B (552 bytes) Hash 0d4e2f9404fccab60b7eabedcd0c0622 2f2ce219197595d603d8757547f34e0ef6b588b4 3ccc2d803a89e1387ec158591ed2795ae2201761753c859bf488f375b364cc29 HTTP Headers POST /DG/DEFAULT/rest/rpc/1058/LB-Zone-3?referer=https%3A%2F%2Fconnect.chronicle.com%2Fpreference-center-COP.html&bcsessionid=&bctempid=c112f769-458b-4b41-ada3-a2bc027b2dee&overruleReferrer=&time=2022-10-24T13%3A59%3A21%2B00%3A00&ts=1666619961175 HTTP/1.1 Host: c950.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 916 Origin: https://connect.chronicle.com Connection: keep-alive Referer: https://connect.chronicle.com/ Cookie: BCTempID=c112f769-458b-4b41-ada3-a2bc027b2dee; bc_tstgrp=10; AWSALB=w1SZJuw08HDVQlA+TSovB8AJIJkR44Zg3fzEIL/hTooqXQLQQpex2yzNjouu7wul6Vz49kG3bxsFMnqBq504XMJFgi6ZV/B9nibGvEHu3cYbt8LOP/S4U0bf+raj; AWSALBCORS=w1SZJuw08HDVQlA+TSovB8AJIJkR44Zg3fzEIL/hTooqXQLQQpex2yzNjouu7wul6Vz49kG3bxsFMnqBq504XMJFgi6ZV/B9nibGvEHu3cYbt8LOP/S4U0bf+raj Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK content-type: application/json; charset=utf-8 content-length: 552 date: Mon, 24 Oct 2022 13:59:22 GMT server: - x-content-type-options: nosniff x-permitted-cross-domain-policies: master-only x-robots-tag: noindex, nofollow x-xss-protection: 1; mode=block p3p: policyref="", CP="DSP" access-control-allow-origin: https://connect.chronicle.com access-control-allow-credentials: true pragma: no-cache expires: Thu, 01 Jan 1970 00:00:00 GMT cache-control: no-cache, no-store, no-transform, must-revalidate, private set-cookie: BCSessionID=c112f769-458b-4b41-ada3-a2bc027b2dee;Path=/DG/DEFAULT;Expires=Tue, 28-Nov-2023 13:59:22 GMT;Secure;SameSite=None BCTempID="";Version=1;Path=/DG/DEFAULT;Expires=Thu, 01-Jan-1970 00:00:00 GMT;Max-Age=0;Secure;SameSite=None content-encoding: gzip x-cache: Miss from cloudfront via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: MwkGvIBcqqjYdzvq8wrzFhjWmIsUyVYDB8xdDdV8PvhFKudfV3ZOcw== X-Firefox-Spdy: h2

	connect.chronicle.com/rs/931-EKA-218/images/BlackLine.png	104.17.74.206	200 OK	422 B
URL HTTP/2 connect.chronicle.com/rs/931-EKA-218/images/BlackLine.png IP 104.17.74.206:0 ASN #13335 CLOUDFLARENET File type PNG image data, 1920 x 7, 8-bit/color RGBA, non-interlaced\012- data Size 422 B (422 bytes) Hash 03ebbdd70d35dc815599b47fe63ddfd2 2808a1baefeceea4539a6226c4913d54659cc61a eba0098543ce1d9ebfeae22ca57f7480098f135b83bc7adbc1394d2c921844ce HTTP Headers GET /rs/931-EKA-218/images/BlackLine.png HTTP/1.1 Host: connect.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://connect.chronicle.com/preference-center-COP.html Cookie: BIGipServerab33web-nginx-app_https=!y04T9iDkNs/eLSbn/+ZT2Dlakae2C5Xn85S2EkR195k5PjflUsd7d5BpDo/I4pfbAEeqdQ8fTtt+1RA=; __cf_bm=euoz2zI_ihv.zB5d_9fkn3z_yyVsIClVhcoihQrRzMc-1666619961-0-AfKh5Q6anGysiBR0dx3jKlTGRBV54t+rQhnyWhIIshNwGcv3hmPJdGGrOtBiTlepYpRS3IMl8lcEaNUolucFqO0=; bc_tstgrp=10; BCTempID=c112f769-458b-4b41-ada3-a2bc027b2dee Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Mon, 24 Oct 2022 13:59:22 GMT content-type: image/png content-length: 422 last-modified: Sat, 15 Oct 2022 02:36:29 GMT etag: "206115a-1a6-5eb099c118edc" x-content-type-options: nosniff cf-cache-status: MISS expires: Mon, 24 Oct 2022 14:00:22 GMT cache-control: public, max-age=60 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 75f33b8cd98cb4fd-OSL X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 034fa2f71b057891301c2e39d493ccba 738d6f1bc5f5b59f4454acbbbb550f6bb4c0d177 75a6b4c95e520bebab80be976d0f92f7de4b77a115d77017d72f60548d317f4c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1969 Cache-Control: max-age=167299 Content-Type: application/ocsp-response Date: Mon, 24 Oct 2022 13:59:22 GMT Etag: "63567d0c-1d7" Expires: Wed, 26 Oct 2022 12:27:41 GMT Last-Modified: Mon, 24 Oct 2022 11:54:52 GMT Server: ECS (ska/F71A) X-Cache: HIT Content-Length: 471`

	931-eka-218.mktoresp.com/webevents/visitWebPage?_mchNc=1666619961475&_mchCn=preference-center-COP&_mchId=931-EKA-218&_mchTk=_mch-chronicle.com-1666619961475-69743&_mchWs=j1RR&_mchHo=connect.chronicle.com&_mchPo=&_mchRu=%2Fpreference-center-COP.html&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp=	192.28.144.124	200 OK	28 B
URL HTTP/1.1 931-eka-218.mktoresp.com/webevents/visitWebPage?_mchNc=1666619961475&_mchCn=preference-center-COP&_mchId=931-EKA-218&_mchTk=_mch-chronicle.com-1666619961475-69743&_mchWs=j1RR&_mchHo=connect.chronicle.com&_mchPo=&_mchRu=%2Fpreference-center-COP.html&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp= IP 192.28.144.124:0 ASN #15224 OMNITURE File type ASCII text, with no line terminators Size 28 B (28 bytes) Hash 9dafc521bd59955b4986f0fc3777f77a 5a572b4730d4a2bce2fa35597a0993c649f26c74 e4e90a7b8bacdfe395361149a9fd42f9192b68bdf1497e4454d0ab4c4917f746 HTTP Headers POST /webevents/visitWebPage?_mchNc=1666619961475&_mchCn=preference-center-COP&_mchId=931-EKA-218&_mchTk=_mch-chronicle.com-1666619961475-69743&_mchWs=j1RR&_mchHo=connect.chronicle.com&_mchPo=&_mchRu=%2Fpreference-center-COP.html&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=&_mchQp= HTTP/1.1 Host: 931-eka-218.mktoresp.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://connect.chronicle.com Connection: keep-alive Referer: https://connect.chronicle.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/1.1 200 OK Server: nginx/1.20.1 Date: Mon, 24 Oct 2022 13:59:22 GMT Content-Type: text/plain; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive X-Request-Id: a1728f9e-d93d-4d77-9884-3b985e6c857d Content-Encoding: gzip Access-Control-Allow-Origin: *`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash bed68ee568e74be152402c71cbf26510 38092ae53739e8ee13362c84df108bad734c4b64 26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445" Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7802 Expires: Mon, 24 Oct 2022 16:09:25 GMT Date: Mon, 24 Oct 2022 13:59:23 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash bed68ee568e74be152402c71cbf26510 38092ae53739e8ee13362c84df108bad734c4b64 26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445" Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7802 Expires: Mon, 24 Oct 2022 16:09:25 GMT Date: Mon, 24 Oct 2022 13:59:23 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0d6114a-4321-4b7f-bc5c-97a5fd5ac537.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0d6114a-4321-4b7f-bc5c-97a5fd5ac537.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11635 bytes) Hash 0a156d6aed9764d3759987c28b80d6f6 864d279c98c2d821010f0846de71f1b20187024f ee73e1ab7b53ebba35dc2d00958df54a7229096ff8b5e9fd60989e92acb3fbf5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0d6114a-4321-4b7f-bc5c-97a5fd5ac537.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11635 x-amzn-requestid: aed8aa4d-2cd1-4c5e-999e-ea7391a3ebde x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aelIoH3BIAMFZ8w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6355b56a-359118d242e827e67150ca6d;Sampled=0 x-amzn-remapped-date: Sun, 23 Oct 2022 21:43:06 GMT x-amz-cf-pop: SFO5-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: sEgtn4AnAFeNUDPLPcpKl6ed2zAjDJzK724ITXxXY913c6XeqZ7RNA== via: 1.1 94f8839a97f73584e70cc07d9f704d62.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google date: Sun, 23 Oct 2022 22:30:00 GMT age: 55763 etag: "864d279c98c2d821010f0846de71f1b20187024f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10072 bytes) Hash af3d4b4d16ad8b30805be96afa6472e3 bceb257123711c43994e5a03e9caf22eeee16423 30d7fea8d87522ce3ba2abf2c47e0025af1b7c05d6b4ea9f26aaa1f06aff4a67 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F21cfb8fe-4b68-43f0-a196-17c9a1dd3acb.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10072 x-amzn-requestid: 2f26fcdb-0540-49ea-be46-83c00182fcc3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aelB0FKvoAMFVFg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6355b53e-1be524647e3db4a211e4c4ff;Sampled=0 x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: sNu31Qx0p_Ikus0GsGKRNGVxOGnIRSewAXfkXyzOCmT6bJ1D1Qz-0w== via: 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google date: Sun, 23 Oct 2022 22:10:20 GMT etag: "bceb257123711c43994e5a03e9caf22eeee16423" content-type: image/jpeg age: 56943 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F888df8db-5e36-4530-9f02-09268aefe1af.jpeg	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F888df8db-5e36-4530-9f02-09268aefe1af.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (12770 bytes) Hash 9896b15d25725efe19642f3e70ec9103 9f030fdc38125b6b523b0d12571d666907a83f4d 88a74f5fd7e694aa473ff0b1a2cc7f2328738dc9acf5c61f2501877dc72ec9bb HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F888df8db-5e36-4530-9f02-09268aefe1af.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12770 x-amzn-requestid: c40e1251-15f4-486c-8744-af05d80ff14e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aelkxERXoAMFdvw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6355b61e-1bb648e9150a5cb95d69b3c5;Sampled=0 x-amzn-remapped-date: Sun, 23 Oct 2022 21:46:06 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: FS_whBKHlTourjDSpHj_fRbNs3r1zsTU97BpxqWyKHL4XLoc7IWGgw== via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google date: Sun, 23 Oct 2022 21:52:34 GMT age: 58009 etag: "9f030fdc38125b6b523b0d12571d666907a83f4d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8ac15f-1a51-4bfe-ab4a-570fc480a976.jpeg	34.120.237.76	200 OK	4.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8ac15f-1a51-4bfe-ab4a-570fc480a976.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.4 kB (4434 bytes) Hash f12f21779aa94b557db8037ceefd15b2 1698d8d0ff47fc4e6dd20d99ceae84cfcdd69e86 0d33ee5a721c2f940ff1e7d5fae9abba3781f6d37e458a36285718466ecdcd10 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e8ac15f-1a51-4bfe-ab4a-570fc480a976.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4434 x-amzn-requestid: 41e95a27-2955-4224-8d2c-f12d1254cda7 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aelB0EQboAMFmMw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6355b53e-5cb99b700c84c99c2d9e52d7;Sampled=0 x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: 49FYzrcMWfgHbe4smL20px9dbIcXIGCujJ6djuVRT3bEwCkBvgz7Iw== via: 1.1 27f6faf9790b5a2877fb528fa31f7922.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google date: Sun, 23 Oct 2022 21:46:57 GMT age: 58346 etag: "1698d8d0ff47fc4e6dd20d99ceae84cfcdd69e86" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff75bf2c3-b1dc-465c-ba9a-30b41f6f5cac.jpeg	34.120.237.76	200 OK	9.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff75bf2c3-b1dc-465c-ba9a-30b41f6f5cac.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.6 kB (9568 bytes) Hash c9b1a13676d3fac304595806959135a2 9c16b23d37594b041cf8678399e6eaeb690346a9 7bc8f67670709caae6b39435fdaa3e5c71b9b30db76c006cc2c841300291a246 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff75bf2c3-b1dc-465c-ba9a-30b41f6f5cac.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9568 x-amzn-requestid: 0a162a3c-1723-4926-8651-7d22ecade080 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aelN4EVKoAMFWnw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6355b58b-10dae6262d730d1f12c50a20;Sampled=0 x-amzn-remapped-date: Sun, 23 Oct 2022 21:43:39 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: dQhcd1Ip1LFxzOlFCnVRBsX4nIAvOuKjONC0HKysRDmR-Y8G_x4sTg== via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google date: Sun, 23 Oct 2022 21:52:34 GMT age: 58009 etag: "9c16b23d37594b041cf8678399e6eaeb690346a9" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e44a0c5-308b-4a3c-a704-fed082e5c701.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e44a0c5-308b-4a3c-a704-fed082e5c701.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10639 bytes) Hash f1a2e95e4cdae92b60d0fde61c6c8312 fa110a433705597d1384e6d5dd0e757090dbe366 bfa8bc3faf60272c250c0b7d220c90bcf9f01267907dd81465ed0a6a4fda8fdc HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e44a0c5-308b-4a3c-a704-fed082e5c701.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10639 x-amzn-requestid: 983ddbdb-f97d-44dc-b502-6a555f50217f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aelDaEkBoAMFcRg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6355b548-351c26ae42c01c94616d04b4;Sampled=0 x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:32 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: J-VZLP51uG6onthE4ymBDhlNk5KtxsfX_sF-J_pjUHsr5mFrORdvwQ== via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google date: Sun, 23 Oct 2022 21:52:34 GMT age: 58009 etag: "fa110a433705597d1384e6d5dd0e757090dbe366" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	marketoerror.chronicle.com/	54.230.111.34	301 Moved Permanently	167 B
URL HTTP/1.1 marketoerror.chronicle.com/ IP 54.230.111.34:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 167 B (167 bytes) Hash f5d40b7259645010f9a248858ad14178 b3051d17a6ec8c9e166bf09a62b48261ab86957b 7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d HTTP Headers `GET / HTTP/1.1 Host: marketoerror.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive` `HTTP/1.1 301 Moved Permanently Server: CloudFront Date: Mon, 24 Oct 2022 13:59:23 GMT Content-Type: text/html Content-Length: 167 Connection: keep-alive Location: https://marketoerror.chronicle.com/ X-Cache: Redirect from cloudfront Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: q7WQj9KaLkp03jOF_FFuEJDnOsy1XeA34J0uwCZHQUcZ20dX8wWG6Q==`

	c950.chronicle.com/DG/DEFAULT/rest/rpc/1058?referer=https%3A%2F%2Fconnect.chronicle.com%2Fpreference-center-COP.html&bcsessionid=c112f769-458b-4b41-ada3-a2bc027b2dee&bctempid=&overruleReferrer=&time=2022-10-24T13%3A59%3A21%2B00%3A00&ts=1666619961712	143.204.55.61	200 OK	166 B
URL HTTP/2 c950.chronicle.com/DG/DEFAULT/rest/rpc/1058?referer=https%3A%2F%2Fconnect.chronicle.com%2Fpreference-center-COP.html&bcsessionid=c112f769-458b-4b41-ada3-a2bc027b2dee&bctempid=&overruleReferrer=&time=2022-10-24T13%3A59%3A21%2B00%3A00&ts=1666619961712 IP 143.204.55.61:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 166 B (166 bytes) Hash 2252a99c9270d69a6ba5051cb7911368 b0af3bf106b8e98e3d1f9b52b80c86694be9a12d bf6eeac8dbf80c64c3a197255b61e03da36263e0cacab7861db621a3bdfe6399 HTTP Headers POST /DG/DEFAULT/rest/rpc/1058?referer=https%3A%2F%2Fconnect.chronicle.com%2Fpreference-center-COP.html&bcsessionid=c112f769-458b-4b41-ada3-a2bc027b2dee&bctempid=&overruleReferrer=&time=2022-10-24T13%3A59%3A21%2B00%3A00&ts=1666619961712 HTTP/1.1 Host: c950.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 109 Origin: https://connect.chronicle.com Connection: keep-alive Referer: https://connect.chronicle.com/ Cookie: BCSessionID=c112f769-458b-4b41-ada3-a2bc027b2dee; bc_tstgrp=10; AWSALB=w1SZJuw08HDVQlA+TSovB8AJIJkR44Zg3fzEIL/hTooqXQLQQpex2yzNjouu7wul6Vz49kG3bxsFMnqBq504XMJFgi6ZV/B9nibGvEHu3cYbt8LOP/S4U0bf+raj; AWSALBCORS=w1SZJuw08HDVQlA+TSovB8AJIJkR44Zg3fzEIL/hTooqXQLQQpex2yzNjouu7wul6Vz49kG3bxsFMnqBq504XMJFgi6ZV/B9nibGvEHu3cYbt8LOP/S4U0bf+raj; _mkto_trk=id:931-EKA-218&token:_mch-chronicle.com-1666619961475-69743 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK content-type: application/json; charset=utf-8 content-length: 166 date: Mon, 24 Oct 2022 13:59:23 GMT set-cookie: AWSALB=4Ywuk0mtyrd+AA0T8NOn/C1dSUdN4Z1kSDYWGQG0cMs1ctKgb7VCO9A+C8RuAwimLozB8vY9HnlvoFvTBxXAamU/+Bi9JcKZZb8gxjE6qEh6UT4FOg/1gtc56zW3; Expires=Mon, 31 Oct 2022 13:59:23 GMT; Path=/ AWSALBCORS=4Ywuk0mtyrd+AA0T8NOn/C1dSUdN4Z1kSDYWGQG0cMs1ctKgb7VCO9A+C8RuAwimLozB8vY9HnlvoFvTBxXAamU/+Bi9JcKZZb8gxjE6qEh6UT4FOg/1gtc56zW3; Expires=Mon, 31 Oct 2022 13:59:23 GMT; Path=/; SameSite=None; Secure server: - x-content-type-options: nosniff x-permitted-cross-domain-policies: master-only x-robots-tag: noindex, nofollow x-xss-protection: 1; mode=block p3p: policyref="", CP="DSP" access-control-allow-origin: https://connect.chronicle.com access-control-allow-credentials: true pragma: no-cache expires: Thu, 01 Jan 1970 00:00:00 GMT cache-control: no-cache, no-store, no-transform, must-revalidate, private content-encoding: gzip x-cache: Miss from cloudfront via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: W-DLG3Pwr5SxW8ZHXCO829G1nReER7hBK-L2ID3Y8aHPw7ls-Oyw9w== X-Firefox-Spdy: h2

	c950.chronicle.com/DG/DEFAULT/rest/rpc/1058?referer=https%3A%2F%2Fconnect.chronicle.com%2Fpreference-center-COP.html&bcsessionid=c112f769-458b-4b41-ada3-a2bc027b2dee&bctempid=&overruleReferrer=&time=2022-10-24T13%3A59%3A21%2B00%3A00&ts=1666619961711	143.204.55.61	200 OK	176 B
URL HTTP/2 c950.chronicle.com/DG/DEFAULT/rest/rpc/1058?referer=https%3A%2F%2Fconnect.chronicle.com%2Fpreference-center-COP.html&bcsessionid=c112f769-458b-4b41-ada3-a2bc027b2dee&bctempid=&overruleReferrer=&time=2022-10-24T13%3A59%3A21%2B00%3A00&ts=1666619961711 IP 143.204.55.61:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (373), with no line terminators Size 176 B (176 bytes) Hash 60cc7215beb456ff73272c1ac30c9b3a 3e5dec31a320fb63b2f84ff9f43305dc4ad54045 c9eb59fa2d67d0d7ec62c55a6c6d3826d9b61debefb8c09246b6266239aea801 HTTP Headers POST /DG/DEFAULT/rest/rpc/1058?referer=https%3A%2F%2Fconnect.chronicle.com%2Fpreference-center-COP.html&bcsessionid=c112f769-458b-4b41-ada3-a2bc027b2dee&bctempid=&overruleReferrer=&time=2022-10-24T13%3A59%3A21%2B00%3A00&ts=1666619961711 HTTP/1.1 Host: c950.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 1549 Origin: https://connect.chronicle.com Connection: keep-alive Referer: https://connect.chronicle.com/ Cookie: BCSessionID=c112f769-458b-4b41-ada3-a2bc027b2dee; bc_tstgrp=10; AWSALB=w1SZJuw08HDVQlA+TSovB8AJIJkR44Zg3fzEIL/hTooqXQLQQpex2yzNjouu7wul6Vz49kG3bxsFMnqBq504XMJFgi6ZV/B9nibGvEHu3cYbt8LOP/S4U0bf+raj; AWSALBCORS=w1SZJuw08HDVQlA+TSovB8AJIJkR44Zg3fzEIL/hTooqXQLQQpex2yzNjouu7wul6Vz49kG3bxsFMnqBq504XMJFgi6ZV/B9nibGvEHu3cYbt8LOP/S4U0bf+raj; _mkto_trk=id:931-EKA-218&token:_mch-chronicle.com-1666619961475-69743 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site TE: trailers HTTP/2 200 OK content-type: application/json; charset=utf-8 content-length: 176 date: Mon, 24 Oct 2022 13:59:23 GMT set-cookie: AWSALB=+EDmz/tqp9E4kX6BO/2MckmKPm7E016Nmh/4UNEF4OW9ORFyI4lFywqX98NlvqxU09xDCTGwKFsH0xYfkSszuQKCztrd9PQfHd6Rtz7WaHecnpKcMka5JlGCPBEM; Expires=Mon, 31 Oct 2022 13:59:23 GMT; Path=/ AWSALBCORS=+EDmz/tqp9E4kX6BO/2MckmKPm7E016Nmh/4UNEF4OW9ORFyI4lFywqX98NlvqxU09xDCTGwKFsH0xYfkSszuQKCztrd9PQfHd6Rtz7WaHecnpKcMka5JlGCPBEM; Expires=Mon, 31 Oct 2022 13:59:23 GMT; Path=/; SameSite=None; Secure server: - x-content-type-options: nosniff x-permitted-cross-domain-policies: master-only x-robots-tag: noindex, nofollow x-xss-protection: 1; mode=block p3p: policyref="", CP="DSP" access-control-allow-origin: https://connect.chronicle.com access-control-allow-credentials: true pragma: no-cache expires: Thu, 01 Jan 1970 00:00:00 GMT cache-control: no-cache, no-store, no-transform, must-revalidate, private content-encoding: gzip x-cache: Miss from cloudfront via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: _hbRXsTuOo3g_8fAGrBw8--aOJ-9H0isSVz3RQ4qq5UQRccG2YLx6g== X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	143.204.42.158	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.158:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 41bd6a5d2cb6f861df4c3df05af1e97b 7d10286aebe3c2c0ed071d50421e57a449d6cc76 02b7bf188a2963f4b895d726bd6bfb38341d9b6dda66a9b1b0f0d9a4dbe77c00 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=140106 Date: Mon, 24 Oct 2022 13:59:23 GMT Etag: "63561a85-1d7" Expires: Wed, 26 Oct 2022 04:54:29 GMT Last-Modified: Mon, 24 Oct 2022 04:54:29 GMT Server: nginx X-Cache: Miss from cloudfront Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: P538YT5AX2z2Q2Lk-ZgM1sXMWuELl4ysmUTLLZWWp6Ji-Ma8myyDXg==`

	connect.chronicle.com/favicon.ico	104.17.74.206	302 Found	0 B
URL HTTP/2 connect.chronicle.com/favicon.ico IP 104.17.74.206:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /favicon.ico HTTP/1.1 Host: connect.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://connect.chronicle.com/preference-center-COP.html Cookie: BIGipServerab33web-nginx-app_https=!y04T9iDkNs/eLSbn/+ZT2Dlakae2C5Xn85S2EkR195k5PjflUsd7d5BpDo/I4pfbAEeqdQ8fTtt+1RA=; __cf_bm=euoz2zI_ihv.zB5d_9fkn3z_yyVsIClVhcoihQrRzMc-1666619961-0-AfKh5Q6anGysiBR0dx3jKlTGRBV54t+rQhnyWhIIshNwGcv3hmPJdGGrOtBiTlepYpRS3IMl8lcEaNUolucFqO0=; bc_tstgrp=10; BCTempID=c112f769-458b-4b41-ada3-a2bc027b2dee Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 302 Found date: Mon, 24 Oct 2022 13:59:22 GMT content-type: text/html; charset=UTF-8 location: http://marketoerror.chronicle.com x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: EXPIRED expires: Mon, 24 Oct 2022 17:59:22 GMT cache-control: public, max-age=14400 server: cloudflare cf-ray: 75f33b8cc972b4fd-OSL X-Firefox-Spdy: h2`

	connect.chronicle.com/js/forms2/js/forms2.min.js	104.17.74.206	200 OK	0 B
URL HTTP/2 connect.chronicle.com/js/forms2/js/forms2.min.js IP 104.17.74.206:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /js/forms2/js/forms2.min.js HTTP/1.1 Host: connect.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://connect.chronicle.com/preference-center-COP.html Cookie: BIGipServerab33web-nginx-app_https=!y04T9iDkNs/eLSbn/+ZT2Dlakae2C5Xn85S2EkR195k5PjflUsd7d5BpDo/I4pfbAEeqdQ8fTtt+1RA=; __cf_bm=euoz2zI_ihv.zB5d_9fkn3z_yyVsIClVhcoihQrRzMc-1666619961-0-AfKh5Q6anGysiBR0dx3jKlTGRBV54t+rQhnyWhIIshNwGcv3hmPJdGGrOtBiTlepYpRS3IMl8lcEaNUolucFqO0= Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Mon, 24 Oct 2022 13:59:21 GMT content-type: application/x-javascript last-modified: Tue, 04 Oct 2022 18:03:49 GMT etag: "2040624-33e51-5ea394834ab40" vary: Accept-Encoding content-encoding: gzip x-content-type-options: nosniff cf-cache-status: MISS expires: Mon, 24 Oct 2022 17:59:21 GMT cache-control: public, max-age=14400 server: cloudflare cf-ray: 75f33b86ba15b4fd-OSL X-Firefox-Spdy: h2`

	marketoerror.chronicle.com/	54.230.111.34	200 OK	0 B
URL HTTP/2 marketoerror.chronicle.com/ IP 54.230.111.34:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET / HTTP/1.1 Host: marketoerror.chronicle.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: bc_tstgrp=10; _mkto_trk=id:931-EKA-218&token:_mch-chronicle.com-1666619961475-69743 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: text/html last-modified: Tue, 31 Aug 2021 17:45:07 GMT server: AmazonS3 content-encoding: gzip date: Mon, 24 Oct 2022 13:59:23 GMT etag: W/"2df3a7b4702c85aa5ecef8b63134bd4c" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: SjgXiI2fSxo_0u9rA9xtm1sl3RAuQdF5gDV86uZ6Pe8Cw4wP9wHQRA== age: 21678 X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations