Report - nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Floft.temenos.com%2Ft%2F104241%2Fopt_out%2F36037b2f-797c-468f-8aab-8c2505beaaba&data=05%7C01%7Cedavis%40eglinfcu.org%7C7b9482530cba4536613208db095a73d8%7C88317d8a720345ecae4dc5b4b7998fcb%7C0%7C0%7C638114056329565235%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=vIj76BoXkJL2GDJzAORniihakNZmdvljl1dwDD9DRAg%3D&reserved=0

Report Overview

Submitted URL
nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Floft.temenos.com%2Ft%2F104241%2Fopt_out%2F36037b2f-797c-468f-8aab-8c2505beaaba&data=05%7C01%7Cedavis%40eglinfcu.org%7C7b9482530cba4536613208db095a73d8%7C88317d8a720345ecae4dc5b4b7998fcb%7C0%7C0%7C638114056329565235%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=vIj76BoXkJL2GDJzAORniihakNZmdvljl1dwDD9DRAg%3D&reserved=0
IP
104.47.55.28
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2023-02-08 17:24:09
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
loft.temenos.com	unknown	2021-08-31T15:02:33Z	2023-03-09T22:04:51Z	954 B	444 B	52.54.44.30
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	680 B	1.9 kB	104.18.32.68
cdn-sdr.salesloft.com	141937	2015-03-12T08:40:59Z	2023-03-11T12:13:53Z	402 B	631 B	104.18.222.90
js-agent.newrelic.com	378	2018-06-22T06:15:37Z	2023-03-13T05:22:57Z	377 B	19 kB	151.101.2.137
bam.eu01.nr-data.net	9782	2018-05-17T14:36:00Z	2023-03-13T05:25:19Z	1.5 kB	1.1 kB	185.221.87.23
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	95.101.11.115
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
nam10.safelinks.protection.outlook.com	14138	2019-08-15T01:50:52Z	2023-03-13T08:49:28Z	872 B	824 B	104.47.70.28
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.36.139.3
app.salesloft.com	37350	2018-05-28T08:27:11Z	2023-03-13T08:45:16Z	1.6 kB	37 kB	3.121.19.130
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	58 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	js-agent.newrelic.com/nr-spa-1216.min.js	50 kB	2023-03-07	2024-03-22
Pretty URL js-agent.newrelic.com/nr-spa-1216.min.js IP 151.101.2.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-03-22 06:11:43 Times Seen568 Hash 63e2df852d15ab21d7ff8fc4363222e8 7ee401ba652db0a4ec960350e17216cda01e22fb 545156adeae44dadc82b98d504f805ebe77fb79c928ef34eed1057bb9d4cb8fe Loading...

	bam.eu01.nr-data.net/1/NRJS-ce5e8daad3227b82ed8?a=212444329&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=2522&ck=1&ref=https://app.salesloft.com/unsubscribe&be=2051&fe=2449&dc=2408&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675877093786,%22n%22:0,%22f%22:1976,%22dn%22:1976,%22dne%22:1976,%22c%22:1976,%22s%22:1976,%22ce%22:1976,%22rq%22:1978,%22rp%22:2005,%22rpe%22:2032,%22dl%22:2037,%22di%22:2408,%22ds%22:2408,%22de%22:2410,%22dc%22:2447,%22l%22:2447,%22le%22:2449%7D,%22navigation%22:%7B%7D%7D&fcp=2413&jsonp=NREUM.setToken	49 B	2023-03-07	2024-03-22
Pretty URL bam.eu01.nr-data.net/1/NRJS-ce5e8daad3227b82ed8?a=212444329&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=2522&ck=1&ref=https://app.salesloft.com/unsubscribe&be=2051&fe=2449&dc=2408&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675877093786,%22n%22:0,%22f%22:1976,%22dn%22:1976,%22dne%22:1976,%22c%22:1976,%22s%22:1976,%22ce%22:1976,%22rq%22:1978,%22rp%22:2005,%22rpe%22:2032,%22dl%22:2037,%22di%22:2408,%22ds%22:2408,%22de%22:2410,%22dc%22:2447,%22l%22:2447,%22le%22:2449%7D,%22navigation%22:%7B%7D%7D&fcp=2413&jsonp=NREUM.setToken IP 185.221.87.23 ASN #206998 New Relic International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-03-22 06:11:42 Times Seen2776 Hash ada33e5b8877e743ff658bf4bfa1867c 5a78662243dac43c0ee48bcb7e05a536b84c2e38 dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82 Loading...

	app.salesloft.com/unsubscribe?id=36037b2f-797c-468f-8aab-8c2505beaaba&confirm_opt_out_path=/t/104241/confirm_opt_out/36037b2f-797c-468f-8aab-8c2505beaaba	31 kB	2023-03-10	2024-04-04
Pretty URL app.salesloft.com/unsubscribe?id=36037b2f-797c-468f-8aab-8c2505beaaba&confirm_opt_out_path=/t/104241/confirm_opt_out/36037b2f-797c-468f-8aab-8c2505beaaba IP 3.121.19.130 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 20:13:07 Last Seen2024-04-04 16:02:49 Times Seen28 Hash cfff80f9efefbd47c9bfc0a75dbb4d4a cfa9fbef2133af39f9823426fecfd8e6327c698f 72de53be85ce8cfc8a95b00d503188882f7c73d200dfacf2bc08830e04baae8f Loading...

	app.salesloft.com/unsubscribe?id=36037b2f-797c-468f-8aab-8c2505beaaba&confirm_opt_out_path=/t/104241/confirm_opt_out/36037b2f-797c-468f-8aab-8c2505beaaba	700 B	2023-03-10	2024-04-04
Pretty URL app.salesloft.com/unsubscribe?id=36037b2f-797c-468f-8aab-8c2505beaaba&confirm_opt_out_path=/t/104241/confirm_opt_out/36037b2f-797c-468f-8aab-8c2505beaaba IP 3.121.19.130 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 20:13:07 Last Seen2024-04-04 16:02:49 Times Seen28 Hash 860d1158a6b8f73b82483118a6a52f65 769a781d222fbdbfff4c24f8d60abbb40d338941 1ff0c4cfdd83525be3d734cfb340b9c465fda12ce8e863fc70cacc8dc95f6e4c Loading...

HTTP Transactions (30)

	URL	IP	Response	Size
	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash dca68db7aea32f6683ce8d542c078f04 19c495238df74fca680e21f18627ff94de5dd2e5 35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61" Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15559 Expires: Wed, 08 Feb 2023 21:43:17 GMT Date: Wed, 08 Feb 2023 17:23:58 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a cfdba5bc597130461dd67bf6cda53183be592493 60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D" Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4360 Expires: Wed, 08 Feb 2023 18:36:38 GMT Date: Wed, 08 Feb 2023 17:23:58 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash bf0c602d32b3c14606f22a86183b5e3c 6eabd8d83475eba731968abe1a05a8bfd272f160 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Wed, 08 Feb 2023 16:34:13 GMT content-type: application/json age: 2985 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash cc14b0d2f7c451f6431dc87ba54d1d60 bab8bfda6fa3e2f17125353f5147211787dc25d0 b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD" Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12151 Expires: Wed, 08 Feb 2023 20:46:29 GMT Date: Wed, 08 Feb 2023 17:23:58 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e76071a28ee566dababb3834f46d68ed aebb4e68c1ba2de0f90025283e8ed8470944fde0 78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: 4yeKvJSG18QzmOxAN80G17mgpPsbUZM804re3IlSzxH7dluw4/OzNieUNm2J1L1kFbuBcWW5ygmtODYLyXK9mA== x-amz-request-id: XHSH8K0E9CTZSQ6C content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Wed, 08 Feb 2023 16:36:00 GMT age: 2878 last-modified: Sun, 29 Jan 2023 18:44:47 GMT etag: "e76071a28ee566dababb3834f46d68ed" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Wed, 08 Feb 2023 17:23:58 GMT content-type: application/json content-length: 12 vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Wed, 08 Feb 2023 16:51:20 GMT age: 1959 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Floft.temenos.com%2Ft%2F104241%2Fopt_out%2F36037b2f-797c-468f-8aab-8c2505beaaba&data=05%7C01%7Cedavis%40eglinfcu.org%7C7b9482530cba4536613208db095a73d8%7C88317d8a720345ecae4dc5b4b7998fcb%7C0%7C0%7C638114056329565235%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=vIj76BoXkJL2GDJzAORniihakNZmdvljl1dwDD9DRAg%3D&reserved=0	104.47.70.28	302 Found	195 B
URL HTTP/1.1 nam10.safelinks.protection.outlook.com/?url=https%3A%2F%2Floft.temenos.com%2Ft%2F104241%2Fopt_out%2F36037b2f-797c-468f-8aab-8c2505beaaba&data=05%7C01%7Cedavis%40eglinfcu.org%7C7b9482530cba4536613208db095a73d8%7C88317d8a720345ecae4dc5b4b7998fcb%7C0%7C0%7C638114056329565235%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=vIj76BoXkJL2GDJzAORniihakNZmdvljl1dwDD9DRAg%3D&reserved=0 IP 104.47.70.28:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 195 B (195 bytes) Hash 2bd5dd6b79978c7fda492be8a39590c3 27cffd69828800ce7c34f7d8716ef5f0107810a0 cccd3becd8776271bdefbb6ebc099ab2a77ec98b65619acfcfbb73f4b0881f45 HTTP Headers GET /?url=https%3A%2F%2Floft.temenos.com%2Ft%2F104241%2Fopt_out%2F36037b2f-797c-468f-8aab-8c2505beaaba&data=05%7C01%7Cedavis%40eglinfcu.org%7C7b9482530cba4536613208db095a73d8%7C88317d8a720345ecae4dc5b4b7998fcb%7C0%7C0%7C638114056329565235%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=vIj76BoXkJL2GDJzAORniihakNZmdvljl1dwDD9DRAg%3D&reserved=0 HTTP/1.1 Host: nam10.safelinks.protection.outlook.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/1.1 302 Found Cache-Control: private Content-Type: text/html; charset=utf-8 Location: https://loft.temenos.com/t/104241/opt_out/36037b2f-797c-468f-8aab-8c2505beaaba Server: Microsoft-IIS/10.0 X-AspNetMvc-Version: 4.0 X-SL-GetUrlReputation-Verdict: Good X-Robots-Tag: noindex, nofollow X-AspNet-Version: 4.0.30319 X-ServerName: BN7NAM10WS027 X-ServerVersion: 15.20.6086.018 X-ServerLat: 363 X-SafeLinks-Tracking-Id: 5a436059-f9c8-4f49-f165-08db09f943a2 X-Powered-By: ASP.NET X-Content-Type-Options: nosniff X-UA-Compatible: IE=Edge Date: Wed, 08 Feb 2023 17:23:58 GMT Connection: close Content-Length: 195

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9b88bae61bca33aba8aa99f6128db8d9 a07b61fb2458917699613fcae68710941b595416 54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA" Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19761 Expires: Wed, 08 Feb 2023 22:53:20 GMT Date: Wed, 08 Feb 2023 17:23:59 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 97f0dd92a5993920d4fd2ae2266feee0 b8cd666985c53b219f9641d9ce1c9eba1b757628 c31c3d5214daea425241c8535a8ff953c5e91a4904179bd9d455355833244398 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C31C3D5214DAEA425241C8535A8FF953C5E91A4904179BD9D455355833244398" Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21441 Expires: Wed, 08 Feb 2023 23:21:20 GMT Date: Wed, 08 Feb 2023 17:23:59 GMT Connection: keep-alive`

	push.services.mozilla.com/	52.36.139.3	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.36.139.3:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: mibKv+LC+BNH5m1b7E2pAw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 8TKabfLJg1OiEuA1+KpXTrq9tw4=`

	loft.temenos.com/t/104241/opt_out/36037b2f-797c-468f-8aab-8c2505beaaba	52.54.44.30	302 Found	145 B
URL HTTP/2 loft.temenos.com/t/104241/opt_out/36037b2f-797c-468f-8aab-8c2505beaaba IP 52.54.44.30:0 ASN #14618 AMAZON-AES File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 145 B (145 bytes) Hash d24608801b9322e8130363412324992a 9a419719f778a5ac9a365d09032fef93860f1109 cc2af2ac08f8c9aa2da9c29f4a91a48d9e0d965ea3d845026063e45086c0489a HTTP Headers GET /t/104241/opt_out/36037b2f-797c-468f-8aab-8c2505beaaba HTTP/1.1 Host: loft.temenos.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: _ga_SRGV0XEWX1=GS1.1.1675876995.1.0.1675876998.0.0.0; _ga=GA1.2.1972471044.1675876995; _gid=GA1.2.1293158480.1675876996; _hjSessionUser_3017783=eyJpZCI6ImM2MTQxYjQzLTBkZjYtNTI4ZC1hN2M1LWNjNTRkMWZhOGFhMSIsImNyZWF0ZWQiOjE2NzU4NzY5OTU1OTYsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_3017783=eyJpZCI6IjVkMjMwZGJjLTE0YzMtNGY5My04NDgwLTU4YmUwYTNhYmYxMSIsImNyZWF0ZWQiOjE2NzU4NzY5OTU2MjUsImluU2FtcGxlIjpmYWxzZX0=; _hjAbsoluteSessionInProgress=0 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 `HTTP/2 302 Found date: Wed, 08 Feb 2023 17:23:59 GMT content-type: text/html content-length: 145 location: https://app.salesloft.com/t/104241/opt_out/36037b2f-797c-468f-8aab-8c2505beaaba strict-transport-security: max-age=31536000; includeSubDomains x-robots-tag: noindex X-Firefox-Spdy: h2`

	ocsp.sectigo.com/	104.18.32.68	200 OK	471 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash 5f1c5a1eb5020a66318a3faf58f15f08 7978debf58d7cbb15bc59ce3371a1ef82105f494 752c1e03b8f2be16f9714b4dcab5c27f344c874283a13b78e7b7a2549c465a6b HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 08 Feb 2023 17:23:59 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Mon, 06 Feb 2023 22:24:04 GMT Expires: Mon, 13 Feb 2023 22:24:03 GMT Etag: "7978debf58d7cbb15bc59ce3371a1ef82105f494" Cache-Control: max-age=449403,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb4 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 79660e6b4e1dfab8-OSL`

	app.salesloft.com/t/104241/opt_out/36037b2f-797c-468f-8aab-8c2505beaaba	3.121.19.130	302 Found	231 B
URL HTTP/1.1 app.salesloft.com/t/104241/opt_out/36037b2f-797c-468f-8aab-8c2505beaaba IP 3.121.19.130:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document, ASCII text, with no line terminators Size 231 B (231 bytes) Hash 43b95946d3448cdc5814052c0e88921c 78e85be7fae20daa1a51b60e446649859e69c1e4 3f109755f66be3d02873121ef8deaab78f51f071a86a8d88191c5a2c749d1797 HTTP Headers `GET /t/104241/opt_out/36037b2f-797c-468f-8aab-8c2505beaaba HTTP/1.1 Host: app.salesloft.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/1.1 302 Found Cache-Control: no-cache Content-Type: text/html; charset=utf-8 Date: Wed, 08 Feb 2023 17:24:00 GMT Location: https://app.salesloft.com/unsubscribe?id=36037b2f-797c-468f-8aab-8c2505beaaba&confirm_opt_out_path=/t/104241/confirm_opt_out/36037b2f-797c-468f-8aab-8c2505beaaba Strict-Transport-Security: max-age=15724800; includeSubDomains Vary: Origin X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN X-Request-Id: a653c7b36744ad0f72a07a6ff38991f4 X-Runtime: 0.020454 X-XSS-Protection: 1; mode=block Content-Length: 231 Connection: keep-alive

	app.salesloft.com/unsubscribe?id=36037b2f-797c-468f-8aab-8c2505beaaba&confirm_opt_out_path=/t/104241/confirm_opt_out/36037b2f-797c-468f-8aab-8c2505beaaba	3.121.19.130	200 OK	33 kB
URL HTTP/1.1 app.salesloft.com/unsubscribe?id=36037b2f-797c-468f-8aab-8c2505beaaba&confirm_opt_out_path=/t/104241/confirm_opt_out/36037b2f-797c-468f-8aab-8c2505beaaba IP 3.121.19.130:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (30713) Size 33 kB (33037 bytes) Hash 6dc72bb7aaa1682c71d119d952cbdceb 50e28c60f75571927234d825af6590b6fe1ea335 8100bc9a01148bc1e99e0bd8695da8a1104e00f870ee744774d2bf57b3ad7256 HTTP Headers GET /unsubscribe?id=36037b2f-797c-468f-8aab-8c2505beaaba&confirm_opt_out_path=/t/104241/confirm_opt_out/36037b2f-797c-468f-8aab-8c2505beaaba HTTP/1.1 Host: app.salesloft.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: no-store Content-Security-Policy-Report-Only: default-src https: wss: blob: data: 'unsafe-inline'; img-src http: https:; object-src 'none'; frame-ancestors 'none'; Content-Type: text/html Date: Wed, 08 Feb 2023 17:24:00 GMT ETag: "63e3d583-810d" Last-Modified: Wed, 08 Feb 2023 17:01:55 GMT Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Frame-Options: DENY X-XSS-Protection: 1; mode=block Content-Length: 33037 Connection: keep-alive

	ocsp.sectigo.com/	104.18.32.68	200 OK	471 B
URL HTTP/1.1 ocsp.sectigo.com/ IP 104.18.32.68:0 ASN #13335 CLOUDFLARENET File type data Size 471 B (471 bytes) Hash 5f1c5a1eb5020a66318a3faf58f15f08 7978debf58d7cbb15bc59ce3371a1ef82105f494 752c1e03b8f2be16f9714b4dcab5c27f344c874283a13b78e7b7a2549c465a6b HTTP Headers `POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Wed, 08 Feb 2023 17:24:00 GMT Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Last-Modified: Mon, 06 Feb 2023 22:24:04 GMT Expires: Mon, 13 Feb 2023 22:24:03 GMT Etag: "7978debf58d7cbb15bc59ce3371a1ef82105f494" Cache-Control: max-age=449402,s-maxage=1800,public,no-transform,must-revalidate X-CCACDN-Proxy-ID: mcdpinlb4 X-Frame-Options: SAMEORIGIN CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 79660e709ae2fab8-OSL`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1d885cfc22a04f1216c98dd64df5338a 589916a844b81fac40af88a772865b8e28dfb64e 40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3" Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19346 Expires: Wed, 08 Feb 2023 22:46:26 GMT Date: Wed, 08 Feb 2023 17:24:00 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1d885cfc22a04f1216c98dd64df5338a 589916a844b81fac40af88a772865b8e28dfb64e 40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3" Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19346 Expires: Wed, 08 Feb 2023 22:46:26 GMT Date: Wed, 08 Feb 2023 17:24:00 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1d885cfc22a04f1216c98dd64df5338a 589916a844b81fac40af88a772865b8e28dfb64e 40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3" Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19346 Expires: Wed, 08 Feb 2023 22:46:26 GMT Date: Wed, 08 Feb 2023 17:24:00 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg	34.120.237.76	200 OK	5.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.0 kB (4961 bytes) Hash 544181f4aba24fc687a14522dd20f720 2b117270563b8c466ec774acce55271c38f6135b 607c45cc5b4726b92c8507988bbb90ac6a44a3cf22b290030d440266350099a1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99e021e8-f66e-44fd-94ca-b30d25a8f5b4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4961 x-amzn-requestid: c3b9db99-726f-4473-a6b6-9cff0dceb949 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fswe1GeRoAMFiAA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63db612b-17b52fcd74e374f1104af709;Sampled=0 x-amzn-remapped-date: Thu, 02 Feb 2023 07:07:23 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: dSxTM3mmYK8cLOy5_x4o-lew1goEgwT4fBHi0pM-HSK_qBC6rDAlzg== via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Wed, 08 Feb 2023 15:13:11 GMT age: 7849 etag: "2b117270563b8c466ec774acce55271c38f6135b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (12216 bytes) Hash fe800d6af728cd622a6192ad5e7dda6a 3a301dd894fc428c7d1863c9d5eaf2652f5c2083 f4923c211ef24e933bbe73bd8d2033d6b6da4a9fa0c9d4699a1041a7bd8bf5a2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12216 x-amzn-requestid: cc61a63b-35fe-4bfa-ad20-1db3f4165446 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f_O7LFrCIAMFoYQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e2c514-2b5e27c62218510b74ea0989;Sampled=0 x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: C1EXSLUCdc9GzSKxUzv9_uWK4ZTqggdr03uVW5SWuZwVVSn2wc4k7w== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google date: Tue, 07 Feb 2023 21:44:01 GMT age: 70799 etag: "3a301dd894fc428c7d1863c9d5eaf2652f5c2083" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg	34.120.237.76	200 OK	8.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.6 kB (8644 bytes) Hash 726928e5de19ef978faebbe933c34008 bdaba3ed0c7efb65de88af96063d830683c8499b c6d208fcee052da80de1bf2dcccbbc48853511b8888c4777799ee676abba51b5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf4a5986-35e6-4c6b-9dba-c981908d9ec1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8644 x-amzn-requestid: d6d71f42-f887-4ad0-a2b7-9073d3857b03 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f_OjRHBFoAMF4_Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e2c47b-57490f255d8d30a561fdcd3a;Sampled=0 x-amzn-remapped-date: Tue, 07 Feb 2023 21:36:59 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: xU_uVO78ZQRKon3Cz-fVcHJuPEMMgzDsVuY8BXoKL6ntJwkl-SLeQA== via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google date: Tue, 07 Feb 2023 21:42:03 GMT age: 70917 etag: "bdaba3ed0c7efb65de88af96063d830683c8499b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a39697d-4bed-4ebe-970d-d9950958f814.jpeg	34.120.237.76	200 OK	14 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a39697d-4bed-4ebe-970d-d9950958f814.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 14 kB (13714 bytes) Hash 5de2fe3c9a2b091689a7213c4f781446 385fa88a857ba301f37ab56d72d11fb49abd8c6b b64b11a68493fa304aa6102bf9b9ff11fab5e1536ecf768e4b0fa51470ae2293 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1a39697d-4bed-4ebe-970d-d9950958f814.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 13714 x-amzn-requestid: 8f776dba-4e5d-46e5-a3ac-459d86852375 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f_PFjGNHIAMFrMA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e2c556-74429dc755cc37672c68b58b;Sampled=0 x-amzn-remapped-date: Tue, 07 Feb 2023 21:40:38 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: Cf-MbK2WIFs3foM-_Ou5OUg7IS8ovfw-dHJnIpVUvpeAbMi-TeC5SA== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google date: Tue, 07 Feb 2023 21:54:34 GMT etag: "385fa88a857ba301f37ab56d72d11fb49abd8c6b" content-type: image/jpeg age: 70166 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg	34.120.237.76	200 OK	6.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.3 kB (6342 bytes) Hash d8a3fa4f1ec82d501942f9db3de2cb7d b91c2aea7f2fb26131c8929b254c5596a1bb25ff 9d246eeab8ba04c775a03fd960c8859934a0accb737e845e89aba40bc573fdaa HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbcb27041-48b2-474f-b9d5-f88e9e662723.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6342 x-amzn-requestid: b2b61a71-5326-4fc6-baba-7baad29cf7c5 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f_OkbHfDIAMF5AQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e2c482-5cc4028d01d05305637af317;Sampled=0 x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:06 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: xc32O6lBfn7jYg9I3VlZ5FnR9YpJtU3DbYD_ozsf_-R_Ih1-2e1-CQ== via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google date: Tue, 07 Feb 2023 21:42:10 GMT age: 70910 etag: "b91c2aea7f2fb26131c8929b254c5596a1bb25ff" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg	34.120.237.76	200 OK	6.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.2 kB (6177 bytes) Hash 25fb37d8b072e47aae74933481fb9418 b073d213a6a7939efed7ee5ef62a5548e00082bc 59a9c61013b3a4faab6f1c578f45bb87397d2f9e7975ae58e53e2c4e4a791da2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8122ba3b-f49a-49fa-acfb-88990087de42.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6177 x-amzn-requestid: 1b73f423-5a28-48f6-9ad1-9e42c38bebc6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f-tCnF09IAMFt4g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e28edd-294711995de49ebb380b4ca2;Sampled=0 x-amzn-remapped-date: Tue, 07 Feb 2023 17:48:13 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: zr0wkfqHvE3x4qvNObXp9uIF_oXpoZuHKgyboR5ezBuiHDdxFPpswA== via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google date: Tue, 07 Feb 2023 18:09:39 GMT age: 83661 etag: "b073d213a6a7939efed7ee5ef62a5548e00082bc" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	app.salesloft.com/favicon.ico	3.121.19.130	200 OK	2.3 kB
URL HTTP/1.1 app.salesloft.com/favicon.ico IP 3.121.19.130:0 ASN #16509 AMAZON-02 File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data Size 2.3 kB (2261 bytes) Hash 5589a0eb2a02e565e74982cf943b774b 45722a5d79b4e072d911459d98f9b32a891daf09 47e59ec62c6ebcfec5df315b4520a7b0b9ea9f8e1dd2a94cb5c8ceb72c0c220b HTTP Headers GET /favicon.ico HTTP/1.1 Host: app.salesloft.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.salesloft.com/unsubscribe?id=36037b2f-797c-468f-8aab-8c2505beaaba&confirm_opt_out_path=/t/104241/confirm_opt_out/36037b2f-797c-468f-8aab-8c2505beaaba Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: no-store Content-Security-Policy-Report-Only: default-src https: wss: blob: data: 'unsafe-inline'; img-src http: https:; object-src 'none'; frame-ancestors 'none'; Content-Type: image/x-icon Date: Wed, 08 Feb 2023 17:24:00 GMT ETag: "63e3d583-8d5" Last-Modified: Wed, 08 Feb 2023 17:01:55 GMT Strict-Transport-Security: max-age=31536000; includeSubDomains X-Content-Type-Options: nosniff X-Frame-Options: DENY X-XSS-Protection: 1; mode=block Content-Length: 2261 Connection: keep-alive

	js-agent.newrelic.com/nr-spa-1216.min.js	151.101.2.137	200 OK	18 kB
URL HTTP/2 js-agent.newrelic.com/nr-spa-1216.min.js IP 151.101.2.137:0 ASN #54113 FASTLY File type ASCII text, with very long lines (32010) Size 18 kB (18216 bytes) Hash 6561a2403142205f966207d61576f1a6 1310e72f494e12ab63a4280fc1600a2c89dc9bb8 0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a HTTP Headers `GET /nr-spa-1216.min.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.salesloft.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: emAkzc02wDoi/4j+kNkFMQFgRL5PN5RT68FVYAmgTzQXT7TFZy0VlLzQFV0kvFgsR9Av3cedyZ4= x-amz-request-id: 33WCNDX1WCTE0BBA last-modified: Thu, 14 Apr 2022 16:45:57 GMT etag: "63e2df852d15ab21d7ff8fc4363222e8" x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU content-type: application/javascript server: AmazonS3 access-control-allow-origin: * cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 08 Feb 2023 17:24:00 GMT via: 1.1 varnish x-served-by: cache-bma1660-BMA x-cache: HIT x-cache-hits: 2 x-timer: S1675877041.986025,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 18216 X-Firefox-Spdy: h2

	bam.eu01.nr-data.net/1/NRJS-ce5e8daad3227b82ed8?a=212444329&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=2522&ck=1&ref=https://app.salesloft.com/unsubscribe&be=2051&fe=2449&dc=2408&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675877093786,%22n%22:0,%22f%22:1976,%22dn%22:1976,%22dne%22:1976,%22c%22:1976,%22s%22:1976,%22ce%22:1976,%22rq%22:1978,%22rp%22:2005,%22rpe%22:2032,%22dl%22:2037,%22di%22:2408,%22ds%22:2408,%22de%22:2410,%22dc%22:2447,%22l%22:2447,%22le%22:2449%7D,%22navigation%22:%7B%7D%7D&fcp=2413&jsonp=NREUM.setToken	185.221.87.23	200 OK	49 B
URL HTTP/1.1 bam.eu01.nr-data.net/1/NRJS-ce5e8daad3227b82ed8?a=212444329&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=2522&ck=1&ref=https://app.salesloft.com/unsubscribe&be=2051&fe=2449&dc=2408&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675877093786,%22n%22:0,%22f%22:1976,%22dn%22:1976,%22dne%22:1976,%22c%22:1976,%22s%22:1976,%22ce%22:1976,%22rq%22:1978,%22rp%22:2005,%22rpe%22:2032,%22dl%22:2037,%22di%22:2408,%22ds%22:2408,%22de%22:2410,%22dc%22:2447,%22l%22:2447,%22le%22:2449%7D,%22navigation%22:%7B%7D%7D&fcp=2413&jsonp=NREUM.setToken IP 185.221.87.23:0 ASN #206998 New Relic International Limited File type ASCII text, with no line terminators Size 49 B (49 bytes) Hash ada33e5b8877e743ff658bf4bfa1867c 5a78662243dac43c0ee48bcb7e05a536b84c2e38 dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82 HTTP Headers GET /1/NRJS-ce5e8daad3227b82ed8?a=212444329&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=2522&ck=1&ref=https://app.salesloft.com/unsubscribe&be=2051&fe=2449&dc=2408&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675877093786,%22n%22:0,%22f%22:1976,%22dn%22:1976,%22dne%22:1976,%22c%22:1976,%22s%22:1976,%22ce%22:1976,%22rq%22:1978,%22rp%22:2005,%22rpe%22:2032,%22dl%22:2037,%22di%22:2408,%22ds%22:2408,%22de%22:2410,%22dc%22:2447,%22l%22:2447,%22le%22:2449%7D,%22navigation%22:%7B%7D%7D&fcp=2413&jsonp=NREUM.setToken HTTP/1.1 Host: bam.eu01.nr-data.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.salesloft.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Connection: keep-alive Content-Length: 49 content-type: text/javascript access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS access-control-allow-credentials: true access-control-allow-origin: * set-cookie: JSESSIONID=f6ff6ee5917fd394; Path=/; Domain=.nr-data.net; Secure; SameSite=None cross-origin-resource-policy: cross-origin x-envoy-upstream-service-time: 4 server: istio-envoy x-timer: S1675877041.110467,VS0,VE24 accept-ranges: bytes date: Wed, 08 Feb 2023 17:24:01 GMT via: 1.1 varnish x-served-by: cache-bma1621-BMA x-cache: MISS x-cache-hits: 0

	bam.eu01.nr-data.net/events/1/NRJS-ce5e8daad3227b82ed8?a=212444329&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=2663&ck=1&ref=https://app.salesloft.com/unsubscribe	185.221.87.23	200 OK	24 B
URL HTTP/1.1 bam.eu01.nr-data.net/events/1/NRJS-ce5e8daad3227b82ed8?a=212444329&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=2663&ck=1&ref=https://app.salesloft.com/unsubscribe IP 185.221.87.23:0 ASN #206998 New Relic International Limited File type GIF image data, version 89a, 1 x 1\012- data Size 24 B (24 bytes) Hash bc32ed98d624acb4008f986349a20d26 2d3df8c11d2168ce2c27e0937421d11d85016361 0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300 HTTP Headers POST /events/1/NRJS-ce5e8daad3227b82ed8?a=212444329&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=2663&ck=1&ref=https://app.salesloft.com/unsubscribe HTTP/1.1 Host: bam.eu01.nr-data.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: text/plain Content-Length: 165 Origin: https://app.salesloft.com Connection: keep-alive Referer: https://app.salesloft.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Connection: keep-alive Content-Length: 24 content-type: image/gif access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS access-control-allow-credentials: true access-control-allow-origin: https://app.salesloft.com x-envoy-upstream-service-time: 1 server: istio-envoy x-timer: S1675877041.169417,VS0,VE20 accept-ranges: bytes date: Wed, 08 Feb 2023 17:24:01 GMT via: 1.1 varnish x-served-by: cache-bma1621-BMA x-cache: MISS x-cache-hits: 0`

	cdn-sdr.salesloft.com/styles-bdc9319be40e7791-v1.css	104.18.222.90	200 OK	0 B
URL HTTP/2 cdn-sdr.salesloft.com/styles-bdc9319be40e7791-v1.css IP 104.18.222.90:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /styles-bdc9319be40e7791-v1.css HTTP/1.1 Host: cdn-sdr.salesloft.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://app.salesloft.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` HTTP/2 200 OK date: Wed, 08 Feb 2023 17:24:00 GMT content-type: text/css x-amz-id-2: BxM/8ChAN44dZLqrSp+gR/8q2kX6o2BADXudF8NFJgzaJe8hM4gi6ZLyOZ5WKACkQUYK3f5aMOI= x-amz-request-id: 5E9KKDAQRR7DGE28 cache-control: public, max-age=86400 last-modified: Wed, 08 Feb 2023 17:01:44 GMT etag: W/"075e2a39d625ba5d15496d902ee50021" cf-cache-status: HIT expires: Thu, 09 Feb 2023 17:24:00 GMT vary: Accept-Encoding strict-transport-security: max-age=0 access-control-allow-origin: * server: cloudflare cf-ray: 79660e704d7d0b61-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (30)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type