mabe.hr-staff-net.com/
52.212.52.84301 Moved Permanently 0 B IP 52.212.52.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
GET / HTTP/1.1
Host: mabe.hr-staff-net.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
Server: gunicorn
Date: Thu, 09 Feb 2023 03:06:29 GMT
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
Location: https://mabe.hr-staff-net.com/
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Referrer-Policy: same-origin
Vary: Origin
Via: 1.1 vegur
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5066
Expires: Thu, 09 Feb 2023 04:30:56 GMT
Date: Thu, 09 Feb 2023 03:06:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8228
Expires: Thu, 09 Feb 2023 05:23:38 GMT
Date: Thu, 09 Feb 2023 03:06:30 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 09 Feb 2023 02:34:15 GMT
content-type: application/json
age: 1935
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16017
Expires: Thu, 09 Feb 2023 07:33:27 GMT
Date: Thu, 09 Feb 2023 03:06:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: UVa4Bu1AvuJeWHuKiSj5uVffcSiKbgnvl77mHZym7dLf2g1FzXQXM/4oi4L6o9OgQDMHghvBOVp2uRy/wI2rIA==
x-amz-request-id: R92JNDTKZT5EWMNJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 09 Feb 2023 02:36:11 GMT
age: 1819
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 03:06:30 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bcd82e88dc913498d7e417912a6363bb
a6766d7f76a5f7c20b0a58abdc63e6aafbc96468
187e23e34f3262eefadaac48191c0f564e483223baa4a24ffa05b992e2351b70
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "187E23E34F3262EEFADAAC48191C0F564E483223BAA4A24FFA05B992E2351B70"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 09 Feb 2023 09:06:30 GMT
Date: Thu, 09 Feb 2023 03:06:30 GMT
Connection: keep-alive
mabe.hr-staff-net.com/
52.212.52.84200 OK 14 kB IP 52.212.52.84:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 1ba9c913f325e31d3ff70c9729be179a
e7e725aa7311128a66f864042b4bcca35a8248c7
6437ff63bcfca4b163aad3c264e628760ae7f308383d256ca3a6edc4bad6f3b3
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
GET / HTTP/1.1
Host: mabe.hr-staff-net.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Connection: keep-alive
Server: gunicorn
Date: Thu, 09 Feb 2023 03:06:30 GMT
Content-Type: text/html; charset=utf-8
X-Frame-Options: SAMEORIGIN
Content-Length: 13859
Vary: Accept-Language, Cookie, Origin
Content-Language: en-us
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Referrer-Policy: same-origin
Set-Cookie: django_language=en-us; Path=/
Via: 1.1 vegur
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 05add0ef4b365a993018ba69d005451b
3baa55a75a1552fcb02b5df265339404fae81871
33edb82c0b2cb0760caaff0a827635f3c602700a4a6d40d2cdbace97d1a8f971
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6325
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 03:06:30 GMT
Last-Modified: Thu, 09 Feb 2023 01:21:05 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 03:06:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mabe.hr-staff-net.com/jsi18n/
52.212.52.84200 OK 27 kB URL HTTP/1.1 mabe.hr-staff-net.com/jsi18n/
IP 52.212.52.84:0
File type ASCII text, with very long lines (1222)
Hash 3eb1588c9337827276acfe09a910c4ef
e0e1b3d3a9a7240762316327027560816d6a7bc2
f4a74142f8ea3c7081187cc4c8cbc43a543f74d605e69c318786cd413e5d6fb1
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
GET /jsi18n/ HTTP/1.1
Host: mabe.hr-staff-net.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mabe.hr-staff-net.com/
Connection: keep-alive
Cookie: django_language=en-us
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: gunicorn
Date: Thu, 09 Feb 2023 03:06:30 GMT
Content-Type: text/javascript; charset="utf-8"
X-Frame-Options: SAMEORIGIN
Content-Length: 27294
Vary: Accept-Language, Cookie, Origin
Content-Language: en-us
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Referrer-Policy: same-origin
Via: 1.1 vegur
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 84889b914548f7820766f27a40699cfa
bc674cdb5819759b5ecd5aabfde47f56127f5d89
e2a69fe4edd028d00a8a744b62ef51dada2aff144da0cd9813efc887a11f70a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 03:06:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js
142.250.74.164200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash c40fb3e99bdf4c051379206b381f995b
3cf6ce4a866abbd13ce857357061a1cfa3a27690
0c45a6582686059e9d82919355c239be284c5740680f56332419ce0516280183
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 09 Feb 2023 03:06:30 GMT
date: Thu, 09 Feb 2023 03:06:30 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 0333fa3e34f17f01e9829bd8ee662c23
be4c7a8599038facc49c73d6d14451023bc919e7
8b4ad992549334395b268f43cf73150ed0dfe58801cf9595c3e245ea92dea7d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 03:06:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 248ce16379b12f11927ecc3142aec450
fa5b189f2d9182479170cb61cc1723571e437bd2
a8d259b331bdefb00625b9bf057d44d0b3290fda0734c57eda187b04e23d59d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8D259B331BDEFB00625B9BF057D44D0B3290FDA0734C57EDA187B04E23D59D4"
Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14266
Expires: Thu, 09 Feb 2023 07:04:16 GMT
Date: Thu, 09 Feb 2023 03:06:30 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 09 Feb 2023 02:14:53 GMT
age: 3097
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 44fc0cb48c26edb9ce36736707b9182a
62de7faa3e8171c0d38a2e03a604d2545a3ede7f
9e511ad6ed9e7c5f28f573422e3891d2f4e5c2ba5107f7eda808c529a95931a2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 03:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 2fd4ccdb88567af12b5d393b836a8b45
b3d22c32943ce4330cc122a83f3a9166064272fc
26a5b7e3d1997df22ac8b786291b3c04dbdceea56808032b7b6712734c0b806d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Thu, 09 Feb 2023 03:06:31 GMT
Etag: "63e337dd-1d7"
Server: ECS (dcb/7F3B)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Hg3ZyxMXhFAIbE1C2NNs3PgH3L2iBaXPcD_EYyPEtsKZouOCKcDw6g==
cdn.takesecurity.com/static/assets2/css/pages/login/classic/login-4.min.css
54.230.111.20200 OK 765 B URL HTTP/2 cdn.takesecurity.com/static/assets2/css/pages/login/classic/login-4.min.css
IP 54.230.111.20:0
File type ASCII text, with very long lines (765), with no line terminators
Hash ac1d34b5481d4ba2b0b9462c8f26d2e9
1ecec8ff1a46e1fdc7e888cc55a8286a6fbdab5d
77c669d234712662e14de58a98051cffc86328ded158d180bd0925428cb3dc78
GET /static/assets2/css/pages/login/classic/login-4.min.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 765
last-modified: Sat, 29 Jan 2022 08:43:27 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 12:59:53 GMT
etag: "ac1d34b5481d4ba2b0b9462c8f26d2e9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RF_aczShAZFYhcZlbi9a159b1RQ2FkSZ8-4RqpACyKe9dbXqBwiRVw==
age: 50799
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/css/pages/login/login.css
54.230.111.20200 OK 466 B URL HTTP/2 cdn.takesecurity.com/static/assets2/css/pages/login/login.css
IP 54.230.111.20:0
File type assembler source, ASCII text
Hash 76288853453dcdc6885fe7a56c82f07d
863a7c12d381c437d62ef60d719f78c304182344
0d20c6fce93bdd1b675b9af230172d5096cf1e9017da035937ab23de0a4530f3
GET /static/assets2/css/pages/login/login.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 466
last-modified: Sat, 26 Mar 2022 09:18:49 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 12:59:53 GMT
etag: "76288853453dcdc6885fe7a56c82f07d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Icbn7erUPni2GTYlb22EaRi1tEce2vTWe4Rxf2QVtfBf_el4j5v0kQ==
age: 50799
cache-control: no-cache
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.238.212.181101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.212.181:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QaUoOjIRzH7bukX/6uDuFA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: urFUXR6HJH7nkkvSLomiSL36qwU=
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 2fd4ccdb88567af12b5d393b836a8b45
b3d22c32943ce4330cc122a83f3a9166064272fc
26a5b7e3d1997df22ac8b786291b3c04dbdceea56808032b7b6712734c0b806d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=102396
Date: Thu, 09 Feb 2023 03:06:31 GMT
Etag: "63e337dd-1d7"
Expires: Fri, 10 Feb 2023 07:33:07 GMT
Last-Modified: Wed, 08 Feb 2023 05:49:17 GMT
Server: ECS (dcb/7F7F)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ECtHpkmdY9iVM1QJVMK9NgKtaH3BLQpojquKttXA2l5lrt166kiz7w==
Age: 6230
cdn.takesecurity.com/static/assets/pages/scripts/general-popover.js
54.230.111.20200 OK 701 B URL HTTP/2 cdn.takesecurity.com/static/assets/pages/scripts/general-popover.js
IP 54.230.111.20:0
Hash 716c0c3279ae5863037e9e42b3a169e0
a3bf3061b57837515d5f046c44d9aae5a7669625
c42359de9bd3530244c69a6ebffa59d73c3e3720dec85f6cfc1d16a4b814fa8a
GET /static/assets/pages/scripts/general-popover.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 701
last-modified: Sat, 05 Mar 2022 09:13:55 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 09:46:39 GMT
etag: "716c0c3279ae5863037e9e42b3a169e0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2WoNfgy4p10lMCTnVNqZ8CGdt_ucw7XjlayKQazuzAVUceuatLslIg==
age: 62393
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/pages/scripts/extras/ui-alerts-api.js
54.230.111.20200 OK 654 B URL HTTP/2 cdn.takesecurity.com/static/assets/pages/scripts/extras/ui-alerts-api.js
IP 54.230.111.20:0
File type ASCII text, with CRLF line terminators
Hash ad4a801004cb14973c6afb4f1386f76b
9ea9ff029e322306097d3f84786e9062b708612f
6415752265c62dd07cf70c41eb85082b0943cc5bd47c929182e1b0f7ddddb015
GET /static/assets/pages/scripts/extras/ui-alerts-api.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 654
date: Wed, 08 Feb 2023 09:03:25 GMT
last-modified: Sat, 29 Jan 2022 08:38:26 GMT
etag: "ad4a801004cb14973c6afb4f1386f76b"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8b_2C81KDImwxOcpXrhrC_2pXDCbstaUv2SjUMVBjoFEwvKsbNwR6g==
age: 64987
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/pages/scripts/extras/messages.js
54.230.111.20200 OK 268 B URL HTTP/2 cdn.takesecurity.com/static/assets/pages/scripts/extras/messages.js
IP 54.230.111.20:0
Hash 414fb8c3bc80722871d4915012de1f3a
2a7c758a0e80cfc87ed9118254737d692eb944e7
603e86de72f31a68adc7b7896e36387e375405e566e72aa8be4d5b1d1ff1dee2
GET /static/assets/pages/scripts/extras/messages.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 268
last-modified: Sat, 23 Jun 2018 14:47:31 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Thu, 09 Feb 2023 03:06:32 GMT
cache-control: no-cache
etag: "414fb8c3bc80722871d4915012de1f3a"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cNwtffZ1BFoqgzeEhfIVpP0Vm344HHINn-PrNouuLmYFmaXTwcLMMA==
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 2fd4ccdb88567af12b5d393b836a8b45
b3d22c32943ce4330cc122a83f3a9166064272fc
26a5b7e3d1997df22ac8b786291b3c04dbdceea56808032b7b6712734c0b806d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=96166
Date: Thu, 09 Feb 2023 03:06:31 GMT
Etag: "63e337dd-1d7"
Expires: Fri, 10 Feb 2023 05:49:17 GMT
Last-Modified: Wed, 08 Feb 2023 05:49:17 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: sCpNEwrpLDtrBi9U83foC_xTwIw0DNyZJUV80JVTffNRWvNVC20eUg==
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 2fd4ccdb88567af12b5d393b836a8b45
b3d22c32943ce4330cc122a83f3a9166064272fc
26a5b7e3d1997df22ac8b786291b3c04dbdceea56808032b7b6712734c0b806d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=96166
Date: Thu, 09 Feb 2023 03:06:31 GMT
Etag: "63e337dd-1d7"
Expires: Fri, 10 Feb 2023 05:49:17 GMT
Last-Modified: Wed, 08 Feb 2023 05:49:17 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: I2zZmlur2o395BoqHLEKqam25SYWsbdHT5tlFJkxHxyqWBVvKCF2zw==
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 1eda8296b6d8216c11823c218d93fc53
5bc5e214594948f6110df8d9a119a1812463598a
724adcc68ddd999d2a9d70c069850398fd3390ca0e45ca4d6af01c3da5a3597d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=109432
Date: Thu, 09 Feb 2023 03:06:31 GMT
Etag: "63e3634e-1d7"
Expires: Fri, 10 Feb 2023 09:30:23 GMT
Last-Modified: Wed, 08 Feb 2023 08:54:38 GMT
Server: ECS (nyb/1D13)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bQGgHYO-cIW36o-Ho9VEsvwV5YMN2SSQQL8AKZvEENVAcrSRqQhjuA==
Age: 2145
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 03:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ka-p.fontawesome.com/releases/v6.3.0/css/pro-v4-shims.min.css?token=665a57b5d1
104.18.23.52200 OK 4.3 kB URL HTTP/2 ka-p.fontawesome.com/releases/v6.3.0/css/pro-v4-shims.min.css?token=665a57b5d1
IP 104.18.23.52:0
File type ASCII text, with very long lines (27250)
Hash 43baeb9edadbece9e5e6dc9bb2306759
7aeade1277d45b6f58791d7bdd7c751b5dede71f
2994f8ccb57c3dc6b322c86dbb9fa67713deacc5ef1d9e1f1c452cfc49ccea0d
GET /releases/v6.3.0/css/pro-v4-shims.min.css?token=665a57b5d1 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mabe.hr-staff-net.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 03:06:31 GMT
content-type: text/css
content-length: 4327
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "63d95b31-10e7"
last-modified: Tue, 31 Jan 2023 18:17:21 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 796963bbe8e3b4eb-OSL
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v6.3.0/css/pro-v4-font-face.min.css?token=665a57b5d1
104.18.23.52200 OK 2.3 kB URL HTTP/2 ka-p.fontawesome.com/releases/v6.3.0/css/pro-v4-font-face.min.css?token=665a57b5d1
IP 104.18.23.52:0
File type ASCII text, with very long lines (12086)
Hash 9d830d95b60fd06b3751e3dcebbdea01
8c48b2434156119d4688279f1a45fe01cf2354a5
1993128b0b5afb5600fa27bd70c054816a085b7c126bd0679e00b54b2d081420
GET /releases/v6.3.0/css/pro-v4-font-face.min.css?token=665a57b5d1 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mabe.hr-staff-net.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 03:06:31 GMT
content-type: text/css
content-length: 2330
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "63d95b31-91a"
last-modified: Tue, 31 Jan 2023 18:17:21 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 796963bbe8e6b4eb-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
142.250.74.35200 OK 7.7 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Hash a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446
GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mabe.hr-staff-net.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 14:34:21 GMT
expires: Fri, 02 Feb 2024 14:34:21 GMT
cache-control: public, max-age=31536000
age: 563530
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v6.3.0/css/pro-v5-font-face.min.css?token=665a57b5d1
104.18.23.52200 OK 12 kB URL HTTP/2 ka-p.fontawesome.com/releases/v6.3.0/css/pro-v5-font-face.min.css?token=665a57b5d1
IP 104.18.23.52:0
File type ASCII text, with very long lines (65364)
Hash acfaa70c08d66e508732109e7cffc74d
a50bc6959dae92f429687fa710c745bf6c86b075
27ab4514ea55d8d2bfbe5404d3031c05ce599a35057f6ec43d7b0effef1d9ee9
GET /releases/v6.3.0/css/pro-v5-font-face.min.css?token=665a57b5d1 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mabe.hr-staff-net.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 03:06:31 GMT
content-type: text/css
content-length: 12464
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "63d95b31-30b0"
last-modified: Tue, 31 Jan 2023 18:17:21 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 796963bbe8e4b4eb-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 03:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.35200 OK 7.9 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mabe.hr-staff-net.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 04:05:29 GMT
expires: Tue, 06 Feb 2024 04:05:29 GMT
cache-control: public, max-age=31536000
age: 255662
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 03:06:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ka-p.fontawesome.com/releases/v6.3.0/css/pro.min.css?token=665a57b5d1
104.18.23.52200 OK 182 kB URL HTTP/2 ka-p.fontawesome.com/releases/v6.3.0/css/pro.min.css?token=665a57b5d1
IP 104.18.23.52:0
File type ASCII text, with very long lines (65364)
Size 182 kB (182463 bytes)
Hash 3038d3434487467b88ef8cf81239088c
fd7f37c9461fb81bba4ec7b883989c9101f55005
4ede3280cffb66a40f764f7f7f615411f7c59364d842d48d784fc1f2b8d306b0
GET /releases/v6.3.0/css/pro.min.css?token=665a57b5d1 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mabe.hr-staff-net.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 03:06:31 GMT
content-type: text/css
content-length: 182463
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "63d95b32-2c8bf"
last-modified: Tue, 31 Jan 2023 18:17:22 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 796963bbd8ddb4eb-OSL
X-Firefox-Spdy: h2
s3-eu-west-1.amazonaws.com/sf-production-eu/media%2Ftenant%2F1185%2Flogo_21d2b4433ec3a25f38849a4c11abfa768131c270.jpeg
52.92.1.96200 OK 759 kB URL HTTP/1.1 s3-eu-west-1.amazonaws.com/sf-production-eu/media%2Ftenant%2F1185%2Flogo_21d2b4433ec3a25f38849a4c11abfa768131c270.jpeg
IP 52.92.1.96:0
File type PNG image data, 1484 x 646, 8-bit/color RGBA, non-interlaced\012- data
Size 759 kB (758877 bytes)
Hash 5d5009e88a56e004e09b30bc648a5ddd
cb8f4753a14c3b26e271540defca7f7552e2d9c6
c1dd82cd43b98c5c7e52c67b673c227b69174a645e5a3f68f2b03ab3854122bf
GET /sf-production-eu/media%2Ftenant%2F1185%2Flogo_21d2b4433ec3a25f38849a4c11abfa768131c270.jpeg HTTP/1.1
Host: s3-eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 4aGfMEOXAXDGWVIcmHGZQVVuxrV+OWsS1iQ9njtIRJ5dqDN/93IejviZviTPtHZHjULRcgc4BUo=
x-amz-request-id: 29FN82MFKYVZNSV2
Date: Thu, 09 Feb 2023 03:06:32 GMT
Last-Modified: Tue, 29 Jun 2021 20:34:39 GMT
ETag: "75f09802e2975660bc0765b6b5b64710-1"
Cache-Control: null
Content-Disposition: null
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 758877
cdn.takesecurity.com/static/assets/pages/scripts/extras/messages.js
54.230.111.20304 Not Modified 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/pages/scripts/extras/messages.js
IP 54.230.111.20:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/assets/pages/scripts/extras/messages.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Sat, 23 Jun 2018 14:47:31 GMT
If-None-Match: "414fb8c3bc80722871d4915012de1f3a"
TE: trailers
HTTP/2 304 Not Modified
date: Thu, 09 Feb 2023 03:06:33 GMT
last-modified: Sat, 23 Jun 2018 14:47:31 GMT
cache-control: no-cache
x-amz-version-id: null
server: AmazonS3
etag: "414fb8c3bc80722871d4915012de1f3a"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oFipOlNwGWcsFibXmxLAx83p-igeCNnbM6SP7lBjZd1kMFjTN3_qsw==
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/pages/img/favicon_redondo.png
54.230.111.20200 OK 3.6 kB URL HTTP/2 cdn.takesecurity.com/static/assets/pages/img/favicon_redondo.png
IP 54.230.111.20:0
File type PNG image data, 260 x 260, 8-bit colormap, non-interlaced\012- data
Hash 442989bfecc532e82adae1a509734247
eda5b470b8457ac547c3bea7490bb2f381adf134
d589f34690bcf60defc8003cea4a60045ccd89a16487baabf802de7b2268b4dc
GET /static/assets/pages/img/favicon_redondo.png HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 3631
last-modified: Sat, 29 Jan 2022 08:34:32 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Wed, 08 Feb 2023 15:21:42 GMT
etag: "442989bfecc532e82adae1a509734247"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0GYB8Xar0nf49VLwM2ZUlKxSxElm-p3J4Sjq51eje3_I6RBay92ydQ==
age: 42291
cache-control: no-cache
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (633)
Size 164 kB (163841 bytes)
Hash fe98364486b3206867b17008f995646f
35a5e9aa210970f7abd718d99e629c6982a3cc02
1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mabe.hr-staff-net.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 08:53:11 GMT
expires: Wed, 07 Feb 2024 08:53:11 GMT
cache-control: public, max-age=31536000
age: 152001
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mabe.hr-staff-net.com/set_user_timezone/?timezone=Etc%2FUTC
52.212.52.84200 OK 64 B URL HTTP/1.1 mabe.hr-staff-net.com/set_user_timezone/?timezone=Etc%2FUTC
IP 52.212.52.84:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 89855c9d951556e314542f45b2545309
bead1f6e23c3051cad3b947a2b2cb9181946ad3f
999c7a22a5a595b82c4adac738a060d349ef01ef867c00fad08dbc21a9f8d750
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
GET /set_user_timezone/?timezone=Etc%2FUTC HTTP/1.1
Host: mabe.hr-staff-net.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mabe.hr-staff-net.com/
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Cookie: django_language=en-us
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Connection: keep-alive
Server: gunicorn
Date: Thu, 09 Feb 2023 03:06:32 GMT
Content-Type: application/json
X-Frame-Options: SAMEORIGIN
Content-Length: 64
Vary: Accept-Language, Cookie, Origin
Content-Language: en-us
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Referrer-Policy: same-origin
Set-Cookie: sessionid=4wht74mjw3sxnqdnywafnoybq3e69k0t; HttpOnly; Path=/; SameSite=Lax; Secure
Via: 1.1 vegur
cdn.takesecurity.com/static/assets/pages/css/custom_users.css
54.230.111.20200 OK 2.5 kB URL HTTP/2 cdn.takesecurity.com/static/assets/pages/css/custom_users.css
IP 54.230.111.20:0
Hash eb34bd5fe487935609c6adeee3a429dc
d1c5214c4cf3a089a1552a8c17a5e4e5e110235f
aa4a462ccd4965478e269606d93222af029064fa0ed4f732b85c10fcfa66e744
GET /static/assets/pages/css/custom_users.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 29 Jan 2022 08:34:23 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 15:32:25 GMT
etag: W/"b65367ccc9924c29cbda920adefc556d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Afw3lBuf6AcViGVA9MOOQICrxjtICRqrLoETftrM3MSPAFqWCxo1RQ==
age: 41647
cache-control: no-cache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4624
Expires: Thu, 09 Feb 2023 04:23:36 GMT
Date: Thu, 09 Feb 2023 03:06:32 GMT
Connection: keep-alive
cdn.takesecurity.com/static/assets2/plugins/custom/fullcalendar/fullcalendar.bundle.css
54.230.111.20200 OK 10 kB URL HTTP/2 cdn.takesecurity.com/static/assets2/plugins/custom/fullcalendar/fullcalendar.bundle.css
IP 54.230.111.20:0
Hash 54d58a4ff7807f06e252b4734a2d9ddc
c2f29738650a1516abcd943d55e2f5aad1e61803
908cf6249288a742715c052af481380076cd6bd9782cac8d455855effe99eb43
GET /static/assets2/plugins/custom/fullcalendar/fullcalendar.bundle.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 29 Jan 2022 08:43:28 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 09 Feb 2023 03:06:32 GMT
etag: W/"26a15e35878c33fbc94c9e739d94a9c8"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Zm356GZ-6wCZ08Xai8dWQ4QaUn0AqVMSAJc8W6tEXUVCPcI4dAq0iw==
cache-control: no-cache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4624
Expires: Thu, 09 Feb 2023 04:23:36 GMT
Date: Thu, 09 Feb 2023 03:06:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4624
Expires: Thu, 09 Feb 2023 04:23:36 GMT
Date: Thu, 09 Feb 2023 03:06:32 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9614e0f-1b62-40ec-b140-9464c5527d5e.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9614e0f-1b62-40ec-b140-9464c5527d5e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 403cadd5f6beb14f5d2a4dd9eafc68d3
4724b4929c1afcc134ead274238725e4ce729b26
13d7b7ca88de8341e3ec835a5a7d8c79bc50a136aff8eb90aa3c2267f3e8cc08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9614e0f-1b62-40ec-b140-9464c5527d5e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5241
x-amzn-requestid: 3ffb8a54-178e-4574-9662-8dc7696203fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ACiy0FOqIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e41811-26219fa14a85f6e81e4cf129;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 21:45:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8U_d5u2rtXAyLLBhRZ3BbQkFOc5gxZIPhnyL5XOvjGV6-8KqWyn8FQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 22:08:52 GMT
etag: "4724b4929c1afcc134ead274238725e4ce729b26"
content-type: image/jpeg
age: 17860
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ce710ab5746832fe637fada3e6d63abf
d545c85d4a8cf92dc8b88db0a056623d1ef7a943
40bae4a2fb9dd60e9339d15ad0838f3ca83b5b6275c35cd22878b6783fcd6247
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7450
x-amzn-requestid: c3dabd4b-797b-4bbe-8824-5f502ff477b0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2aG-IoAMFfnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf5-68de905b2ed5bfe46a87e688;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AX-TsURes3Bn0RrAnH7TnsouJdkcOpbq7f7KAzPMWq4RMBH8FWMz7g==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 17:45:22 GMT
age: 33670
etag: "d545c85d4a8cf92dc8b88db0a056623d1ef7a943"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9b1dd9f-46ec-46f2-834f-c34f99ef0176.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9b1dd9f-46ec-46f2-834f-c34f99ef0176.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 087325c404f5b0b8e1bc800c167d6213
da37e1568089cf3536a8fe8304623694b7897326
a21b9844ebaac9fb408fc4d557badfbff0715cee7b5f3c8b9c628cdd1286dbe6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9b1dd9f-46ec-46f2-834f-c34f99ef0176.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4928
x-amzn-requestid: 6f2d290e-118c-47f8-9804-440b6fad05e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f86gZEhHIAMFX5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e1d79b-3bac9dcf09ea66fc4f04abbe;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 04:46:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wctSz3UwyRPsJCr9NfQDidMAMn0Wl13VP2Jt0C1nfVFKqKqiDnu_nA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 22:20:58 GMT
age: 17134
etag: "da37e1568089cf3536a8fe8304623694b7897326"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/global/plugins/simple-line-icons/simple-line-icons.min.css
54.230.111.20200 OK 11 kB URL HTTP/2 cdn.takesecurity.com/static/assets/global/plugins/simple-line-icons/simple-line-icons.min.css
IP 54.230.111.20:0
Hash 9a3015c0285190af870fc2abd3d31176
120f76eed72e80109e39963617c02979c1a66680
1a0a71cfc1107352cb56231d7689445c69c887a6cd10b5d76eed80bd116bc6c2
GET /static/assets/global/plugins/simple-line-icons/simple-line-icons.min.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 23 Jun 2018 14:45:46 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 15:32:25 GMT
etag: W/"6c977c35fbba185349bc72e0330a4046"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zPV53suipD_Wb3o_MzH_U_xDl8OcHZQVDV-ou1EzOqeLCS53fUDI8w==
age: 41647
cache-control: no-cache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10fd2f55fa0cfb8616ded6ddc2bb511a
996ed68f1b9770a19a97f6c8d359e338b8c8b3ca
e552d31a5e531386b9830bb58486f09bfcb3400676f726f93fdbea08336a09da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3599
x-amzn-requestid: 658f8678-b67d-4f98-b728-cf9cbad3aa86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ABI38GUpIAMFY0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e38832-2ab19d0f2345fc7515775298;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 11:32:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oBM94J-bP0KLv3VUKHBQcndevBxzLc1rQ27Mc4Z_C-CGOyCH_FlKDw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 22:14:59 GMT
age: 30692
etag: "996ed68f1b9770a19a97f6c8d359e338b8c8b3ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 95081172f8e19d19921acc802488e019
8531c150cb11de44361a95624b11cf46b9e0ba02
7a2d8f012c7d590f3f39ad834d4f3f9fb729143b7395bc588bd608b5bdee039b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15019
x-amzn-requestid: 574e3e2c-2fbe-4215-9500-021147338832
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f583LHiioAMFqkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a82d-4f12aac524c39f822ca4f422;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:11:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _3jIo3Giw3zmTmnSkJArAllT6uigN7EEzLPfkGpd6168_mSdqdk_Cg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 08:24:16 GMT
age: 67336
etag: "8531c150cb11de44361a95624b11cf46b9e0ba02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/css/themes/layout/header/menu/light.min.css
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/css/themes/layout/header/menu/light.min.css
IP 54.230.111.20:0
GET /static/assets2/css/themes/layout/header/menu/light.min.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 29 Jan 2022 08:43:26 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 15:32:25 GMT
etag: W/"e21c78b601930da59dd32159489d63bf"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MePwgVMGx9a0llNIfnYhxx1PtvPZhNojUPDH3e0I03WvH2oZuWLhkA==
age: 41647
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/plugins/global/plugins.bundle.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/plugins/global/plugins.bundle.js
IP 54.230.111.20:0
GET /static/assets2/plugins/global/plugins.bundle.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 08 Feb 2023 16:05:07 GMT
last-modified: Sat, 26 Mar 2022 09:18:46 GMT
etag: W/"82205f322b44febc79e3603263ea0844"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: c8d3OS-tBHx3h8X7ZTNNjyEJM--xRlpXTjHg_mUQr3JY-czUdrKIOw==
age: 39685
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/global/plugins/tz/jstz-1.0.4.min.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/global/plugins/tz/jstz-1.0.4.min.js
IP 54.230.111.20:0
GET /static/assets/global/plugins/tz/jstz-1.0.4.min.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 23 Jun 2018 14:46:19 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: br
date: Thu, 09 Feb 2023 03:06:32 GMT
cache-control: no-cache
etag: W/"cf77c217a823810ab91c5430a021a5f5"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PcMjXolpjOJ9pSlxhxOisdOiGjqD6N8tgR27kfddopifzY8uHdoFNA==
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/css/themes/layout/aside/light.min.css
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/css/themes/layout/aside/light.min.css
IP 54.230.111.20:0
GET /static/assets2/css/themes/layout/aside/light.min.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 29 Jan 2022 08:43:23 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 08:14:27 GMT
etag: W/"afb54eed2422a82ff0424a2b1fb10d7d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RZaBp947H14zguxFwWCKMz94XwAkRPDnzWQapPnCmeR_obDckdB8rw==
age: 67925
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/global/css/components-rounded.min.css
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/global/css/components-rounded.min.css
IP 54.230.111.20:0
GET /static/assets/global/css/components-rounded.min.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 29 Jan 2022 08:39:03 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 15:32:25 GMT
etag: W/"301ba5e87c39f83c8113b7fff5d3cb04"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _b8J3MkxdGDwrLv282xe_PD_TdxoF7ys39KhgfIWkzWc5nrUO5CVUg==
age: 41647
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/css/style.bundle.css
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/css/style.bundle.css
IP 54.230.111.20:0
GET /static/assets2/css/style.bundle.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 29 Jan 2022 08:43:21 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 15:32:25 GMT
etag: W/"3cb825ddf0febe1d984142aa27121566"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pPR50z2FGMJ5iILfzThL9n6HNjA4Ux4zLsF55Y9SS3OvuK6FgjiXfQ==
age: 41647
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/global/plugins/js.cookie.min.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/global/plugins/js.cookie.min.js
IP 54.230.111.20:0
GET /static/assets/global/plugins/js.cookie.min.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 23 Jun 2018 14:45:40 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 19:42:56 GMT
etag: W/"51e87c6871523b63a469e88b244f0429"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G9ebHhw8WJKhMgmsnqykqXkXRTSX4AReNr77McBrNkiJoFfGRaEHyA==
age: 26616
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/js/pages/widgets.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/js/pages/widgets.js
IP 54.230.111.20:0
GET /static/assets2/js/pages/widgets.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 08 Feb 2023 10:40:28 GMT
last-modified: Sat, 29 Jan 2022 08:43:17 GMT
etag: W/"81db613f4ae8ad80da5aeea927170137"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JOfo0IvnYp-hdGIWK0NHijlaasaSdYX4jyxTSY_KnoZ23Ts0zUBRsA==
age: 59164
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/js/pages/custom/login/login-general.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/js/pages/custom/login/login-general.js
IP 54.230.111.20:0
GET /static/assets2/js/pages/custom/login/login-general.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 04 Jun 2022 14:12:02 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 15:32:26 GMT
etag: W/"54e4afed06bb7cc27361165ca3d4347e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8yx6BQzLrDIWgGH_alinZynBrq2XqhrbpiVkBU-dEKD4A2II4rMfOg==
age: 41646
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/global/plugins/jquery-validation/js/jquery.validate.min.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/global/plugins/jquery-validation/js/jquery.validate.min.js
IP 54.230.111.20:0
GET /static/assets/global/plugins/jquery-validation/js/jquery.validate.min.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 08 Feb 2023 09:03:25 GMT
last-modified: Sat, 23 Jun 2018 14:45:32 GMT
etag: W/"3b00d60f87e893caf2649eff0d48813a"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OplH3QiFgb4kJmXf5yui6ADtnLdhFOUnYROVf56qaXJXrDxLdwsW-g==
age: 64987
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/plugins/global/select2/select2-bootstrap4.min.css
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/plugins/global/select2/select2-bootstrap4.min.css
IP 54.230.111.20:0
GET /static/assets2/plugins/global/select2/select2-bootstrap4.min.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 29 Jan 2022 08:43:34 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 10:18:54 GMT
etag: W/"fed35f55de6e40f470c0ac757fa8fc6a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yxiZEUXcbvJGEJC9AvscuSgGQGl8OeG_n8KIZ9YAZtQG73gHa-knTA==
age: 60458
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/plugins/custom/prismjs/prismjs.bundle.css
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/plugins/custom/prismjs/prismjs.bundle.css
IP 54.230.111.20:0
GET /static/assets2/plugins/custom/prismjs/prismjs.bundle.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 29 Jan 2022 08:43:28 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 12:59:53 GMT
etag: W/"443cdd626a5f06e206a9bd37b72302bd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QsRSc1AEvJfs2uhJCXZmXyZ7sCsPmyWS65ZG9qLQgrJmuK5nJtfc4A==
age: 50799
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/global/plugins/bootstrap-hover-dropdown/bootstrap-hover-dropdown.min.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/global/plugins/bootstrap-hover-dropdown/bootstrap-hover-dropdown.min.js
IP 54.230.111.20:0
GET /static/assets/global/plugins/bootstrap-hover-dropdown/bootstrap-hover-dropdown.min.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 23 Jun 2018 14:45:02 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 10:16:36 GMT
etag: W/"37de75434657af5bfe94cf3f4450c80b"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CQLTS4X3ShHQ4jterwvgvPnfKsFdYwhIqISll2WTZI9jLEoWMR40nQ==
age: 60596
cache-control: no-cache
X-Firefox-Spdy: h2
kit.fontawesome.com/665a57b5d1.js
104.18.23.52200 OK 0 B URL HTTP/2 kit.fontawesome.com/665a57b5d1.js
IP 104.18.23.52:0
GET /665a57b5d1.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mabe.hr-staff-net.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 03:06:30 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: F0IJE4WTnC2hv7Aa44Sh
cf-cache-status: MISS
server: cloudflare
cf-ray: 796963b5ce6fb4eb-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/global/plugins/jquery.blockui.min.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/global/plugins/jquery.blockui.min.js
IP 54.230.111.20:0
GET /static/assets/global/plugins/jquery.blockui.min.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 23 Jun 2018 14:45:39 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 09:49:36 GMT
etag: W/"f35b3230007335b610a67fe27e9c19b5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fJN3vt_tNgxcCWZqCBU-01QALdu8QYfvHAIvGo7U2YuNreqiQNldtA==
age: 62216
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/global/plugins/bootstrap-daterangepicker/daterangepicker.min.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/global/plugins/bootstrap-daterangepicker/daterangepicker.min.js
IP 54.230.111.20:0
GET /static/assets/global/plugins/bootstrap-daterangepicker/daterangepicker.min.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 23 Jun 2018 14:44:56 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 19:42:57 GMT
etag: W/"986689503bc2bda3e369b4273b3cb21d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: keec7DU3HTdiqNzG5lp_hOmzxjABpiwgAdFqc66WPSeiZrlBpN6NiA==
age: 26615
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/pages/scripts/general.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/pages/scripts/general.js
IP 54.230.111.20:0
GET /static/assets/pages/scripts/general.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 08 Feb 2023 10:40:28 GMT
last-modified: Sat, 04 Jun 2022 14:11:08 GMT
etag: W/"ff1d7982bce1fee1ac2207ff6b1b8001"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MwNTNtfGvmrfLHLh1Jcf1v0_1XttJm7PHv9aiHjwmlIEeC76u8pndw==
age: 59164
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/global/plugins/moment-with-locales.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/global/plugins/moment-with-locales.js
IP 54.230.111.20:0
GET /static/assets/global/plugins/moment-with-locales.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 26 Mar 2022 09:13:43 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 15:32:26 GMT
etag: W/"8e570808d57bab22a6cc3bb79dd3053d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xfY95C2j981TjND8r2rhK-pnePY0-rY2wrfZAa9z3XiI0CCoo9IL9Q==
age: 41646
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/pages/scripts/common/select2.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/pages/scripts/common/select2.js
IP 54.230.111.20:0
GET /static/assets/pages/scripts/common/select2.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 29 Oct 2022 07:57:49 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 10:16:36 GMT
etag: W/"331044cb1f7872df65a0eadbf7b4fcb0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NMGvGjFMPriuFAz3fbOta2UZnOCJ0wW6LM4buvHukRFGBhYAPs7QRw==
age: 60596
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/pages/css/custom.css
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/pages/css/custom.css
IP 54.230.111.20:0
GET /static/assets/pages/css/custom.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 05 Mar 2022 09:15:04 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 10:18:54 GMT
etag: W/"160d4f221f415763ffb907053ef4dccf"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -LFq7KFix5ikdLdHENRsJS4fpFSrl81xryCZQxQgskUsuHre4j5-FQ==
age: 60458
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/global/plugins/ladda/spin.min.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/global/plugins/ladda/spin.min.js
IP 54.230.111.20:0
GET /static/assets/global/plugins/ladda/spin.min.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 23 Jun 2018 14:45:40 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: br
date: Thu, 09 Feb 2023 03:06:32 GMT
cache-control: no-cache
etag: W/"9200c33782bb46a2e36beb1393a6797d"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BB0TfaR7g1yDMWoNcmC04JoqvNncTXJ4h1H_nbRf_8ZFmDCg_JFC7w==
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/css/themes/layout/header/base/light.min.css
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/css/themes/layout/header/base/light.min.css
IP 54.230.111.20:0
GET /static/assets2/css/themes/layout/header/base/light.min.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 29 Jan 2022 08:43:24 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 10:18:54 GMT
etag: W/"056972896767201c5b6e0090066e6028"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PVkTxdVsZPcLuTyf2jj3TtVyPd0s8Is5d3y_4fLwhO1Hmg4N40CPYA==
age: 60458
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/css/themes/layout/brand/light.min.css
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/css/themes/layout/brand/light.min.css
IP 54.230.111.20:0
GET /static/assets2/css/themes/layout/brand/light.min.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 29 Jan 2022 08:43:22 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 15:32:25 GMT
etag: W/"e188581a8bbbdcd2514063c0cf6e4483"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iAID41Fi64LiZF9d4knDy7uoGTO4wGP1HwHFrgq0s6h-zyK1f3YoUA==
age: 41647
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/js/scripts.bundle.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/js/scripts.bundle.js
IP 54.230.111.20:0
GET /static/assets2/js/scripts.bundle.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 29 Jan 2022 08:43:16 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 08:14:28 GMT
etag: W/"7cb30283c8ed439306473697a65eec0f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KSX6ZirAZryzPgVeT2mzGGNuHmqVw-mQ58KyXpnhKhsYgimRPUnrJw==
age: 67924
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/global/plugins/jquery-validation/js/additional-methods.min.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/global/plugins/jquery-validation/js/additional-methods.min.js
IP 54.230.111.20:0
GET /static/assets/global/plugins/jquery-validation/js/additional-methods.min.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 08 Feb 2023 09:03:25 GMT
last-modified: Sat, 23 Jun 2018 14:45:32 GMT
etag: W/"424557ef2a8b89693026b3b43d4b1e1c"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: q_xIilfUt2uR1Np5oeMuFHEzV-YG9nY1RIyHMlgRtCl6txuLoQQEbg==
age: 64987
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/pages/scripts/campaigns/common/reset-password.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/pages/scripts/campaigns/common/reset-password.js
IP 54.230.111.20:0
GET /static/assets/pages/scripts/campaigns/common/reset-password.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 25 Jun 2022 10:45:10 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 09 Feb 2023 03:06:31 GMT
etag: W/"82a08b05d2ca6df464a98fc849ec50c3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rwtuwGl4IJR4ed2lt79wStzwCq__2LHW9Zvo42Gdn2RpWVPzEsE2qA==
age: 15442
cache-control: no-cache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:300,400,500,600,700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Poppins:300,400,500,600,700
IP 142.250.74.106:0
GET /css?family=Poppins:300,400,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 09 Feb 2023 03:06:30 GMT
date: Thu, 09 Feb 2023 03:06:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/plugins/global/plugins.bundle.css
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/plugins/global/plugins.bundle.css
IP 54.230.111.20:0
GET /static/assets2/plugins/global/plugins.bundle.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 29 Jan 2022 08:43:30 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 15:32:25 GMT
etag: W/"fb60dde16d61ddc1661bd8e960bc50c1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bhrKQezMkTYAx6EZ5QxDTooIpMVTrgVETj-NDuW88n6ISHnm4DoSSw==
age: 41647
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/plugins/custom/prismjs/prismjs.bundle.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/plugins/custom/prismjs/prismjs.bundle.js
IP 54.230.111.20:0
GET /static/assets2/plugins/custom/prismjs/prismjs.bundle.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 08 Feb 2023 10:40:28 GMT
last-modified: Sat, 29 Jan 2022 08:43:28 GMT
etag: W/"b95532eddbc081e56e99f249064594f6"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3sDTb9OrD5yLA65N1Fnh45NRzqgyGAVwNEFUxJJ5zIIi_vqbo8RR8Q==
age: 59164
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/pages/scripts/users/login.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/pages/scripts/users/login.js
IP 54.230.111.20:0
GET /static/assets/pages/scripts/users/login.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 08 Feb 2023 10:40:29 GMT
last-modified: Sat, 04 Jun 2022 14:11:27 GMT
etag: W/"2d7960b6d3ad8b91f1b68bdb6dfdcdb4"
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: u3og52A5tExlaPqntCMTmh7L8AH8tscDZid7WqXcAfbXEhCxjpjSxw==
age: 59163
cache-control: no-cache
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets/global/plugins/moment-timezone-all-years.js
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets/global/plugins/moment-timezone-all-years.js
IP 54.230.111.20:0
GET /static/assets/global/plugins/moment-timezone-all-years.js HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 28 Nov 2020 12:11:36 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: br
date: Thu, 09 Feb 2023 03:06:32 GMT
cache-control: no-cache
etag: W/"41595f4edb799ac7a373dd06b736eb4b"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dbb-lnHVKyKHLyihpkE6kejT7n9fVkSsNwiLuopTEs1KNjYkiq5BMA==
X-Firefox-Spdy: h2
cdn.takesecurity.com/static/assets2/plugins/global/select2/select2.min.css
54.230.111.20200 OK 0 B URL HTTP/2 cdn.takesecurity.com/static/assets2/plugins/global/select2/select2.min.css
IP 54.230.111.20:0
GET /static/assets2/plugins/global/select2/select2.min.css HTTP/1.1
Host: cdn.takesecurity.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
last-modified: Sat, 29 Jan 2022 08:43:34 GMT
x-amz-version-id: null
server: AmazonS3
content-encoding: gzip
date: Thu, 09 Feb 2023 03:06:32 GMT
etag: W/"bc523f920a653b0baf7e325592052fe1"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K_e5nszpgQne5AguWa7gvQxtCiW9gQHapZKg9bI9sjK-ra6YvA1yHw==
cache-control: no-cache
X-Firefox-Spdy: h2