Report - mp.uscap.org/action/consumeSharedSessionAction?MAID=+csv9Da2rphoRjFDJm/CSw==&I2KBRCK=1&JSESSIONID=aaaq-OI9-NH0Hbj_KGwyy&SERVER=WZ6myaEXBLFD8VbcQEfOcg==&ORIGIN=878444671&RD=RD&exp=piMueMSUTMUdBa1crKW/1g==

Report Overview

Submitted URL
mp.uscap.org/action/consumeSharedSessionAction?MAID=+csv9Da2rphoRjFDJm/CSw==&I2KBRCK=1&JSESSIONID=aaaq-OI9-NH0Hbj_KGwyy&SERVER=WZ6myaEXBLFD8VbcQEfOcg==&ORIGIN=878444671&RD=RD&exp=piMueMSUTMUdBa1crKW/1g==
IP
104.18.123.114
ASN
#13335 CLOUDFLARENET
Submitted
2023-02-03 11:07:51
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
crossmark-cdn.crossref.org	21166	2018-08-30T11:00:34Z	2023-03-13T07:46:35Z	394 B	3.4 kB	143.204.55.42
modernpathology.org.marlin-prod.literatumonline.com	unknown	2023-01-21T22:41:11Z	2023-01-27T13:25:05Z	531 B	306 kB	104.18.137.72
acw.elsevier.com	30564	2017-01-29T15:06:21Z	2023-03-12T21:54:56Z	735 B	339 B	104.18.235.170
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.38.139.17
cdn.cookielaw.org	502	2013-12-28T14:20:36Z	2023-03-13T05:12:20Z	4.3 kB	282 kB	104.16.149.64
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.4 kB	200 kB	23.36.77.32
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	1.1 kB	2.1 kB	216.58.211.3
geolocation.onetrust.com	802	2018-02-07T12:23:41Z	2023-03-13T05:59:21Z	428 B	394 B	104.18.27.85
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.4 kB	3.6 kB	93.184.220.29
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	387 B	1.7 kB	142.250.74.106
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	62 kB	34.120.237.76
bam.nr-data.net	630	2015-02-10T01:06:27Z	2023-03-13T05:22:57Z	1.4 kB	1.0 kB	162.247.243.29
static.cloudflareinsights.com	1294	2019-09-24T16:34:56Z	2023-03-13T05:15:33Z	449 B	393 B	104.16.56.101
acw.sciencedirect.com	29822	2013-05-07T02:07:18Z	2023-03-12T21:54:56Z	740 B	339 B	104.18.234.170
mp.uscap.org	unknown	2022-12-28T20:03:44Z	2023-02-23T22:15:22Z	1.2 kB	2.3 kB	104.18.123.114
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	416 B	18 kB	104.17.24.14

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-03 11:08:13	medium	104.18.234.170	Client IP	ET INFO TLS Handshake Failure

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (24)

	URL	Size	First Seen	Last Seen
	mp.uscap.org/	27 kB	2023-03-09	2024-04-21
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:58:21 Last Seen2024-04-21 01:34:51 Times Seen1728 Hash 0cb3bda9ab599b32b1491fe202989694 e33c2602047413a3645a809f2399c1a84ea6a7c7 c75937e884ef04dcc409e0ffc9d02b10798cd04016faf44c3ba94ae8f9d401cb Loading...

	mp.uscap.org/	241 B	2023-03-09	2024-01-27
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:03:07 Last Seen2024-01-27 15:59:01 Times Seen32 Hash 25d5e90d24473eb8b2a0a4de170fba04 e207534d45af85a734c4ffa1dc874ce5dc56bb85 3411dd680d755739a28aad237f06a2b4856c28ca665fee117e873a7c7c5cd8ca Loading...

	cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.1/MathJax.js?config=TeX-AMS-MML_HTMLorMML	63 kB	2023-03-07	2024-04-24
Pretty URL cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.1/MathJax.js?config=TeX-AMS-MML_HTMLorMML IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:34:09 Last Seen2024-04-24 16:17:51 Times Seen1225 Hash 49565b9ce89c64da075a5a39969b366e 30fedc6c732ef68bff3ef42016c7610d70a00289 48344fd55558bbeb600062a175d052979f9ece87c7299788f8ecf16a46c87bf6 Loading...

	mp.uscap.org/	51 kB	2023-03-09	2023-03-26
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:58:21 Last Seen2023-03-26 04:57:09 Times Seen3 Hash e751b0c9e643f28052fefcbf025cdd6e 69770e460efd2d70ffa54fae7bc2c21f6bc558fe 81ebcb7051521d852ccc5d9669c89fda0644597c2bcaf8e67354529659425137 Loading...

	mp.uscap.org/	353 B	2023-03-13	2023-03-14
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:28:58 Last Seen2023-03-14 11:16:16 Times Seen1 Hash 68e0c324b17a4747630edd11c261b92f 73475d7c9a4d8549ae4561c23b17c02615c1b9c8 142e40bb9cbab1f88eb903dafcdf6417aece433d1fb398c12b171cfa3359b290 Loading...

	http:blank	580 B	2023-03-13	2023-03-13
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:45:36 Last Seen2023-03-13 15:45:36 Times Seen1 Hash 337bf2964e327d8a42cfd7b58e3d4408 8e60e3ae73516de80bb139dea6ca39f9c0f36383 514086316782ccb4a490a9ebe57e31afc5eb6412e175b1785eb0cdb681e59310 Loading...

	mp.uscap.org/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675411200	33 kB	2023-03-13	2023-03-13
Pretty URL mp.uscap.org/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1675411200 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:44:31 Last Seen2023-03-13 15:45:36 Times Seen1 Hash 503765579ade69ca8896f1f628d96710 2ae841a6231bd7ab943acb343271adb411dc219b 161fbbd04b5419615120f86096e707d8017d478ab2e2ce676eb21d8395a8af0e Loading...

	cdn.cookielaw.org/scripttemplates/otSDKStub.js	26 kB	2023-03-13	2024-02-26
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.16.149.64 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:29:58 Last Seen2024-02-26 19:47:30 Times Seen27 Hash eb5f773edabd6cb145a5ef495f1d4e57 79167a56792fc85f624078183bbd8941748ce730 83f8393c6593831a76ea84324c946029082b5c72507176c13387468d21c651ff Loading...

	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	17 kB	2023-03-08	2024-02-28
Pretty URL static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.56.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:00 Last Seen2024-02-28 12:44:37 Times Seen1362 Hash 33100f2355611b2375f05486299abf05 0b2d1b75f6695e67b884bee2eb72165d6e881a26 0f48c5678ce459a596423b0e55344e7ad8eb3d3b1b27c54cd76a9d4cee7dd6c3 Loading...

	js-agent.newrelic.com/nr-spa-1177.min.js	38 kB	2023-03-07	2024-04-21
Pretty URL js-agent.newrelic.com/nr-spa-1177.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:08 Last Seen2024-04-21 07:37:34 Times Seen15 Hash d89642b485486b2c9af6da463597333c e92c43649933a001f06bbe3aebeaeae0e7e40f1a 54cb1f867060c01677649ce2d5e65485b33ce06ea271cb4244cbdd22c31fe69a Loading...

	mp.uscap.org/	718 B	2023-03-13	2023-03-13
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:45:37 Last Seen2023-03-13 15:45:37 Times Seen1 Hash 3d2c1bf0fa3a5ad61b5ccb0055c3da0b 0c5a1a77c9765526c32479a70ec34a8d5547385d 3e24b6965cdc6938902dd10a593536ac5e85b83a6735abb1fc7694b3f99e7f4d Loading...

	mp.uscap.org/	321 B	2023-03-13	2024-02-05
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:28:41 Last Seen2024-02-05 23:44:32 Times Seen32 Hash fbc01efa6e3ff57f05f2906f58f7bd69 b15758e2a691b5bc7c7735f4e8c6c9bca7a8723d fe25d9ec46f7782a815ae6c9fd7785bb692a915824058e156a5053d1b690738d Loading...

	mp.uscap.org/	683 B	2023-03-09	2024-04-21
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:58:21 Last Seen2024-04-21 01:34:51 Times Seen1730 Hash 569aeb51a8fcd058de77bc3b9f4d9a9a 5038218c35697fd2e4bce67afcdf73c7dbdf9be9 8afd29cffbcfce623249e115e9f3039e21d4cedb9c6a4a0580c6b4fbb515bb39 Loading...

	mp.uscap.org/	192 B	2023-03-08	2024-04-21
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:06:22 Last Seen2024-04-21 01:34:51 Times Seen1740 Hash 96c1ce644d9d465b469ab9dc89e413a9 61f03de51d3e8f76e9f9962b77f86cdbead22355 7f1c264be4c54a63fad9b809cfee7876afff23f8d5c0e51355bb2a9f492d4f43 Loading...

	mp.uscap.org/	13 kB	2023-03-13	2023-03-14
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:26:16 Last Seen2023-03-14 15:56:53 Times Seen1 Hash 248b5543ca3fbe0615bc1762704aaabf 62cf1f2df9311454c511eccc0927440c04e50e6d 9e7976632401a98256076ec1dc697f40ab1a8d7ba579994abed81b68c4a6283f Loading...

	mp.uscap.org/wro/lz4b~selected-legacy.js	253 kB	2023-03-09	2023-09-11
Pretty URL mp.uscap.org/wro/lz4b~selected-legacy.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:58:21 Last Seen2023-09-11 09:37:53 Times Seen973 Hash 75890405f6b55ba9fb17d51a4e877125 96f9f68f000a72d8770f9bc572731721aa7c13ec b27959b3f4c66f15546e22f182651230bf01a82733c18546b27528d2b4e78764 Loading...

	bam.nr-data.net/1/16e2192192?a=916964291&sa=1&v=1177.96a4d39&t=Unnamed%20Transaction&rst=5423&ck=1&ref=https://mp.uscap.org/&be=1400&fe=5331&dc=2740&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675422490169,%22n%22:0,%22f%22:1169,%22dn%22:1169,%22dne%22:1169,%22c%22:1169,%22s%22:1169,%22ce%22:1169,%22rq%22:1170,%22rp%22:1370,%22rpe%22:1370,%22dl%22:1386,%22di%22:2712,%22ds%22:2739,%22de%22:2778,%22dc%22:5329,%22l%22:5329,%22le%22:5371%7D,%22navigation%22:%7B%7D%7D&fcp=1805&jsonp=NREUM.setToken	49 B	2023-03-07	2024-03-22
Pretty URL bam.nr-data.net/1/16e2192192?a=916964291&sa=1&v=1177.96a4d39&t=Unnamed%20Transaction&rst=5423&ck=1&ref=https://mp.uscap.org/&be=1400&fe=5331&dc=2740&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675422490169,%22n%22:0,%22f%22:1169,%22dn%22:1169,%22dne%22:1169,%22c%22:1169,%22s%22:1169,%22ce%22:1169,%22rq%22:1170,%22rp%22:1370,%22rpe%22:1370,%22dl%22:1386,%22di%22:2712,%22ds%22:2739,%22de%22:2778,%22dc%22:5329,%22l%22:5329,%22le%22:5371%7D,%22navigation%22:%7B%7D%7D&fcp=1805&jsonp=NREUM.setToken IP 162.247.243.29 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-03-22 06:11:42 Times Seen2776 Hash ada33e5b8877e743ff658bf4bfa1867c 5a78662243dac43c0ee48bcb7e05a536b84c2e38 dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82 Loading...

	mp.uscap.org/	283 B	2023-03-09	2024-04-21
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:58:21 Last Seen2024-04-21 01:34:51 Times Seen1732 Hash 7f2a8bf0036495b2afd4ab72d414c5e0 e16ab2e253312c5a038a2b893193bc32964c0be1 634cb36d84a9f495c34ad9dece675716e6dcb7778165632ea7b4667be8d0aad6 Loading...

	mp.uscap.org/	97 B	2023-03-09	2024-04-21
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 20:58:21 Last Seen2024-04-21 01:34:51 Times Seen1728 Hash 44e1f68404e37bd28d81b479a2d89328 2f2bd8f53a0f8fb99b64887c05c0432748b8827e 7a7b148c0f59f3c9a87735921e68fa39b5edd257f3e40f10a438018419ed5cfe Loading...

	mp.uscap.org/	1.4 kB	2023-03-13	2023-03-13
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:45:37 Last Seen2023-03-13 15:45:37 Times Seen1 Hash cbfe57ab7ad06a091ec948a6a28c0a60 67c9fb0230fe07d23c1fda25600cd2112a9fb172 d110f0f596b23a826c398489b93cf1e9341c92b484741e04f2f991b32f9937ee Loading...

	cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.1/config/TeX-AMS-MML_HTMLorMML.js?V=2.7.1	244 kB	2023-03-09	2024-03-05
Pretty URL cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.1/config/TeX-AMS-MML_HTMLorMML.js?V=2.7.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:23:32 Last Seen2024-03-05 10:10:46 Times Seen1111 Hash 6e2464653e773d225658176e400c0bc4 141e23c01a8e3d83ec4addaf5586eac6f57768ab 8df260b35bb9f49c0d937fcbf0ec13fb661b0d281528aec977aee6a8c3f83688 Loading...

	mp.uscap.org/products/marlin/ha/releasedAssets/js/main.bundle-b1862f445585f4b68935.js	804 kB	2023-03-13	2023-03-26
Pretty URL mp.uscap.org/products/marlin/ha/releasedAssets/js/main.bundle-b1862f445585f4b68935.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:26:16 Last Seen2023-03-26 04:57:09 Times Seen2 Hash 8516c8929705aece046cbdd87f54188c b4a84797cfc972037a345fd5ba9172454b2a7c25 42cf0938e2ae85b11634de62b78062afe323ed16601ff09ecb2dc34ba0470303 Loading...

	mp.uscap.org/	154 B	2023-03-09	2024-04-20
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:04:14 Last Seen2024-04-20 23:20:45 Times Seen98 Hash c2e3025234e2d53cab5daf847b4f109f 7dfea8ed757504f9985c5ba9b1f7172bfcf53953 26288af4de2beacc1268e0c12c0338cc5ac1f30f20b091794fc2cf661c703556 Loading...

	mp.uscap.org/	1.0 kB	2023-03-13	2023-03-14
Pretty URL mp.uscap.org/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 08:28:58 Last Seen2023-03-14 11:16:16 Times Seen1 Hash 1a1ca9e7175b558e351f1c90e993ac8c ebb0b8a4bde52bb6b9581e94dfb81132ca7ff031 e2dc1598a19f83414068bab66b89f32dbdc21c1de93385e40c131d370a22ed73 Loading...

HTTP Transactions (50)

	URL	IP	Response	Size
	mp.uscap.org/action/consumeSharedSessionAction?MAID=+csv9Da2rphoRjFDJm/CSw==&I2KBRCK=1&JSESSIONID=aaaq-OI9-NH0Hbj_KGwyy&SERVER=WZ6myaEXBLFD8VbcQEfOcg==&ORIGIN=878444671&RD=RD&exp=piMueMSUTMUdBa1crKW/1g==	104.18.123.114	301 Moved Permanently	0 B
URL HTTP/1.1 mp.uscap.org/action/consumeSharedSessionAction?MAID=+csv9Da2rphoRjFDJm/CSw==&I2KBRCK=1&JSESSIONID=aaaq-OI9-NH0Hbj_KGwyy&SERVER=WZ6myaEXBLFD8VbcQEfOcg==&ORIGIN=878444671&RD=RD&exp=piMueMSUTMUdBa1crKW/1g== IP 104.18.123.114:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /action/consumeSharedSessionAction?MAID=+csv9Da2rphoRjFDJm/CSw==&I2KBRCK=1&JSESSIONID=aaaq-OI9-NH0Hbj_KGwyy&SERVER=WZ6myaEXBLFD8VbcQEfOcg==&ORIGIN=878444671&RD=RD&exp=piMueMSUTMUdBa1crKW/1g== HTTP/1.1 Host: mp.uscap.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1 HTTP/1.1 301 Moved Permanently Date: Fri, 03 Feb 2023 11:07:39 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Fri, 03 Feb 2023 12:07:39 GMT Location: https://mp.uscap.org/action/consumeSharedSessionAction?MAID=+csv9Da2rphoRjFDJm/CSw==&I2KBRCK=1&JSESSIONID=aaaq-OI9-NH0Hbj_KGwyy&SERVER=WZ6myaEXBLFD8VbcQEfOcg==&ORIGIN=878444671&RD=RD&exp=piMueMSUTMUdBa1crKW/1g== Set-Cookie: __cf_bm=6L_1T36tfk.V9AjEM2Mvg1vufXaCIQpX0oz5IlVKquo-1675422459-0-ARJnIEEcdYpL7i/JPYLTg5mciduf92uIP02T2vw67S35rs3eSEUGhV+W6JVgl85Ic6fUhxNPC+n7OCxGldTPE0o=; path=/; expires=Fri, 03-Feb-23 11:37:39 GMT; domain=.mp.uscap.org; HttpOnly; SameSite=None Server-Timing: cf-q-config;dur=7.0000005507609e-06 Vary: Accept-Encoding Server: cloudflare CF-RAY: 793ab4450dcab4ff-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d4e95d0d8982bcd07804baf6fc88231c 5027abda0875bd2529dd4d6691784c74da71a9ee 373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8500 Expires: Fri, 03 Feb 2023 13:29:19 GMT Date: Fri, 03 Feb 2023 11:07:39 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash e935ea42be4feaed61a824b0b903913e f966cfa80d65a805cb9d7c6a53b3340865d7c51a eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2514 Expires: Fri, 03 Feb 2023 11:49:33 GMT Date: Fri, 03 Feb 2023 11:07:39 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Fri, 03 Feb 2023 10:43:35 GMT content-type: application/json age: 1445 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9a76feabb767086ae0fa54e0ffbf763f 3655d78994a1e9838340669462728b67c8c12e54 bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4548 Expires: Fri, 03 Feb 2023 12:23:28 GMT Date: Fri, 03 Feb 2023 11:07:40 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: vA6wt5G7wZGLAmB/9NU+SUAwYmL73r/VmP8HE4FKKJnBROnTwobOlCEEKVckhOsoon1SE5/FDuE= x-amz-request-id: 13M2RP4P68N9JAKE content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Fri, 03 Feb 2023 10:23:30 GMT age: 2650 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Fri, 03 Feb 2023 11:07:40 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.pki.goog/s/gts1p5/7TqUuK4dmQA	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/7TqUuK4dmQA IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 19cb507dbc030683c9ede5370e65c56d 825b4ee9a5ed43f8a440aef13bd31df193c6cb89 b43790d06a1eee7be0ee0a687cda2cbf951bc78fdcf012a366cb47353dc6b5a3 HTTP Headers `POST /s/gts1p5/7TqUuK4dmQA HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 11:07:40 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Fri, 03 Feb 2023 10:49:06 GMT age: 1114 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.pki.goog/s/gts1p5/7TqUuK4dmQA	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/7TqUuK4dmQA IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 19cb507dbc030683c9ede5370e65c56d 825b4ee9a5ed43f8a440aef13bd31df193c6cb89 b43790d06a1eee7be0ee0a687cda2cbf951bc78fdcf012a366cb47353dc6b5a3 HTTP Headers `POST /s/gts1p5/7TqUuK4dmQA HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 11:07:40 GMT Cache-Control: public, max-age=14400 Server: scaffolding on HTTPServer2 Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8913af0be619500295008bb91f506660 a7b8068ba9aa506205a295b24458c2616997a0d1 6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A" Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9037 Expires: Fri, 03 Feb 2023 13:38:17 GMT Date: Fri, 03 Feb 2023 11:07:40 GMT Connection: keep-alive`

	push.services.mozilla.com/	52.38.139.17	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.38.139.17:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 70yFUq1qMhasjIlL2mg4Cg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: GkzEVNAsVFfs8TMBp0EzKupsyfQ=`

	cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.1/MathJax.js?config=TeX-AMS-MML_HTMLorMML	104.17.24.14	200 OK	17 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/mathjax/2.7.1/MathJax.js?config=TeX-AMS-MML_HTMLorMML IP 104.17.24.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (62402) Size 17 kB (16889 bytes) Hash cb846e03466ee7b1a2ad7477006b5313 e65f2c58f23d7b32439d4183314a9d31ff2b4f7d 593f76955ee4d6e03f556d4c7bdd8e19ab8f20a77726a64fc5d760db480f4f4a HTTP Headers `GET /ajax/libs/mathjax/2.7.1/MathJax.js?config=TeX-AMS-MML_HTMLorMML HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mp.uscap.org/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Fri, 03 Feb 2023 11:07:41 GMT content-type: application/javascript; charset=utf-8 content-length: 16889 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03f13-f648" last-modified: Mon, 04 May 2020 16:13:07 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 6271583 expires: Wed, 24 Jan 2024 11:07:41 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jl%2FFEFQp%2B9Stql3Mk9gkjrW2rGciQm7PAGuQ3qNbMktKOHLKaYZn9EEXNRo%2FGc92RlvMELyouHcCxEWZgE02u0TjALrh7WqG%2BJVvwW6ioyzsKkT2B6xn2clURpmzowrOx7P0S2aI"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 793ab44e2e70b500-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 3ed38454db4ae5c4884006ba06b0f2b6 b5a94b859f49f9ab05634275f23d077de5c02cd4 296ce4ac6f888f753b8487df0824c2d593635557ad42c6d4eeefe1bcdb112182 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2908 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 11:07:41 GMT Last-Modified: Fri, 03 Feb 2023 10:19:13 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 279`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash bbeb609cbf32a8842bf96a124588e65e 40c0f548bcb714731f62df5a27cad21adef0463d 502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 11:07:41 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn.cookielaw.org/scripttemplates/otSDKStub.js	104.16.149.64	200 OK	8.4 kB
URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.16.149.64:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (25592) Size 8.4 kB (8384 bytes) Hash e248bb3ed9070ee48f0b5bc674e6a49d 46a6ac373399405df390e910c580cf850dce9886 74fd866eaf62b63cec2b85eadf2245e9302107f4c8fabc25f9c3e5cd49f40a6b HTTP Headers `GET /scripttemplates/otSDKStub.js HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mp.uscap.org/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Fri, 03 Feb 2023 11:07:41 GMT content-type: application/javascript content-length: 8384 content-encoding: gzip content-md5: 4ki7PtkHDuSPC1vGdOaknQ== last-modified: Wed, 01 Feb 2023 17:51:43 GMT etag: 0x8DB047CFAAF4F1C x-ms-request-id: 7cf48f33-d01e-007d-359b-36442e000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 59351 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 793ab44e4f76b503-OSL X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Open+Sans	142.250.74.106	200 OK	1.1 kB
URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans IP 142.250.74.106:0 ASN #15169 GOOGLE File type data Size 1.1 kB (1073 bytes) Hash 15347d79cef763ac9cbd6a7e24c3a849 e3396732f4604f3a19f1cb6f5471176a70f97596 f0c60cc17b8c07f2297f7ccc35f4d0020de421e43df7d0ee52eb32426df03e89 HTTP Headers `GET /css?family=Open+Sans HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mp.uscap.org/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 03 Feb 2023 11:07:41 GMT date: Fri, 03 Feb 2023 11:07:41 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	cdn.cookielaw.org/consent/5585eeae-e8be-453a-8b9d-a2c1dfad31cf/5585eeae-e8be-453a-8b9d-a2c1dfad31cf.json	104.16.149.64	200 OK	1.6 kB
URL HTTP/2 cdn.cookielaw.org/consent/5585eeae-e8be-453a-8b9d-a2c1dfad31cf/5585eeae-e8be-453a-8b9d-a2c1dfad31cf.json IP 104.16.149.64:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (4510), with no line terminators Size 1.6 kB (1623 bytes) Hash 84b9590c796854f4765e43e5093e70af ec960017baf0f088d0e4198a73340fb0cbda1cdd 78af6bccabe11de6deb96248b0c66231590df2075244251358541c56361b965a HTTP Headers `GET /consent/5585eeae-e8be-453a-8b9d-a2c1dfad31cf/5585eeae-e8be-453a-8b9d-a2c1dfad31cf.json HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://mp.uscap.org Connection: keep-alive Referer: https://mp.uscap.org/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Fri, 03 Feb 2023 11:07:41 GMT content-type: application/x-javascript content-length: 1623 cache-control: public, max-age=86400 content-encoding: gzip content-md5: hLlZDHloVPR2XkPlCT5wrw== last-modified: Tue, 03 Jan 2023 13:28:26 GMT etag: 0x8DAED8E65297FBD x-ms-request-id: 61325d31-601e-0142-4295-1fb5a7000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cf-cache-status: HIT expires: Sat, 04 Feb 2023 11:07:41 GMT accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 793ab44e890a0b39-OSL X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash 5adf2c0a4b0cb0102bb2a801db222019 987b0d000fef5f238e256af039503019a60bb4f3 bc1467d19e8dea3983161468af524eb7c479b9e9e4f30df5f971f6816a8f4f85 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3901 Cache-Control: max-age=160800 Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 11:07:41 GMT Etag: "63dcace0-117" Expires: Sun, 05 Feb 2023 07:47:41 GMT Last-Modified: Fri, 03 Feb 2023 06:42:40 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 279`

	ocsp.digicert.com/	93.184.220.29	200 OK	1.6 kB
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 1.6 kB (1571 bytes) Hash 58691d5da636d496db92b2fd68d9cf1d ba193b4cb19cfd63b020debd0342946549385bb9 ba86fbcd8de61de0b274048c6fb5c5f4876ece6f08d313ee2c99fc24910d86b1 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3405 Cache-Control: max-age=153121 Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 11:07:41 GMT Etag: "63dc90d1-118" Expires: Sun, 05 Feb 2023 05:39:42 GMT Last-Modified: Fri, 03 Feb 2023 04:42:57 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 280`

	cdn.cookielaw.org/scripttemplates/202211.2.0/otBannerSdk.js	104.16.149.64	200 OK	194 kB
URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/otBannerSdk.js IP 104.16.149.64:0 ASN #13335 CLOUDFLARENET File type data Size 194 kB (194020 bytes) Hash 235e7fb46bdbfa2fd2215d58df76293e f818f11610d06d4b609359f2481034fb1e7d8ddd 56096eb37f7dc6efca462256dbfc0a3af12168d928b85e923eaf32307686a9fe HTTP Headers `GET /scripttemplates/202211.2.0/otBannerSdk.js HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mp.uscap.org/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Fri, 03 Feb 2023 11:07:41 GMT content-type: application/javascript content-length: 93482 content-encoding: gzip content-md5: uPFqyxtrxGqJsyAvB7RnSg== last-modified: Mon, 12 Dec 2022 17:31:45 GMT etag: 0x8DADC66BDFA5EC7 x-ms-request-id: cffcc2f9-101e-0024-13c4-0e41a8000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 43143 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 793ab4513d13b503-OSL X-Firefox-Spdy: h2

	cdn.cookielaw.org/consent/5585eeae-e8be-453a-8b9d-a2c1dfad31cf/211365d5-e7e1-4f7e-8788-48839f93eda4/en.json	104.16.149.64	200 OK	15 kB
URL HTTP/2 cdn.cookielaw.org/consent/5585eeae-e8be-453a-8b9d-a2c1dfad31cf/211365d5-e7e1-4f7e-8788-48839f93eda4/en.json IP 104.16.149.64:0 ASN #13335 CLOUDFLARENET File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65500), with no line terminators Size 15 kB (15008 bytes) Hash 7bc5e7647ac1d6d3bb2cf457b09a4601 e570c1a1816e367a5beeb7b7a00dbc5d6a9fb7c7 e0e0304ac4bef0a2e1b9ec9f2a12bff8200fc33e67d7cf6c012c4b6771bffe6c HTTP Headers `GET /consent/5585eeae-e8be-453a-8b9d-a2c1dfad31cf/211365d5-e7e1-4f7e-8788-48839f93eda4/en.json HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://mp.uscap.org/ Origin: https://mp.uscap.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Fri, 03 Feb 2023 11:07:41 GMT content-type: application/x-javascript content-length: 15008 cache-control: public, max-age=86400 content-encoding: gzip content-md5: e8XnZHrB1tO7LPRXsJpGAQ== last-modified: Tue, 03 Jan 2023 13:28:06 GMT etag: 0x8DAED8E5941AEA5 x-ms-request-id: 5e7cc863-e01e-00f6-616a-23fff0000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cf-cache-status: HIT expires: Sat, 04 Feb 2023 11:07:41 GMT accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 793ab451bc0a0b39-OSL X-Firefox-Spdy: h2

	cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otFlat.json	104.16.149.64	200 OK	3.0 kB
URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otFlat.json IP 104.16.149.64:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (11167) Size 3.0 kB (3020 bytes) Hash bcef00fda6caa683da714aef4a4f4e4b 64b093a6500c547a9d678af6cbca1ce683bac5c5 19dbb640f58f6a90958b72d7fdd6cd96692fb10ccba74d926294679ca129b0bc HTTP Headers `GET /scripttemplates/202211.2.0/assets/otFlat.json HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://mp.uscap.org/ Origin: https://mp.uscap.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Fri, 03 Feb 2023 11:07:41 GMT content-type: application/json content-length: 3020 content-encoding: gzip content-md5: vO8A/abKpoPacUrvSk9OSw== last-modified: Mon, 12 Dec 2022 17:31:35 GMT etag: 0x8DADC66B7AF38D0 x-ms-request-id: 3f1fd84c-901e-017e-1296-1f017c000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 793ab4526c9c0b39-OSL X-Firefox-Spdy: h2

	cdn.cookielaw.org/scripttemplates/202211.2.0/assets/v2/otPcCenter.json	104.16.149.64	200 OK	12 kB
URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/assets/v2/otPcCenter.json IP 104.16.149.64:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (50353) Size 12 kB (12540 bytes) Hash 9811a793b217b745126d89976508663b d6dea1e8161a876f58da90838ed3fc2e65c4a29c 3cafd8fb67f27641cb7e2164da324b00fef2b68dbec02aaefcba72820b659edf HTTP Headers `GET /scripttemplates/202211.2.0/assets/v2/otPcCenter.json HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://mp.uscap.org/ Origin: https://mp.uscap.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Fri, 03 Feb 2023 11:07:41 GMT content-type: application/json content-length: 12540 content-encoding: gzip content-md5: mBGnk7IXt0USbYmXZQhmOw== last-modified: Mon, 12 Dec 2022 17:31:37 GMT etag: 0x8DADC66B90C98A8 x-ms-request-id: bc52db28-401e-00d9-2e56-237eca000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 793ab4526ca10b39-OSL X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2798 Expires: Fri, 03 Feb 2023 11:54:20 GMT Date: Fri, 03 Feb 2023 11:07:42 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2798 Expires: Fri, 03 Feb 2023 11:54:20 GMT Date: Fri, 03 Feb 2023 11:07:42 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2798 Expires: Fri, 03 Feb 2023 11:54:20 GMT Date: Fri, 03 Feb 2023 11:07:42 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg	34.120.237.76	200 OK	5.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.6 kB (5641 bytes) Hash d4041f3b5316bc84c9e6d88ddbc85b89 4978a4a20836b6f5d863d331bcedad782b7b4ac6 549b62d2c4ec965b8bec62010c0ce338dfea7992ee83eb7af61ff1a30d21f8b5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49d52576-44b1-4baf-92c0-88f267415a19.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5641 x-amzn-requestid: b53b54b1-3b00-47cf-a25c-e93910c2ebfb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fuvzpHsXoAMFsuw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dc2ce3-0c4fc8154763febb44460ac2;Sampled=0 x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: x4-BZdG4JGRKCSdKynnuweZfo9l0XZtDB-MiANy7C2Yz1URYMHP4sQ== via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 22:28:50 GMT age: 45532 etag: "4978a4a20836b6f5d863d331bcedad782b7b4ac6" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d719402de0cd695e55dab2767247da49 f12f4795987a284820f6785ec16b5032b9861d79 98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA" Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2798 Expires: Fri, 03 Feb 2023 11:54:20 GMT Date: Fri, 03 Feb 2023 11:07:42 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg	34.120.237.76	200 OK	9.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.1 kB (9130 bytes) Hash 02123eef9faa8560ff66b058d4e13a28 decf26282993d7f0b14cf4112d14fa39c97fa89f 28889ff20f1b2fe0b73f8f97e6569f1d68d77fe436eeb47cc06ee4f0822ff239 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9130 x-amzn-requestid: 09ad3fbb-1e71-4455-82df-6e59f65239a1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fuxiYEkqIAMFVZg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dc2fa8-1dca116e4317f9bd14f6d45a;Sampled=0 x-amzn-remapped-date: Thu, 02 Feb 2023 21:48:24 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: _Bc2svrG-wX63DK9RPUyjh-n6AHVHaQe3QRmEL27L-amwCH2I_f_9g== via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 22:05:17 GMT age: 46945 etag: "decf26282993d7f0b14cf4112d14fa39c97fa89f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11565 bytes) Hash e366b32074025aaf60bbae8bdb08d330 a52c2883bad98fa20333aa639a5dd3a5bf544c8e 9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11565 x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fboIrFGboAMFyyQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0 x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: w0Zm5V0TQxsQ7917U3fdhS_n7qKE143PuhI2JmNCDM_Pf0yPLyW6yA== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 04:53:21 GMT age: 22461 etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e690e4c-e16d-49e9-ac12-24a092d6a60c.jpeg	34.120.237.76	200 OK	8.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e690e4c-e16d-49e9-ac12-24a092d6a60c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.5 kB (8543 bytes) Hash a1d6fa4715c4e78250b2f72ddd2706f1 be04ac3a50aa6f1b349a2410ad386d92de3222be d1c3c1b7016428bf2a085b71ca0d1e215a64b3d31ff15b0ef8bf5a78f11d9ae5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e690e4c-e16d-49e9-ac12-24a092d6a60c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8543 x-amzn-requestid: 3dc0960e-97db-42c8-99ac-623a44e8bb3e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fuv0wGJhIAMFaTg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dc2ceb-5ad3ef033a62559762db42b9;Sampled=0 x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:43 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: EKWOeGruQEm9HuSlJMiEEw_gN1p37qTTIhYqaiQ6bFaCF65kUfmMtA== via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 21:55:01 GMT age: 47561 etag: "be04ac3a50aa6f1b349a2410ad386d92de3222be" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10796 bytes) Hash 3490571dd2de0a747987b9a0e18cccc8 18e9f8f160d3515f1cb31fc7538ac762a6cab344 1c071d7f3b288b29254500f94f19c0db0633c6aa90812f2e92c4f64992f5221a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b4ea648-021a-44ef-a083-3ea03f73dca3.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10796 x-amzn-requestid: 5c9b1a83-c99a-44b9-9a90-5edd7ef1e225 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fi0XKG93oAMFtsA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d76760-01bf754d6c725c3275c02a1b;Sampled=0 x-amzn-remapped-date: Mon, 30 Jan 2023 06:44:48 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: vUJO-Pt9Hi1ndrCQQT1nNCGT7oDOYBpA8-EawHanESoZAsZv32dQdg== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google date: Fri, 03 Feb 2023 00:25:04 GMT age: 38558 etag: "18e9f8f160d3515f1cb31fc7538ac762a6cab344" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10166 bytes) Hash 2a6aaf87a867f93dc9268a8b27973b97 f52ccbe6cbced1994acb13a00b05436553b6813e 3fbd7441712035f4d53c17eec93bc278e6c072043f3b5a721cac349fc0dabe77 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fedd456a0-d42f-4b40-ad63-ea1dcfaf69eb.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10166 x-amzn-requestid: 54fe0d12-360f-4d97-bcf3-b24747d956aa x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fY_4zHEcoAMF1iA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d379d1-4ba89e44005f616a0ed3ed24;Sampled=0 x-amzn-remapped-date: Fri, 27 Jan 2023 07:14:25 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: G0R-0w9HtLB5OXb-w-RyR9QCnrddkS29FqF_GeAQa1CRWkqaUJwQoA== via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 22:27:53 GMT age: 45589 etag: "f52ccbe6cbced1994acb13a00b05436553b6813e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 087ae204639b6a4f6adaa73739695486 ac1cb954a3dec07e20215a8f784cc165db8b1475 5588f9109b4f572d1465fb0406cfb5ae3d293caa4bef700d33bc0d5368dc853f HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3519 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Fri, 03 Feb 2023 11:07:42 GMT Last-Modified: Fri, 03 Feb 2023 10:09:03 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 280`

	crossmark-cdn.crossref.org/widget/v2.0/style.css	143.204.55.42	200 OK	3.0 kB
URL HTTP/1.1 crossmark-cdn.crossref.org/widget/v2.0/style.css IP 143.204.55.42:0 ASN #16509 AMAZON-02 File type ASCII text Size 3.0 kB (3010 bytes) Hash 9aa8df67089e6012dee55f720e9dd13d 44c7910f0ee9ca31b82efe1e02a12d485c313c33 a4a43143f9e6f7643bb3d3bd7287638c70ade9fda687dd8bd58fd1dd91b6c988 HTTP Headers `GET /widget/v2.0/style.css HTTP/1.1 Host: crossmark-cdn.crossref.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mp.uscap.org/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK Content-Type: text/css Content-Length: 3010 Connection: keep-alive Last-Modified: Thu, 25 May 2017 15:07:50 +0000 Server: http-kit permissions-policy: interest-cohort=() Date: Thu, 02 Feb 2023 23:15:39 GMT X-Cache: Hit from cloudfront Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: UFTtKwfgB49LGMLuKSBWs76EVeupeQZpNzbmjVvJz5IgeoqhxIvA1w== Age: 42732`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash da1d0a6bc284e77589114338069c3e82 5d88db5e0f1c7491bd98b717b178172875968fc9 df772dcaa873fe7eb4ce0f0f8c0d4fdbe133e7cfcc324e04503f8b78f840d353 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DF772DCAA873FE7EB4CE0F0F8C0D4FDBE133E7CFCC324E04503F8B78F840D353" Last-Modified: Fri, 03 Feb 2023 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21506 Expires: Fri, 03 Feb 2023 17:06:09 GMT Date: Fri, 03 Feb 2023 11:07:43 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	192 kB
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 320 kbps, 48 kHz, JntStereo\012- data Size 192 kB (191868 bytes) Hash 100edaef23d3a4eb0a5b1e4b704d6c0f 45e73e196ebfabdf5d097ce2eb692c8c2df1963b d4b97003a5c3b646987db94160af3e5461cc29ee5d1942dd9a6c0b9f32db0b38 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DF772DCAA873FE7EB4CE0F0F8C0D4FDBE133E7CFCC324E04503F8B78F840D353" Last-Modified: Fri, 03 Feb 2023 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21506 Expires: Fri, 03 Feb 2023 17:06:09 GMT Date: Fri, 03 Feb 2023 11:07:43 GMT Connection: keep-alive`

	cdn.cookielaw.org/logos/static/ot_company_logo.png	104.16.149.64	200 OK	39 kB
URL HTTP/2 cdn.cookielaw.org/logos/static/ot_company_logo.png IP 104.16.149.64:0 ASN #13335 CLOUDFLARENET File type data Size 39 kB (39126 bytes) Hash 8d91a3f8e6262ddb06acda503962256f d60a07781d58257e94f8eac345f18ca90723a3d9 c39deef79d44edb483206d981b3e1f42eb4865db5a2c6085ada82c47a70796c5 HTTP Headers `GET /logos/static/ot_company_logo.png HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mp.uscap.org/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Fri, 03 Feb 2023 11:07:44 GMT content-type: image/png content-length: 4036 content-md5: E8+sk/ECzKgTUVtDLikiIA== last-modified: Thu, 02 Feb 2023 13:33:39 GMT etag: 0x8DB052217DDADB5 x-ms-request-id: db08534d-301e-007c-090c-3745d3000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 56528 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 793ab4661ddbb503-OSL X-Firefox-Spdy: h2

	modernpathology.org.marlin-prod.literatumonline.com/pb-assets/Health%20Advance/journals/modpat/podcasts/Podcast_57-1667328215370.mp3	104.18.137.72	206 Partial Content	305 kB
URL HTTP/2 modernpathology.org.marlin-prod.literatumonline.com/pb-assets/Health%20Advance/journals/modpat/podcasts/Podcast_57-1667328215370.mp3 IP 104.18.137.72:0 ASN #13335 CLOUDFLARENET File type Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 320 kbps, 48 kHz, JntStereo\012- data Size 305 kB (304960 bytes) Hash 4b1e9e1f54f1b32cbb86746b3c85b5cc b3c39366cab48f036a4f3b26ba940dbe1b1f6f86 f9a9d96c1bf4ce519a47a2df5f21903ae9f6e7ba692b642439f9ffbad0dc5620 HTTP Headers GET /pb-assets/Health%20Advance/journals/modpat/podcasts/Podcast_57-1667328215370.mp3 HTTP/1.1 Host: modernpathology.org.marlin-prod.literatumonline.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: audio/webm,audio/ogg,audio/wav,audio/;q=0.9,application/ogg;q=0.7,video/;q=0.6,/;q=0.5 Accept-Language: en-US,en;q=0.5 Range: bytes=0- Connection: keep-alive Referer: https://mp.uscap.org/ Sec-Fetch-Dest: audio Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 206 Partial Content date: Fri, 03 Feb 2023 11:07:43 GMT content-type: audio/mpeg; charset=UTF-8 content-length: 62421308 x-xss-protection: 1; mode=block x-content-type-options: nosniff strict-transport-security: max-age=16070400 x-frame-options: SAMEORIGIN content-security-policy-report-only: default-src data: https: 'unsafe-inline' 'unsafe-eval'; report-uri https://a3frkpbrnzxvdwnkpssx604n.httpschecker.net/report; report-to https://a3frkpbrnzxvdwnkpssx604n.httpschecker.net/report content-disposition: inline; filename=Podcast_57.mp3 x-webstats-respid: 9e7b76359ec4c903db2502fda501b1b1 last-modified: Tue, 01 Nov 2022 18:43:35 GMT cache-control: public, max-age=86400, s-max-age=31536000 cf-cache-status: MISS content-range: bytes 0-62421307/62421308 set-cookie: __cf_bm=Wb6khRowDjE9Hsy4DXGSvkNCETZAP3oVgkVh.lJNezE-1675422463-0-AaijLktn23M/tB+3le7m6UtWoLYzoZ8CrOvHWzN5jH6IX0Y6fxICUks51OqtOcJe1RAXDG5rBCugazO1m/QYGd0=; path=/; expires=Fri, 03-Feb-23 11:37:43 GMT; domain=.literatumonline.com; HttpOnly; Secure; SameSite=None server: cloudflare cf-ray: 793ab45b8ad90b06-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	bam.nr-data.net/1/16e2192192?a=916964291&sa=1&v=1177.96a4d39&t=Unnamed%20Transaction&rst=5423&ck=1&ref=https://mp.uscap.org/&be=1400&fe=5331&dc=2740&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675422490169,%22n%22:0,%22f%22:1169,%22dn%22:1169,%22dne%22:1169,%22c%22:1169,%22s%22:1169,%22ce%22:1169,%22rq%22:1170,%22rp%22:1370,%22rpe%22:1370,%22dl%22:1386,%22di%22:2712,%22ds%22:2739,%22de%22:2778,%22dc%22:5329,%22l%22:5329,%22le%22:5371%7D,%22navigation%22:%7B%7D%7D&fcp=1805&jsonp=NREUM.setToken	162.247.243.29	200 OK	49 B
URL HTTP/1.1 bam.nr-data.net/1/16e2192192?a=916964291&sa=1&v=1177.96a4d39&t=Unnamed%20Transaction&rst=5423&ck=1&ref=https://mp.uscap.org/&be=1400&fe=5331&dc=2740&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675422490169,%22n%22:0,%22f%22:1169,%22dn%22:1169,%22dne%22:1169,%22c%22:1169,%22s%22:1169,%22ce%22:1169,%22rq%22:1170,%22rp%22:1370,%22rpe%22:1370,%22dl%22:1386,%22di%22:2712,%22ds%22:2739,%22de%22:2778,%22dc%22:5329,%22l%22:5329,%22le%22:5371%7D,%22navigation%22:%7B%7D%7D&fcp=1805&jsonp=NREUM.setToken IP 162.247.243.29:0 ASN #13335 CLOUDFLARENET File type ASCII text, with no line terminators Size 49 B (49 bytes) Hash ada33e5b8877e743ff658bf4bfa1867c 5a78662243dac43c0ee48bcb7e05a536b84c2e38 dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82 HTTP Headers GET /1/16e2192192?a=916964291&sa=1&v=1177.96a4d39&t=Unnamed%20Transaction&rst=5423&ck=1&ref=https://mp.uscap.org/&be=1400&fe=5331&dc=2740&af=err,xhr,stn,ins,spa&perf=%7B%22timing%22:%7B%22of%22:1675422490169,%22n%22:0,%22f%22:1169,%22dn%22:1169,%22dne%22:1169,%22c%22:1169,%22s%22:1169,%22ce%22:1169,%22rq%22:1170,%22rp%22:1370,%22rpe%22:1370,%22dl%22:1386,%22di%22:2712,%22ds%22:2739,%22de%22:2778,%22dc%22:5329,%22l%22:5329,%22le%22:5371%7D,%22navigation%22:%7B%7D%7D&fcp=1805&jsonp=NREUM.setToken HTTP/1.1 Host: bam.nr-data.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mp.uscap.org/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/1.1 200 OK Connection: keep-alive Content-Length: 49 content-type: text/javascript access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS access-control-allow-credentials: true access-control-allow-origin: * set-cookie: JSESSIONID=e4811a29134e82d2; Path=/; Domain=.nr-data.net; Secure; SameSite=None cross-origin-resource-policy: cross-origin x-timer: S1675422465.085170,VS0,VE103 accept-ranges: bytes date: Fri, 03 Feb 2023 11:07:45 GMT via: 1.1 varnish x-served-by: cache-bma1622-BMA x-cache: MISS x-cache-hits: 0

	bam.nr-data.net/events/1/16e2192192?a=916964291&sa=1&v=1177.96a4d39&t=Unnamed%20Transaction&rst=5598&ck=1&ref=https://mp.uscap.org/	162.247.243.29	200 OK	24 B
URL HTTP/1.1 bam.nr-data.net/events/1/16e2192192?a=916964291&sa=1&v=1177.96a4d39&t=Unnamed%20Transaction&rst=5598&ck=1&ref=https://mp.uscap.org/ IP 162.247.243.29:0 ASN #13335 CLOUDFLARENET File type GIF image data, version 89a, 1 x 1\012- data Size 24 B (24 bytes) Hash bc32ed98d624acb4008f986349a20d26 2d3df8c11d2168ce2c27e0937421d11d85016361 0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300 HTTP Headers POST /events/1/16e2192192?a=916964291&sa=1&v=1177.96a4d39&t=Unnamed%20Transaction&rst=5598&ck=1&ref=https://mp.uscap.org/ HTTP/1.1 Host: bam.nr-data.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: text/plain Content-Length: 1148 Origin: https://mp.uscap.org Connection: keep-alive Referer: https://mp.uscap.org/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK Connection: keep-alive Content-Length: 24 content-type: image/gif access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS access-control-allow-credentials: true access-control-allow-origin: https://mp.uscap.org x-timer: S1675422465.228381,VS0,VE101 accept-ranges: bytes date: Fri, 03 Feb 2023 11:07:45 GMT via: 1.1 varnish x-served-by: cache-bma1622-BMA x-cache: MISS x-cache-hits: 0`

	acw.elsevier.com/SSOCore/update?acw=cee1191d40ccf8492098eec2c56680d48fdbgxrqa%7C%24%7CEC63A5971F9533A024A301C8D76AFCF436FFEF20D540A1E0EDB1F53674F7BCEBD4C8C47A0AF95B25F3CBCDA008A2F4C3BE7C263FB665CA4E3FBA44D1BD4E4F2EB0469A67597464825D387A21AFA2E514&utt=68926cc45d61681c1d69dc478211ceae7002c04	104.18.235.170	404 Not Found	0 B
URL HTTP/2 acw.elsevier.com/SSOCore/update?acw=cee1191d40ccf8492098eec2c56680d48fdbgxrqa%7C%24%7CEC63A5971F9533A024A301C8D76AFCF436FFEF20D540A1E0EDB1F53674F7BCEBD4C8C47A0AF95B25F3CBCDA008A2F4C3BE7C263FB665CA4E3FBA44D1BD4E4F2EB0469A67597464825D387A21AFA2E514&utt=68926cc45d61681c1d69dc478211ceae7002c04 IP 104.18.235.170:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /SSOCore/update?acw=cee1191d40ccf8492098eec2c56680d48fdbgxrqa%7C%24%7CEC63A5971F9533A024A301C8D76AFCF436FFEF20D540A1E0EDB1F53674F7BCEBD4C8C47A0AF95B25F3CBCDA008A2F4C3BE7C263FB665CA4E3FBA44D1BD4E4F2EB0469A67597464825D387A21AFA2E514&utt=68926cc45d61681c1d69dc478211ceae7002c04 HTTP/1.1 Host: acw.elsevier.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mp.uscap.org/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site `HTTP/2 404 Not Found date: Fri, 03 Feb 2023 11:07:42 GMT content-type: text/html cf-cache-status: DYNAMIC set-cookie: __cflb=02DiuEUZgWyrMRgnWqdShCPZ1oy3hj9hn4DLzQ7DodZ7i; SameSite=Lax; path=/; expires=Sat, 04-Feb-23 10:07:42 GMT; HttpOnly server: cloudflare cf-ray: 793ab454eea7b517-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otCommonStyles.css	104.16.149.64	200 OK	0 B
URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otCommonStyles.css IP 104.16.149.64:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /scripttemplates/202211.2.0/assets/otCommonStyles.css HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://mp.uscap.org/ Origin: https://mp.uscap.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Fri, 03 Feb 2023 11:07:41 GMT content-type: text/css content-md5: XcxlleAcPGO2n5kTZrHH2Q== last-modified: Mon, 12 Dec 2022 17:31:50 GMT x-ms-request-id: afd5beee-c01e-0026-3496-1f4352000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 793ab4526ca20b39-OSL content-encoding: gzip X-Firefox-Spdy: h2

	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	104.16.56.101	200 OK	0 B
URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.56.101:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://mp.uscap.org Connection: keep-alive Referer: https://mp.uscap.org/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Fri, 03 Feb 2023 11:07:41 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/2022.10.1 last-modified: Fri, 21 Oct 2022 01:56:09 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 793ab44f1fb1b500-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	geolocation.onetrust.com/cookieconsentpub/v1/geo/location	104.18.27.85	200 OK	0 B
URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location IP 104.18.27.85:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /cookieconsentpub/v1/geo/location HTTP/1.1 Host: geolocation.onetrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://mp.uscap.org Connection: keep-alive Referer: https://mp.uscap.org/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Fri, 03 Feb 2023 11:07:41 GMT content-type: application/json access-control-allow-origin: * access-control-allow-headers: Content-Type access-control-allow-methods: GET, OPTIONS vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 793ab45108c3b521-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	acw.sciencedirect.com/SSOCore/update?acw=cee1191d40ccf8492098eec2c56680d48fdbgxrqa%7C%24%7CEC63A5971F9533A024A301C8D76AFCF436FFEF20D540A1E0EDB1F53674F7BCEBD4C8C47A0AF95B25F3CBCDA008A2F4C3BE7C263FB665CA4E3FBA44D1BD4E4F2EB0469A67597464825D387A21AFA2E514&utt=68926cc45d61681c1d69dc478211ceae7002c04	104.18.234.170	404 Not Found	0 B
URL HTTP/2 acw.sciencedirect.com/SSOCore/update?acw=cee1191d40ccf8492098eec2c56680d48fdbgxrqa%7C%24%7CEC63A5971F9533A024A301C8D76AFCF436FFEF20D540A1E0EDB1F53674F7BCEBD4C8C47A0AF95B25F3CBCDA008A2F4C3BE7C263FB665CA4E3FBA44D1BD4E4F2EB0469A67597464825D387A21AFA2E514&utt=68926cc45d61681c1d69dc478211ceae7002c04 IP 104.18.234.170:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /SSOCore/update?acw=cee1191d40ccf8492098eec2c56680d48fdbgxrqa%7C%24%7CEC63A5971F9533A024A301C8D76AFCF436FFEF20D540A1E0EDB1F53674F7BCEBD4C8C47A0AF95B25F3CBCDA008A2F4C3BE7C263FB665CA4E3FBA44D1BD4E4F2EB0469A67597464825D387A21AFA2E514&utt=68926cc45d61681c1d69dc478211ceae7002c04 HTTP/1.1 Host: acw.sciencedirect.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mp.uscap.org/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site `HTTP/2 404 Not Found date: Fri, 03 Feb 2023 11:07:42 GMT content-type: text/html cf-cache-status: DYNAMIC set-cookie: __cflb=02DiuEUZgWyrMRgnWqdShCPZ1oy3hj9hn4DLzQ7DodZ7i; SameSite=Lax; path=/; expires=Sat, 04-Feb-23 10:07:42 GMT; HttpOnly server: cloudflare cf-ray: 793ab454eca1b503-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	cdn.cookielaw.org/logos/static/powered_by_logo.svg	104.16.149.64	200 OK	0 B
URL HTTP/2 cdn.cookielaw.org/logos/static/powered_by_logo.svg IP 104.16.149.64:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /logos/static/powered_by_logo.svg HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://mp.uscap.org/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Fri, 03 Feb 2023 11:07:44 GMT content-type: image/svg+xml content-md5: Y+c301RBZNK39PvKQWrIBw== last-modified: Wed, 01 Feb 2023 17:51:45 GMT x-ms-request-id: 83f800a2-001e-0056-4274-363096000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 59222 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 793ab4661de0b503-OSL content-encoding: gzip X-Firefox-Spdy: h2

	cdn.cookielaw.org/logos/static/ot_guard_logo.svg	104.16.149.64	200 OK	0 B
URL HTTP/2 cdn.cookielaw.org/logos/static/ot_guard_logo.svg IP 104.16.149.64:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /logos/static/ot_guard_logo.svg HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://mp.uscap.org/ Origin: https://mp.uscap.org Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Fri, 03 Feb 2023 11:07:45 GMT content-type: image/svg+xml content-md5: tXyZydHjxQshFMbbBT1/8A== last-modified: Thu, 02 Feb 2023 13:33:38 GMT x-ms-request-id: 975ec5e9-001e-017b-31bd-37f503000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 793ab4661f1e0b39-OSL content-encoding: gzip X-Firefox-Spdy: h2

	mp.uscap.org/action/consumeSharedSessionAction?MAID=+csv9Da2rphoRjFDJm/CSw==&I2KBRCK=1&JSESSIONID=aaaq-OI9-NH0Hbj_KGwyy&SERVER=WZ6myaEXBLFD8VbcQEfOcg==&ORIGIN=878444671&RD=RD&exp=piMueMSUTMUdBa1crKW/1g==	104.18.124.114	302 Found	0 B
URL HTTP/2 mp.uscap.org/action/consumeSharedSessionAction?MAID=+csv9Da2rphoRjFDJm/CSw==&I2KBRCK=1&JSESSIONID=aaaq-OI9-NH0Hbj_KGwyy&SERVER=WZ6myaEXBLFD8VbcQEfOcg==&ORIGIN=878444671&RD=RD&exp=piMueMSUTMUdBa1crKW/1g== IP 104.18.124.114:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /action/consumeSharedSessionAction?MAID=+csv9Da2rphoRjFDJm/CSw==&I2KBRCK=1&JSESSIONID=aaaq-OI9-NH0Hbj_KGwyy&SERVER=WZ6myaEXBLFD8VbcQEfOcg==&ORIGIN=878444671&RD=RD&exp=piMueMSUTMUdBa1crKW/1g== HTTP/1.1 Host: mp.uscap.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/2 302 Found date: Fri, 03 Feb 2023 11:07:40 GMT content-type: text/html; charset=utf-8 location: https://mp.uscap.org/action/consumeSharedSessionAction?MAID=+csv9Da2rphoRjFDJm%2FCSw%3D%3D&I2KBRCK=1&JSESSIONID=aaaq-OI9-NH0Hbj_KGwyy&SERVER=WZ6myaEXBLFD8VbcQEfOcg%3D%3D&ORIGIN=878444671&RD=RD&exp=piMueMSUTMUdBa1crKW%2F1g%3D%3D&rtc=0 cf-ray: 793ab448feb80b4d-OSL cache-control: private strict-transport-security: max-age=15552000 cf-cache-status: DYNAMIC x-xss-protection: 1; mode=block x-content-type-options: nosniff x-frame-options: SAMEORIGIN content-security-policy-report-only: default-src data: https: 'unsafe-inline' 'unsafe-eval'; report-uri https://a3frkpbrnzxvdwnkpssx604n.httpschecker.net/report; report-to https://a3frkpbrnzxvdwnkpssx604n.httpschecker.net/report set-cookie: JSESSIONID=aaaq-OI9-NH0Hbj_KGwyy; path=/; age=-1; HttpOnly; SameSite=None; Secure SERVER=WZ6myaEXBLFD8VbcQEfOcg==; path=/; secure; HttpOnly MAID= csv9Da2rphoRjFDJm/CSw==; path=/; secure; HttpOnly I2KBRCK=1; path=/; secure; HttpOnly __cf_bm=YyJyArL.f.ODegZd62gQWKA2KerKQp7R3irbdjjux1s-1675422460-0-AeWr7LSi5MoN0us2N/Kxrdxo+GErkBvJ71esdg/WJv0a+HqlfdzZAWszDM+P9r+EpS4oJ2Cl0d4SxZ1RlzBKw50=; path=/; expires=Fri, 03-Feb-23 11:37:40 GMT; domain=.mp.uscap.org; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (24)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML