Report - nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fi1dix93z68aj3r36obrswau6f7txemx5&data=05%7C01%7Cbogdan.lipski%40gendigital.com%7C854c5072bb7b487ebc0d08dad184454d%7C94986b1d466f4fc0ab4b5c725603deab%7C0%7C0%7C638052663296000089%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=BnRkHHADTwboYg3dGUjIc62mhXBzl6hE2axgy7JmDlQ%3D&reserved=0

Report Overview

Submitted URL
nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fi1dix93z68aj3r36obrswau6f7txemx5&data=05%7C01%7Cbogdan.lipski%40gendigital.com%7C854c5072bb7b487ebc0d08dad184454d%7C94986b1d466f4fc0ab4b5c725603deab%7C0%7C0%7C638052663296000089%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=BnRkHHADTwboYg3dGUjIc62mhXBzl6hE2axgy7JmDlQ%3D&reserved=0
IP
104.47.73.156
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2022-11-28 21:48:29
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
nam04.safelinks.protection.outlook.com	18373	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	874 B	824 B	104.47.73.156
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.86.38.2
cdn01.boxcdn.net	9676	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	10 kB	237 kB	104.16.74.20
notes.services.box.com	34535	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.1 kB	2.1 kB	74.112.186.144
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.5 kB	23.36.76.226
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
jdimick-slebson-cobraliners.box.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	499 B	456 B	74.112.186.144
client-log.box.com	4766	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	500 B	663 B	74.112.186.144
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.8 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	60 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	jdimick-slebson-cobraliners.app.box.com/notes/1077315852514?s=i1dix93z68aj3r36obrswau6f7txemx5	186 B	2023-03-11	2024-02-11
Pretty URL jdimick-slebson-cobraliners.app.box.com/notes/1077315852514?s=i1dix93z68aj3r36obrswau6f7txemx5 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:04:29 Last Seen2024-02-11 08:24:46 Times Seen1 Hash 6ed787683dc07dea66f911f7448dd16d aed47c14534a6f1375e06a88eddf49aa4c9336a9 1f19adc20174073be7a67c4650e2a725b79f50a5b65669a5da924d562ff0970a Loading...

	cdn01.boxcdn.net/webapp_assets/js/notes-d788f620da.min.js	1.6 kB	2023-03-07	2024-04-09
Pretty URL cdn01.boxcdn.net/webapp_assets/js/notes-d788f620da.min.js IP 104.16.74.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:24:28 Last Seen2024-04-09 15:26:04 Times Seen30 Hash d788f620daac96866510dc0a7d9f98ad 8524558c1ba03e37f6e4e8f115a1b2d2d2155b68 9ac94dadd1157c0cf080be5d444ee2c50285a49863f7212d02cd94b4de653fa5 Loading...

	notes.services.box.com/p/note?fileId=1077315852514&sharedLink=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fi1dix93z68aj3r36obrswau6f7txemx5&hostname=jdimick-slebson-cobraliners.app.box.com&subdomain=jdimick-slebson-cobraliners	813 B	2023-03-07	2024-04-09
Pretty URL notes.services.box.com/p/note?fileId=1077315852514&sharedLink=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fi1dix93z68aj3r36obrswau6f7txemx5&hostname=jdimick-slebson-cobraliners.app.box.com&subdomain=jdimick-slebson-cobraliners IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:24:28 Last Seen2024-04-09 15:26:03 Times Seen43 Hash 0138e88e2638d0a5ca2cb9683f7c4934 265b83c694bc6b4fa437bc5d03f2675837e3d96f 59b9f3ef12a988973ee40b2a20cefe8fe87d3723e7b047ee9da029b9e5f46009 Loading...

	notes.services.box.com/p/note?fileId=1077315852514&sharedLink=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fi1dix93z68aj3r36obrswau6f7txemx5&hostname=jdimick-slebson-cobraliners.app.box.com&subdomain=jdimick-slebson-cobraliners	5.3 kB	2023-03-11	2024-02-11
Pretty URL notes.services.box.com/p/note?fileId=1077315852514&sharedLink=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fi1dix93z68aj3r36obrswau6f7txemx5&hostname=jdimick-slebson-cobraliners.app.box.com&subdomain=jdimick-slebson-cobraliners IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:04:29 Last Seen2024-02-11 08:24:46 Times Seen1 Hash f0c29c33fd7a37b8c3181f6183ba2dad d4fbd96185a7b5ad11b8cfdcc9cc70c7b743cd21 37d4c87ea47b6d8f8b2528c00729ff4b92f1e2a6bcadb5656a1d78c162b236b3 Loading...

	notes.services.box.com/p/note?fileId=1077315852514&sharedLink=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fi1dix93z68aj3r36obrswau6f7txemx5&hostname=jdimick-slebson-cobraliners.app.box.com&subdomain=jdimick-slebson-cobraliners	435 B	2023-03-07	2024-02-11
Pretty URL notes.services.box.com/p/note?fileId=1077315852514&sharedLink=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fi1dix93z68aj3r36obrswau6f7txemx5&hostname=jdimick-slebson-cobraliners.app.box.com&subdomain=jdimick-slebson-cobraliners IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:24:28 Last Seen2024-02-11 08:24:46 Times Seen1 Hash 547bd4b657b803340aa05afccc52c0a9 84ccb01845639ce54dcaa567058734c19a9ebff6 5f4a440c6bae745c7581b4c04e3f53bcabd6bdc37d4ec38d3691ac3d7c2be067 Loading...

	cdn01.boxcdn.net/notes/js/l10n/box-react-ui/en-i18n_5a8773279307957483b8f36207d94689.min.js	167 kB	2023-03-10	2024-02-11
Pretty URL cdn01.boxcdn.net/notes/js/l10n/box-react-ui/en-i18n_5a8773279307957483b8f36207d94689.min.js IP 104.16.74.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:38:39 Last Seen2024-02-11 08:24:46 Times Seen1 Hash 0d4615c1dfa64bb37d0d355e342128a2 c7a5817bafa32f2d3eabe17875bc6d15c1245f77 7bf87e0178c232427522227b3b5bf2b34d59422cc11a4ef52cac3f3548e4d9b2 Loading...

	cdn01.boxcdn.net/notes/js/l10n/en-i18n_b95c501901167c549b9beb5979635144.min.js	48 kB	2023-03-10	2024-02-11
Pretty URL cdn01.boxcdn.net/notes/js/l10n/en-i18n_b95c501901167c549b9beb5979635144.min.js IP 104.16.74.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:38:39 Last Seen2024-02-11 08:24:47 Times Seen1 Hash 4b28880b6bbc62c395404d934b6f917b 0fcee7d682d70c319523daac1ff51e08fea71b48 ff2933993996d8aafc13144ec11b2122a2d96fa50b1c6dbaea56d7bda5b808ee Loading...

	cdn01.boxcdn.net/notes/js/notes-web/bundle_545d3031165c805f40cc3c5a519f2a6b.min.js	4.1 MB	2023-03-11	2024-02-11
Pretty URL cdn01.boxcdn.net/notes/js/notes-web/bundle_545d3031165c805f40cc3c5a519f2a6b.min.js IP 104.16.74.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:04:30 Last Seen2024-02-11 08:24:47 Times Seen1 Hash ed481a1ea98236b96a8e06f2aef0471b 9d4a00821237af0032110817fc003b42e6a8af76 49b0f3253a43827c13a6c8a89610181975dca15d7013ee4af3311b1544fdb6f7 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 3692acc27ac8c9a6405e116923863300	5 B	2023-03-10	2024-04-09
Pretty Observations First Seen2023-03-10 01:38:39 Last Seen2024-04-09 15:26:04 Times Seen44 Hash 3692acc27ac8c9a6405e116923863300 8fbb1d9bab4a43ede8d83e8e8f6ec97ff0079a29 f784a3085f4d9974f5b3c8f54be2324d7e707c60217eab7e271dc912b87c9758 Loading...

HTTP Transactions (44)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 150792cfc458af013998f4ef6bdf5f74 d5179b2dcb11d06f82606bf6eb6648319998d63e 72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9636 Expires: Tue, 29 Nov 2022 00:28:53 GMT Date: Mon, 28 Nov 2022 21:48:17 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 3b56944f0e5716fd4fad2ec18994d4be 61cafa4de31ba960d1145ec37272f6f6b6944e0c 4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=13279 Expires: Tue, 29 Nov 2022 01:29:36 GMT Date: Mon, 28 Nov 2022 21:48:17 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 9408cc0694fcbea57966c3a3ba906092 fddcee1fdcf3209298e41a4b1b5560357fa165f0 6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4013 Cache-Control: max-age=136197 Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 21:48:17 GMT Etag: "63848df9-1d7" Expires: Wed, 30 Nov 2022 11:38:14 GMT Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 471`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: n07WaqCPmdwB6sm7urvtgsI2qkme81DL4jtOmcLQ9u9SK0PFbzF2vl7ry6LcMnvt3BpsNGO1fAk= x-amz-request-id: ADRRHB7C4NTBVRX5 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 28 Nov 2022 21:42:14 GMT age: 363 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/	34.102.187.140	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 28 Nov 2022 21:19:33 GMT cache-control: public,max-age=3600 content-type: application/json age: 1724 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 28 Nov 2022 21:48:17 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	34.102.187.140	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Mon, 28 Nov 2022 21:08:55 GMT cache-control: public,max-age=3600 age: 2362 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 7ab2ef968cb6a3078f4b9cb2dda813d4 e669116047ca058a2c1b2999ff0ea8682719162c 6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6589 Cache-Control: max-age=133706 Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 21:48:18 GMT Etag: "63847a2f-1d7" Expires: Wed, 30 Nov 2022 10:56:44 GMT Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 471`

	nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fi1dix93z68aj3r36obrswau6f7txemx5&data=05%7C01%7Cbogdan.lipski%40gendigital.com%7C854c5072bb7b487ebc0d08dad184454d%7C94986b1d466f4fc0ab4b5c725603deab%7C0%7C0%7C638052663296000089%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=BnRkHHADTwboYg3dGUjIc62mhXBzl6hE2axgy7JmDlQ%3D&reserved=0	104.47.73.156	302 Found	195 B
URL HTTP/1.1 nam04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fi1dix93z68aj3r36obrswau6f7txemx5&data=05%7C01%7Cbogdan.lipski%40gendigital.com%7C854c5072bb7b487ebc0d08dad184454d%7C94986b1d466f4fc0ab4b5c725603deab%7C0%7C0%7C638052663296000089%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=BnRkHHADTwboYg3dGUjIc62mhXBzl6hE2axgy7JmDlQ%3D&reserved=0 IP 104.47.73.156:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 195 B (195 bytes) Hash 36722612d4a1e161aeba561c1e93ee8c 40084a1db7cc2db02112f5753c297c3e2a7f9b48 3ac7efe4b91744fc5cdbc5ab62f1d2572da5cef21a806b0a5839166e590664af HTTP Headers GET /?url=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fi1dix93z68aj3r36obrswau6f7txemx5&data=05%7C01%7Cbogdan.lipski%40gendigital.com%7C854c5072bb7b487ebc0d08dad184454d%7C94986b1d466f4fc0ab4b5c725603deab%7C0%7C0%7C638052663296000089%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=BnRkHHADTwboYg3dGUjIc62mhXBzl6hE2axgy7JmDlQ%3D&reserved=0 HTTP/1.1 Host: nam04.safelinks.protection.outlook.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/1.1 302 Found Cache-Control: private Content-Type: text/html; charset=utf-8 Location: https://jdimick-slebson-cobraliners.box.com/s/i1dix93z68aj3r36obrswau6f7txemx5 Server: Microsoft-IIS/10.0 X-AspNetMvc-Version: 4.0 X-SL-GetUrlReputation-Verdict: Good X-Robots-Tag: noindex, nofollow X-AspNet-Version: 4.0.30319 X-ServerName: MW2NAM04WS052 X-ServerVersion: 15.20.5857.023 X-ServerLat: 154 X-SafeLinks-Tracking-Id: af1816dd-ed2b-44f4-411a-08dad18a42a1 X-Powered-By: ASP.NET X-Content-Type-Options: nosniff X-UA-Compatible: IE=Edge Date: Mon, 28 Nov 2022 21:48:17 GMT Connection: close Content-Length: 195

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 2d2c0b5f65e08a441157b972acb89bfe b50ba3dd63daac7540b96e1a59b46f357581a5dc d9168e6b5d90f424eb707dca3444355f59bdb6eb2bdb720852bd2c53e2ecaac3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2394 Cache-Control: max-age=156861 Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 21:48:18 GMT Etag: "6384e505-1d7" Expires: Wed, 30 Nov 2022 17:22:39 GMT Last-Modified: Mon, 28 Nov 2022 16:42:45 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 2d2c0b5f65e08a441157b972acb89bfe b50ba3dd63daac7540b96e1a59b46f357581a5dc d9168e6b5d90f424eb707dca3444355f59bdb6eb2bdb720852bd2c53e2ecaac3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2394 Cache-Control: max-age=156861 Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 21:48:18 GMT Etag: "6384e505-1d7" Expires: Wed, 30 Nov 2022 17:22:39 GMT Last-Modified: Mon, 28 Nov 2022 16:42:45 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 471`

	push.services.mozilla.com/	35.86.38.2	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 35.86.38.2:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: VQBbFokDUPru7mnrKUM6Rg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: ffUYaXb+fQc9C7Y28niB8Qfxfig=`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash f51b6f0e1c744eae06c1849f8644409b ddf7a62fe152296f20b0d7d0e99e758e83e6169c b63f2082ca4322ead4967ba36642a33f11b7a40a3961726402921aad6cea602d HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3598 Cache-Control: max-age=141161 Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 21:48:19 GMT Etag: "6384a2fe-117" Expires: Wed, 30 Nov 2022 13:01:00 GMT Last-Modified: Mon, 28 Nov 2022 12:01:02 GMT Server: ECS (ska/F71B) X-Cache: HIT Content-Length: 279`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash aebda342a81ad83f60d2523f54ccda67 e590d9326e4a283e0929a8ffccb13cc4308af0e6 bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12640 Expires: Tue, 29 Nov 2022 01:18:59 GMT Date: Mon, 28 Nov 2022 21:48:19 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash aebda342a81ad83f60d2523f54ccda67 e590d9326e4a283e0929a8ffccb13cc4308af0e6 bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12640 Expires: Tue, 29 Nov 2022 01:18:59 GMT Date: Mon, 28 Nov 2022 21:48:19 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg	34.120.237.76	200 OK	9.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.4 kB (9430 bytes) Hash 1f434933b5bd6377d299ada22d1ae7ef 075531f525e625b117b2497f31139c9824d0e9c5 b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9430 x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR7wyGCIIAMFhgw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 22:01:46 GMT age: 85593 etag: "075531f525e625b117b2497f31139c9824d0e9c5" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10199 bytes) Hash 2cd887044e91d7ed0f1a8d7119ff7dd0 ae8aa4ce6ddaccba771fe65446926b60fc5628da bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10199 x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cOo4iF1VIAMF09g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 9arA3ZbBOLGNNwlEuBq1oOdcsKyxFLrnzK8EGkfZw0Jt6mheqretHw== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google date: Mon, 28 Nov 2022 21:42:16 GMT age: 363 etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg	34.120.237.76	200 OK	6.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.4 kB (6376 bytes) Hash 78b1389f425425d0450c94d900404dc4 53b12a8702f7c5b7cc697e2a24da824d9434be65 0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6376 x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR6_KGeaoAMFb_Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q== via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 22:01:46 GMT age: 85593 etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a11c6ec-01ab-453a-a13d-c7804535dc69.jpeg	34.120.237.76	200 OK	8.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a11c6ec-01ab-453a-a13d-c7804535dc69.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.8 kB (8771 bytes) Hash b0bd385532089b45a14e461abbecc1af 3da359b1ba09138a425094715b9f3a2f8d0257fe 803001528f2aefc1ea90e585d48de435975862861a1cbe8d898e5cd7ebd297dd HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a11c6ec-01ab-453a-a13d-c7804535dc69.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8771 x-amzn-requestid: 995d3904-9be1-4b40-9813-ff47e60639ec x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR6_MEAPoAMF0xw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d861-3fdb7958064e0c4b1aed2136;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:33 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: vrBB4JkuL3nbZnDWitQ4dvTruO9M6hSt8mw9NuJliCmcNOw8xvfWhw== via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 22:16:08 GMT age: 84731 etag: "3da359b1ba09138a425094715b9f3a2f8d0257fe" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	cdn01.boxcdn.net/_assets/img/notes_favicon-NIfakL.png	104.16.74.20	200 OK	5.3 kB
URL HTTP/2 cdn01.boxcdn.net/_assets/img/notes_favicon-NIfakL.png IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced\012- data Size 5.3 kB (5284 bytes) Hash 9de7359f533c3b80738bf2d752e12506 061bf16b05aa179374ccd26a3905f43a14b6722d b10d240c04dd81860e4c7ab90e959ecfba16d4cfc5a97c71280b73fd71c863aa HTTP Headers GET /_assets/img/notes_favicon-NIfakL.png HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jdimick-slebson-cobraliners.app.box.com/ Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:19 GMT content-type: image/png content-length: 5284 cache-control: max-age=315360000 cf-bgj: imgq:100,h2pri cf-polished: origSize=8646 etag: "63601e87-21c6" expires: Thu, 31 Dec 2037 23:55:55 GMT last-modified: Mon, 31 Oct 2022 19:14:15 GMT strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 1337365 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 77164e9ebf16b4fa-OSL X-Firefox-Spdy: h2`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg	34.120.237.76	200 OK	8.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.9 kB (8885 bytes) Hash 3a1a4e00f1f15827cf651f373863c379 70c2a238f06ca7e56ef80c83738e081bf0de3330 3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8885 x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cGDTEFSeIAMF3rg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0 x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A== via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google date: Mon, 28 Nov 2022 10:13:33 GMT age: 41686 etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10119 bytes) Hash 15bd53848c7082464273007e010c54e0 9a3ca698ca1aeae695923277ed2244465e01a1ea 36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10119 x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR782HEZIAMFTKQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: _jTN1lFL0_PS-9DYgE6O2V6s6AYnlGJs0xCEHn761Mxq_asytlaRoQ== via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 21:51:40 GMT age: 86199 etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	cdn01.boxcdn.net/notes/img/loading_1f6c76e88706a65acdd756bbf5817591.gif	104.16.74.20	200 OK	527 B
URL HTTP/2 cdn01.boxcdn.net/notes/img/loading_1f6c76e88706a65acdd756bbf5817591.gif IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type GIF image data, version 89a, 32 x 16\012- data Size 527 B (527 bytes) Hash 078da0ae946b8b0f93e7a519620263b4 a55c769a04123cdd5f0b40eada86108222eb4c78 b034af69511e27c742248526b5e3ed0a47e862cb9cc5d18ead972984a664f388 HTTP Headers GET /notes/img/loading_1f6c76e88706a65acdd756bbf5817591.gif HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn01.boxcdn.net/notes/css/web-bundle_6b2cc4c1738c4cb06ebffb681d6110e0.css Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:20 GMT content-type: image/gif content-length: 527 cache-control: max-age=315360000, public cf-bgj: imgq:100,h2pri cf-polished: origSize=658 etag: "63505d70-292" expires: Thu, 31 Dec 2037 23:55:55 GMT last-modified: Wed, 19 Oct 2022 20:26:24 GMT strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 2407097 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 77164ea15a98b4fa-OSL X-Firefox-Spdy: h2`

	cdn01.boxcdn.net/fonts/1.0.2/lato/Lato-Regular.woff2	104.16.74.20	200 OK	85 kB
URL HTTP/2 cdn01.boxcdn.net/fonts/1.0.2/lato/Lato-Regular.woff2 IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type Web Open Font Format (Version 2), TrueType, length 84992, version 2.983\012- data Size 85 kB (84992 bytes) Hash 8b1868b7bce455bf0da2712ec5d1a6c8 576498905760a76534fefc8a6a770b643e10af01 0abcefa9ef9546cad5811b5a32f096f8b9407e43de385227a78182c32dc3451b HTTP Headers `GET /fonts/1.0.2/lato/Lato-Regular.woff2 HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://notes.services.box.com Connection: keep-alive Referer: https://cdn01.boxcdn.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:20 GMT content-type: font/woff2 content-length: 84992 last-modified: Wed, 01 Feb 2017 20:05:32 GMT etag: "58923f8c-14c00" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public, immutable access-control-allow-origin: * strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 1260974 accept-ranges: bytes set-cookie: __cf_bm=8yWI8gOF2_wQgEuwbv.Qr3LjIGJaweuCwpf2vabFBn0-1669672100-0-AcgetsL7SbvvT1azb7AgIuvPQaKTMB0VX26MKqh0C1Ob1nIOd026FcPseABMaoIHM7bQqioKcs4txYGcqyq4MNk=; path=/; expires=Mon, 28-Nov-22 22:18:20 GMT; domain=.boxcdn.net; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare cf-ray: 77164ea15a9cb4fa-OSL X-Firefox-Spdy: h2

	cdn01.boxcdn.net/fonts/1.0.2/lato/Lato-Bold.woff2	104.16.74.20	200 OK	84 kB
URL HTTP/2 cdn01.boxcdn.net/fonts/1.0.2/lato/Lato-Bold.woff2 IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type Web Open Font Format (Version 2), TrueType, length 84396, version 2.983\012- data Size 84 kB (84396 bytes) Hash 8a54ea1aeb67d07c751bd5f03068317b cfbee4f2fd7f359a2a60648bb6797cac1fd4da3e 4230a20b841519bdbe4b0c154bad414e017cf80b3918127d45c4f907eea07280 HTTP Headers `GET /fonts/1.0.2/lato/Lato-Bold.woff2 HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://notes.services.box.com Connection: keep-alive Referer: https://cdn01.boxcdn.net/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:20 GMT content-type: font/woff2 content-length: 84396 last-modified: Wed, 01 Feb 2017 20:05:32 GMT etag: "58923f8c-149ac" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public, immutable access-control-allow-origin: * strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 1260974 accept-ranges: bytes set-cookie: __cf_bm=aLtuNIL3UloVnF_ONVGQ5df6Tc04TsjT.HoYnc19SHw-1669672100-0-AW3jYeK4NjIZfhdm6e950MSZkcc5QGCE7K7Duv6xPPzYvMgQtvC/KA5Z3qVt70BOE1gYxqKcpYWZ5RssIrKAzVM=; path=/; expires=Mon, 28-Nov-22 22:18:20 GMT; domain=.boxcdn.net; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare cf-ray: 77164ea17ad8b4fa-OSL X-Firefox-Spdy: h2

	cdn01.boxcdn.net/notes/js/l10n/en-i18n_b95c501901167c549b9beb5979635144.min.js	104.16.74.20	200 OK	11 kB
URL HTTP/2 cdn01.boxcdn.net/notes/js/l10n/en-i18n_b95c501901167c549b9beb5979635144.min.js IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type data Size 11 kB (10880 bytes) Hash ad8fc81e9624214030edeae57826358d d15ff70084ebcf19a85ff6ec16c5eab471b6de29 96d1888d2e90d28e3f98b51e6c1eb1f6b74f79bdcca7d2ea37dfb1c7a4849160 HTTP Headers GET /notes/js/l10n/en-i18n_b95c501901167c549b9beb5979635144.min.js HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://notes.services.box.com/ Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:19 GMT content-type: application/javascript; charset=utf-8 last-modified: Mon, 14 Nov 2022 21:58:36 GMT etag: W/"6372ba0c-bd27" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 1046456 vary: Accept-Encoding server: cloudflare cf-ray: 77164e9f8ff9b4fa-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	cdn01.boxcdn.net/notes/notes-web/chunks/css/new-editor_6d542e6660af3653f111.css	104.16.74.20	200 OK	9.4 kB
URL HTTP/2 cdn01.boxcdn.net/notes/notes-web/chunks/css/new-editor_6d542e6660af3653f111.css IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type data Size 9.4 kB (9354 bytes) Hash df1335f943a0a87cbd2f453fcf29690e 783cb155fa841daa2339c7a1fb822e584f5f5bb6 adec0208e9a048250e9ed5b6ece3ba842c7815a87644c40e472c39130316ca77 HTTP Headers GET /notes/notes-web/chunks/css/new-editor_6d542e6660af3653f111.css HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://notes.services.box.com/ Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:21 GMT content-type: text/css last-modified: Tue, 22 Nov 2022 02:06:28 GMT etag: W/"637c2ea4-124c1" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 521316 vary: Accept-Encoding server: cloudflare cf-ray: 77164eab7a13b4fa-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	notes.services.box.com/3/9061/3001/socket.io/?clientVersion=8.2243.4&EIO=3&transport=websocket&sid=wWALp0IX7anY9yw_AIa8	74.112.186.144	101 Switching Protocols	0 B
URL HTTP/1.1 notes.services.box.com/3/9061/3001/socket.io/?clientVersion=8.2243.4&EIO=3&transport=websocket&sid=wWALp0IX7anY9yw_AIa8 IP 74.112.186.144:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /3/9061/3001/socket.io/?clientVersion=8.2243.4&EIO=3&transport=websocket&sid=wWALp0IX7anY9yw_AIa8 HTTP/1.1 Host: notes.services.box.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://notes.services.box.com Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: v1sBzE9bMM5FYYwBbkTfKw== Connection: keep-alive, Upgrade Cookie: box_visitor_id=63852ca2a427e5.58947810; site_preference=desktop; _notes_oauth_csrf_=1; _csrf=Q2Zfnm9SBa6v09Dg2Az0kNu3; csrf-token=OOBkHYHZ-vhGpXJrS_Fq14VTFC94DKN_ufdE; express_sid=s%3AxyqfYPKDxCuJZinUCY2BApDDh5eZLRVO.yu1tM86oXqflp6tTkqXgAKLapDObm9IGnwYI%2Bb24Qxs; amplitude_id_c6eb3d709c5c30ca80c0381080bcc254box.com=eyJkZXZpY2VJZCI6ImRiMmM4NWFlLTA2ZjQtNDliYy1iNWFmLWJhZjY5MDZjZWQ4YVIiLCJ1c2VySWQiOiIyIiwib3B0T3V0IjpmYWxzZSwic2Vzc2lvbklkIjoxNjY5NjcyMTAwOTQ5LCJsYXN0RXZlbnRUaW1lIjoxNjY5NjcyMTAwOTUxLCJldmVudElkIjowLCJpZGVudGlmeUlkIjoxLCJzZXF1ZW5jZU51bWJlciI6MX0= Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Date: Mon, 28 Nov 2022 21:48:22 GMT Connection: upgrade upgrade: websocket sec-websocket-accept: woy6UX57ENFMBmOvtpAkB2BXMDA= sec-websocket-extensions: permessage-deflate Strict-Transport-Security: max-age=31536000 Via: 1.1 google Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"`

	notes.services.box.com/3/9061/3001/socket.io/?clientVersion=8.2243.4&EIO=3&transport=polling&t=OJ0DcV8&sid=wWALp0IX7anY9yw_AIa8	74.112.186.144	200 OK	2 B
URL HTTP/2 notes.services.box.com/3/9061/3001/socket.io/?clientVersion=8.2243.4&EIO=3&transport=polling&t=OJ0DcV8&sid=wWALp0IX7anY9yw_AIa8 IP 74.112.186.144:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash 444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df HTTP Headers POST /3/9061/3001/socket.io/?clientVersion=8.2243.4&EIO=3&transport=polling&t=OJ0DcV8&sid=wWALp0IX7anY9yw_AIa8 HTTP/1.1 Host: notes.services.box.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: text/plain;charset=UTF-8 Content-Length: 341 Origin: https://notes.services.box.com Connection: keep-alive Referer: https://notes.services.box.com/p/note?fileId=1077315852514&hostname=jdimick-slebson-cobraliners.app.box.com&sharedLink=https://jdimick-slebson-cobraliners.box.com/s/i1dix93z68aj3r36obrswau6f7txemx5 Cookie: box_visitor_id=63852ca2a427e5.58947810; site_preference=desktop; _notes_oauth_csrf_=1; _csrf=Q2Zfnm9SBa6v09Dg2Az0kNu3; csrf-token=OOBkHYHZ-vhGpXJrS_Fq14VTFC94DKN_ufdE; express_sid=s%3AxyqfYPKDxCuJZinUCY2BApDDh5eZLRVO.yu1tM86oXqflp6tTkqXgAKLapDObm9IGnwYI%2Bb24Qxs; amplitude_id_c6eb3d709c5c30ca80c0381080bcc254box.com=eyJkZXZpY2VJZCI6ImRiMmM4NWFlLTA2ZjQtNDliYy1iNWFmLWJhZjY5MDZjZWQ4YVIiLCJ1c2VySWQiOiIyIiwib3B0T3V0IjpmYWxzZSwic2Vzc2lvbklkIjoxNjY5NjcyMTAwOTQ5LCJsYXN0RXZlbnRUaW1lIjoxNjY5NjcyMTAwOTUxLCJldmVudElkIjowLCJpZGVudGlmeUlkIjoxLCJzZXF1ZW5jZU51bWJlciI6MX0= Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:22 GMT content-type: text/html content-length: 2 access-control-allow-credentials: true access-control-allow-origin: https://notes.services.box.com x-envoy-upstream-service-time: 0 front-end-https: on strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2`

	notes.services.box.com/3/9061/3001/socket.io/?clientVersion=8.2243.4&EIO=3&transport=polling&t=OJ0DcV8.0&sid=wWALp0IX7anY9yw_AIa8	74.112.186.144	200 OK	3 B
URL HTTP/2 notes.services.box.com/3/9061/3001/socket.io/?clientVersion=8.2243.4&EIO=3&transport=polling&t=OJ0DcV8.0&sid=wWALp0IX7anY9yw_AIa8 IP 74.112.186.144:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type ASCII text, with no line terminators Size 3 B (3 bytes) Hash 9b9065b3ba2c3c87f1e30fdf998d791e cc471c1ac39e9f79d65111b47de18d7bf187f1ed 62325dfc1fc675255519674da6e2c4aad5f51cc6c3217ed3c6fbf6cabe0d86b0 HTTP Headers GET /3/9061/3001/socket.io/?clientVersion=8.2243.4&EIO=3&transport=polling&t=OJ0DcV8.0&sid=wWALp0IX7anY9yw_AIa8 HTTP/1.1 Host: notes.services.box.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://notes.services.box.com/p/note?fileId=1077315852514&hostname=jdimick-slebson-cobraliners.app.box.com&sharedLink=https://jdimick-slebson-cobraliners.box.com/s/i1dix93z68aj3r36obrswau6f7txemx5 Cookie: box_visitor_id=63852ca2a427e5.58947810; site_preference=desktop; _notes_oauth_csrf_=1; _csrf=Q2Zfnm9SBa6v09Dg2Az0kNu3; csrf-token=OOBkHYHZ-vhGpXJrS_Fq14VTFC94DKN_ufdE; express_sid=s%3AxyqfYPKDxCuJZinUCY2BApDDh5eZLRVO.yu1tM86oXqflp6tTkqXgAKLapDObm9IGnwYI%2Bb24Qxs; amplitude_id_c6eb3d709c5c30ca80c0381080bcc254box.com=eyJkZXZpY2VJZCI6ImRiMmM4NWFlLTA2ZjQtNDliYy1iNWFmLWJhZjY5MDZjZWQ4YVIiLCJ1c2VySWQiOiIyIiwib3B0T3V0IjpmYWxzZSwic2Vzc2lvbklkIjoxNjY5NjcyMTAwOTQ5LCJsYXN0RXZlbnRUaW1lIjoxNjY5NjcyMTAwOTUxLCJldmVudElkIjowLCJpZGVudGlmeUlkIjoxLCJzZXF1ZW5jZU51bWJlciI6MX0= Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:22 GMT content-type: text/plain; charset=UTF-8 content-length: 3 access-control-allow-origin: * x-envoy-upstream-service-time: 139 front-end-https: on strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2`

	cdn01.boxcdn.net/notes/img/image_loading@2x_29b814b91082b256261fc3d1fb6239cb.gif	104.16.74.20	200 OK	12 kB
URL HTTP/2 cdn01.boxcdn.net/notes/img/image_loading@2x_29b814b91082b256261fc3d1fb6239cb.gif IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type GIF image data, version 89a, 128 x 128\012- data Size 12 kB (11662 bytes) Hash 2d30144b1a2e233f17e35bbb13992da9 f3c8cd9ee232c886514e3f4e4d7f0933d73f0ac4 49f5883d74f7ed685a2fbd65d9a988db54218a1be8923a2b064e0ee7de86c284 HTTP Headers GET /notes/img/image_loading@2x_29b814b91082b256261fc3d1fb6239cb.gif HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://notes.services.box.com/ Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:23 GMT content-type: image/gif content-length: 11662 cache-control: max-age=315360000, public cf-bgj: imgq:100,h2pri cf-polished: origSize=11930 etag: "63505d70-2e9a" expires: Thu, 31 Dec 2037 23:55:55 GMT last-modified: Wed, 19 Oct 2022 20:26:24 GMT strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 2407100 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 77164eb588acb4fa-OSL X-Firefox-Spdy: h2`

	cdn01.boxcdn.net/notes/img/notes-sprites_169a8205a595e3ed05fd68025e1e787d.png	104.16.74.20	200 OK	21 kB
URL HTTP/2 cdn01.boxcdn.net/notes/img/notes-sprites_169a8205a595e3ed05fd68025e1e787d.png IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type PNG image data, 170 x 403, 8-bit/color RGBA, non-interlaced\012- data Size 21 kB (20707 bytes) Hash 5014bd57d455109b69ec9b55f8f846c2 737038fce3c91afdbe4ec5e92f9122b66ffa9003 a35de03842ce1919d276cdcbea23ecc2d247932710b92490e08b5bede398e28e HTTP Headers GET /notes/img/notes-sprites_169a8205a595e3ed05fd68025e1e787d.png HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://cdn01.boxcdn.net/notes/css/web-bundle_6b2cc4c1738c4cb06ebffb681d6110e0.css Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:23 GMT content-type: image/png content-length: 20707 cache-control: max-age=315360000, public cf-bgj: imgq:100,h2pri cf-polished: origSize=27718 etag: "63505d70-6c46" expires: Thu, 31 Dec 2037 23:55:55 GMT last-modified: Wed, 19 Oct 2022 20:26:24 GMT strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 1559212 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 77164eb5b8e6b4fa-OSL X-Firefox-Spdy: h2`

	cdn01.boxcdn.net/notes/img/box_user_avatar_large_992920f76747275b946052733d87a3b6.png	104.16.74.20	200 OK	266 B
URL HTTP/2 cdn01.boxcdn.net/notes/img/box_user_avatar_large_992920f76747275b946052733d87a3b6.png IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type PNG image data, 40 x 40, 8-bit grayscale, non-interlaced\012- data Size 266 B (266 bytes) Hash db313cc78ee98e16393f28fe9674ebf2 ac7d896fee937dbecf002c4f07ee095df66c7dc8 d040f8dcd6cca7c1a8c9238bcb352286f9e94f41ab3030309b301dd79af89383 HTTP Headers GET /notes/img/box_user_avatar_large_992920f76747275b946052733d87a3b6.png HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://notes.services.box.com/ Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:23 GMT content-type: image/png content-length: 266 cache-control: max-age=315360000, public cf-bgj: imgq:100,h2pri cf-polished: status=not_needed etag: "63505d70-10a" expires: Thu, 31 Dec 2037 23:55:55 GMT last-modified: Wed, 19 Oct 2022 20:26:24 GMT strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 1553665 accept-ranges: bytes vary: Accept-Encoding server: cloudflare cf-ray: 77164eb70a93b4fa-OSL X-Firefox-Spdy: h2`

	jdimick-slebson-cobraliners.box.com/s/i1dix93z68aj3r36obrswau6f7txemx5	74.112.186.144	301 Moved Permanently	0 B
URL HTTP/2 jdimick-slebson-cobraliners.box.com/s/i1dix93z68aj3r36obrswau6f7txemx5 IP 74.112.186.144:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type Size 0 B (0 bytes) Hash HTTP Headers `GET /s/i1dix93z68aj3r36obrswau6f7txemx5 HTTP/1.1 Host: jdimick-slebson-cobraliners.box.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/2 301 Moved Permanently date: Mon, 28 Nov 2022 21:48:18 GMT content-type: text/html; charset=UTF-8 location: https://jdimick-slebson-cobraliners.app.box.com/s/i1dix93z68aj3r36obrswau6f7txemx5 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2`

	cdn01.boxcdn.net/notes/notes-web/chunks/css/vendor_251ae59039014cfb5ba5.css	104.16.74.20	200 OK	0 B
URL HTTP/2 cdn01.boxcdn.net/notes/notes-web/chunks/css/vendor_251ae59039014cfb5ba5.css IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /notes/notes-web/chunks/css/vendor_251ae59039014cfb5ba5.css HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://notes.services.box.com/ Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:21 GMT content-type: text/css last-modified: Mon, 14 Nov 2022 21:58:36 GMT etag: W/"6372ba0c-db6b" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 1043320 vary: Accept-Encoding server: cloudflare cf-ray: 77164eab7a0fb4fa-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	cdn01.boxcdn.net/notes/css/web-bundle_6b2cc4c1738c4cb06ebffb681d6110e0.css	104.16.74.20	200 OK	0 B
URL HTTP/2 cdn01.boxcdn.net/notes/css/web-bundle_6b2cc4c1738c4cb06ebffb681d6110e0.css IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /notes/css/web-bundle_6b2cc4c1738c4cb06ebffb681d6110e0.css HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://notes.services.box.com/ Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:19 GMT content-type: text/css last-modified: Tue, 22 Nov 2022 02:06:28 GMT etag: W/"637c2ea4-afc32" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 526075 vary: Accept-Encoding server: cloudflare cf-ray: 77164e9f981bb4fa-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	cdn01.boxcdn.net/notes/notes-web/chunks/js/new-editor_6d542e6660af3653f111.js	104.16.74.20	200 OK	0 B
URL HTTP/2 cdn01.boxcdn.net/notes/notes-web/chunks/js/new-editor_6d542e6660af3653f111.js IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /notes/notes-web/chunks/js/new-editor_6d542e6660af3653f111.js HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://notes.services.box.com/ Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:21 GMT content-type: application/javascript; charset=utf-8 last-modified: Tue, 22 Nov 2022 02:06:28 GMT etag: W/"637c2ea4-99c44" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 521316 vary: Accept-Encoding server: cloudflare cf-ray: 77164eab7a15b4fa-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	notes.services.box.com/box-image?encoding=base64&fileId=1077331090750&fileName=Screen%20Shot%202022-11-09%20at%209.11.15%20PM.png&sharedLink=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fnbc0obbwrv2rxlgid9jxhera16liq6y8&viewContext=inline	74.112.186.144	200 OK	0 B
URL HTTP/2 notes.services.box.com/box-image?encoding=base64&fileId=1077331090750&fileName=Screen%20Shot%202022-11-09%20at%209.11.15%20PM.png&sharedLink=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fnbc0obbwrv2rxlgid9jxhera16liq6y8&viewContext=inline IP 74.112.186.144:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type Size 0 B (0 bytes) Hash HTTP Headers GET /box-image?encoding=base64&fileId=1077331090750&fileName=Screen%20Shot%202022-11-09%20at%209.11.15%20PM.png&sharedLink=https%3A%2F%2Fjdimick-slebson-cobraliners.box.com%2Fs%2Fnbc0obbwrv2rxlgid9jxhera16liq6y8&viewContext=inline HTTP/1.1 Host: notes.services.box.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://notes.services.box.com/p/note?fileId=1077315852514&hostname=jdimick-slebson-cobraliners.app.box.com&sharedLink=https://jdimick-slebson-cobraliners.box.com/s/i1dix93z68aj3r36obrswau6f7txemx5 Cookie: box_visitor_id=63852ca2a427e5.58947810; site_preference=desktop; _notes_oauth_csrf_=1; _csrf=Q2Zfnm9SBa6v09Dg2Az0kNu3; csrf-token=OOBkHYHZ-vhGpXJrS_Fq14VTFC94DKN_ufdE; express_sid=s%3AxyqfYPKDxCuJZinUCY2BApDDh5eZLRVO.yu1tM86oXqflp6tTkqXgAKLapDObm9IGnwYI%2Bb24Qxs; amplitude_id_c6eb3d709c5c30ca80c0381080bcc254box.com=eyJkZXZpY2VJZCI6ImRiMmM4NWFlLTA2ZjQtNDliYy1iNWFmLWJhZjY5MDZjZWQ4YVIiLCJ1c2VySWQiOiIyIiwib3B0T3V0IjpmYWxzZSwic2Vzc2lvbklkIjoxNjY5NjcyMTAwOTQ5LCJsYXN0RXZlbnRUaW1lIjoxNjY5NjcyMTAwOTUxLCJldmVudElkIjowLCJpZGVudGlmeUlkIjoxLCJzZXF1ZW5jZU51bWJlciI6MX0= Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:24 GMT content-type: text/plain; charset=utf-8 x-powered-by: Express set-cookie: csrf-token=mNAMMULg-nADpGciwPJwNSo0KFlENTZB7Cl0; Path=/; Secure; SameSite=None strict-transport-security: max-age=31536000 x-frame-options: ALLOW-FROM https://app.box.com content-security-policy: frame-ancestors https://app.box.com cache-control: max-age=1800, private x-content-type-options: nosniff x-robots-tag: noindex, nofollow x-envoy-upstream-service-time: 654 front-end-https: on via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	cdn01.boxcdn.net/webapp_assets/js/notes-d788f620da.min.js	104.16.74.20	200 OK	0 B
URL HTTP/2 cdn01.boxcdn.net/webapp_assets/js/notes-d788f620da.min.js IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /webapp_assets/js/notes-d788f620da.min.js HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://jdimick-slebson-cobraliners.app.box.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:19 GMT content-type: application/javascript; charset=utf-8 last-modified: Mon, 31 Oct 2022 19:12:31 GMT etag: W/"63601e1f-668" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public, immutable strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 2390893 set-cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk=; path=/; expires=Mon, 28-Nov-22 22:18:19 GMT; domain=.boxcdn.net; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare cf-ray: 77164e9e9ef3b4fa-OSL content-encoding: gzip X-Firefox-Spdy: h2

	cdn01.boxcdn.net/notes/js/l10n/box-react-ui/en-i18n_5a8773279307957483b8f36207d94689.min.js	104.16.74.20	200 OK	0 B
URL HTTP/2 cdn01.boxcdn.net/notes/js/l10n/box-react-ui/en-i18n_5a8773279307957483b8f36207d94689.min.js IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /notes/js/l10n/box-react-ui/en-i18n_5a8773279307957483b8f36207d94689.min.js HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://notes.services.box.com/ Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:19 GMT content-type: application/javascript; charset=utf-8 last-modified: Mon, 14 Nov 2022 21:58:36 GMT etag: W/"6372ba0c-28b39" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 1046455 vary: Accept-Encoding server: cloudflare cf-ray: 77164e9f8ffcb4fa-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	cdn01.boxcdn.net/notes/js/notes-web/bundle_545d3031165c805f40cc3c5a519f2a6b.min.js	104.16.74.20	200 OK	0 B
URL HTTP/2 cdn01.boxcdn.net/notes/js/notes-web/bundle_545d3031165c805f40cc3c5a519f2a6b.min.js IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /notes/js/notes-web/bundle_545d3031165c805f40cc3c5a519f2a6b.min.js HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://notes.services.box.com/ Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:20 GMT content-type: application/javascript; charset=utf-8 last-modified: Tue, 22 Nov 2022 02:06:28 GMT etag: W/"637c2ea4-3ee71e" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 521316 vary: Accept-Encoding server: cloudflare cf-ray: 77164ea1ab11b4fa-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	cdn01.boxcdn.net/notes/notes-web/chunks/js/vendor_251ae59039014cfb5ba5.js	104.16.74.20	200 OK	0 B
URL HTTP/2 cdn01.boxcdn.net/notes/notes-web/chunks/js/vendor_251ae59039014cfb5ba5.js IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /notes/notes-web/chunks/js/vendor_251ae59039014cfb5ba5.js HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://notes.services.box.com/ Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:21 GMT content-type: application/javascript; charset=utf-8 last-modified: Mon, 14 Nov 2022 21:58:36 GMT etag: W/"6372ba0c-271d65" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000, public strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT age: 1043321 vary: Accept-Encoding server: cloudflare cf-ray: 77164eab7a11b4fa-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	cdn01.boxcdn.net/notes/img/box_user_avatar_small_992920f76747275b946052733d87a3b6.png	104.16.74.20	404 Not Found	0 B
URL HTTP/2 cdn01.boxcdn.net/notes/img/box_user_avatar_small_992920f76747275b946052733d87a3b6.png IP 104.16.74.20:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /notes/img/box_user_avatar_small_992920f76747275b946052733d87a3b6.png HTTP/1.1 Host: cdn01.boxcdn.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://notes.services.box.com/ Cookie: __cf_bm=cyBT8x8ouDR0HcMH4RbKfUPdMdjEBHyLNUjmy_lAo9c-1669672099-0-Af8cujdi8oCXj178Z/qF0y6XxY1HHSO+ax67VgunCXfq4YHAXIS68ehe0ecrZleMhBZeUPYhjF+8wtQSXnYQoMk= Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers `HTTP/2 404 Not Found date: Mon, 28 Nov 2022 21:48:23 GMT content-type: text/html; charset=utf-8 strict-transport-security: max-age=31536000 via: 1.1 google cf-cache-status: HIT vary: Accept-Encoding server: cloudflare cf-ray: 77164eb5c8fbb4fa-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	client-log.box.com/analytics-events/	74.112.186.144	200 OK	0 B
URL HTTP/2 client-log.box.com/analytics-events/ IP 74.112.186.144:0 ASN #396982 GOOGLE-CLOUD-PLATFORM File type Size 0 B (0 bytes) Hash HTTP Headers `POST /analytics-events/ HTTP/1.1 Host: client-log.box.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded; charset=UTF-8 Content-Length: 1109 Origin: https://notes.services.box.com Connection: keep-alive Referer: https://notes.services.box.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-site` HTTP/2 200 OK date: Mon, 28 Nov 2022 21:48:21 GMT content-type: text/html;charset=utf-8 x-cache: MISS from web-proxy00029.us-rno-a.dc001.prod.box.net strict-transport-security: max-age=31536000 trace-id: Root=1-63852ca5-01da6f560177831128dfe96a x-cache-lookup: MISS from web-proxy00029.us-rno-a.dc001.prod.box.net:3128 access-control-allow-origin: * access-control-allow-methods: GET, POST box-request-id: - x-envoy-upstream-service-time: 46 via: 1.1 google alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations