Report - www.cognitoforms.com/AtomicTransport/HRDepartmentComplianceForm

Report Overview

Submitted URL
www.cognitoforms.com/AtomicTransport/HRDepartmentComplianceForm
IP
23.96.4.241
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2022-11-29 23:30:15
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
static.cognitoforms.com	130561	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	5.8 kB	13.107.246.53
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.1 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
www.cognitoforms.com	55971	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.9 kB	39 kB	23.96.4.241
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.148.69.31
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	56 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (10)

	URL	Size	First Seen	Last Seen
	static.cognitoforms.com/form/modern/172.c22be0a45c3e78321854.js	299 kB	2023-03-11	2023-03-11
Pretty URL static.cognitoforms.com/form/modern/172.c22be0a45c3e78321854.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:26 Last Seen2023-03-11 22:40:26 Times Seen1 Hash 11476ae1242d9ffc6f1ffc79ff9d247b 90a642718780db25bef3355e682505ec9cea8824 5dd552cda25c0f4b593edf75fbb6ec1a2da6e665b458d2fa99a37eba67d64c28 Loading...

	www.cognitoforms.com/Scripts/testing/AutotestDetect.js	5.6 kB	2023-03-07	2024-03-25
Pretty URL www.cognitoforms.com/Scripts/testing/AutotestDetect.js IP 23.96.4.241 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:47:49 Last Seen2024-03-25 16:21:23 Times Seen453 Hash 9cad3f90a4f5186f732a0b9bd8e522c4 05a97960f4e4f24776345a3f5fea6558b1384494 1ca4c29158f1f930b2cf696a87f1a5c6e242efb401e6cec78e0986a7f732c55c Loading...

	www.cognitoforms.com/f/seamless.js	66 kB	2023-03-11	2023-03-11
Pretty URL www.cognitoforms.com/f/seamless.js IP 23.96.4.241 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:26 Last Seen2023-03-11 22:40:26 Times Seen1 Hash a1628769a684ee7f8c61c572fddd1545 53cfd3d827a87befb3eb53aed03ad6c47ba9985f efc28b1db580a973c53fc32e7e6412002fb77d48f260cf15efedcd413d2a9e47 Loading...

	static.cognitoforms.com/form/modern/173.95e1454c07dffb43e25d.js	94 kB	2023-03-11	2023-03-11
Pretty URL static.cognitoforms.com/form/modern/173.95e1454c07dffb43e25d.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:26 Last Seen2023-03-11 22:40:26 Times Seen1 Hash ba5339f84b5c3ab8711cedbe7980679f 6d5660c758336dabc653311eb3b028cab5e89147 898d8e21cda36fb5f090638fa4472b9224c44306eef08fda7faf7a280f63673e Loading...

	static.cognitoforms.com/form/modern/100.534caefe73b9e709c216.js	1.9 kB	2023-03-11	2023-03-11
Pretty URL static.cognitoforms.com/form/modern/100.534caefe73b9e709c216.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:26 Last Seen2023-03-11 22:40:26 Times Seen1 Hash 1979c6b843253e112fe2733c3e64df29 0fe84076fd8174c9cf26df33c9bbad51a6b3c458 fa6a72ea8ed42e6b3df47ba1a46b992117195f6f3ab8a29fc091af14248de1db Loading...

	static.cognitoforms.com/form/modern/152.854b758c937818d8cfa1.js	124 kB	2023-03-11	2023-03-11
Pretty URL static.cognitoforms.com/form/modern/152.854b758c937818d8cfa1.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:26 Last Seen2023-03-11 22:40:26 Times Seen1 Hash 1ae0fd4de39f7adb38b125e577c20851 c2e5a55d3cbaa086527f9c654cb7e53a5da934ff b6d394844d9a9c5c4c626fde104d2ba5b3df2497c6a8554eee25f08ba010caa5 Loading...

	www.cognitoforms.com/Scripts/vertical-form-edge-snapping.js?cachehash=1737407831	1.1 kB	2023-03-10	2024-03-25
Pretty URL www.cognitoforms.com/Scripts/vertical-form-edge-snapping.js?cachehash=1737407831 IP 23.96.4.241 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 18:46:11 Last Seen2024-03-25 16:21:23 Times Seen17 Hash b22d94b0e8c3a246d58ab63b186d5654 710653e464a6dc8935a6e347ac4f64c04cb2b15a 98d13affbd1ef21f52c901fb7aadc28052143ffec7ffa8a6e0562093e5012e54 Loading...

	static.cognitoforms.com/form/modern/177.6165d29c0533a4970669.js	2.9 kB	2023-03-11	2023-03-11
Pretty URL static.cognitoforms.com/form/modern/177.6165d29c0533a4970669.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:26 Last Seen2023-03-11 22:40:26 Times Seen1 Hash 9e73bb0e9f2da3d645d961c8a979af13 03b9925c2d56b2004127df9800978153ea468b22 05fe80305321cf07655ccecd99e3879628218b0ae8c3226fd691a832304e705b Loading...

	static.cognitoforms.com/form/modern/174.8f03aa17747eefb09c0f.js	40 kB	2023-03-11	2023-03-11
Pretty URL static.cognitoforms.com/form/modern/174.8f03aa17747eefb09c0f.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:26 Last Seen2023-03-11 22:40:26 Times Seen1 Hash 98fb4cc017d7fd3d1503988cf80aad9c 5b0dda5f2229a2011537779878cc3d5937fca7d7 53c6f069f1386957dfd1853f3e920d979743f2aa416c1a068632016078105be2 Loading...

	static.cognitoforms.com/form/modern/149.ddbdadbe527bd4354d0a.js	247 kB	2023-03-11	2023-03-11
Pretty URL static.cognitoforms.com/form/modern/149.ddbdadbe527bd4354d0a.js IP 13.107.246.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:40:26 Last Seen2023-03-11 22:40:26 Times Seen1 Hash 04e4f19745b41d6c3688bc3ab32042c8 63675a6d8096116d59871f1305502efc0075ef0a 599d5e7b3d6c0f2b9aa2db00bf412d69b8e18134bea8796a35b17ac84955bba9 Loading...

HTTP Transactions (35)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a5daf4dc99951793ae2315d4795e8146 4427507ca4d3a5632cc8f598afbc85e2195d00bd 94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2802 Expires: Wed, 30 Nov 2022 00:16:46 GMT Date: Tue, 29 Nov 2022 23:30:04 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 4ed065cb23b5fca1a179dd73b3c5b7b2 4422eb24688f5e056fc1b18b127c7f63b1dbf5e0 b723d770d0dec7441d8505dc5a4e7d34f55c9f564ec52f20d9b70c7c3a0d9d35 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3835 Cache-Control: public, max-age=1209600 Content-Type: application/ocsp-response Date: Tue, 29 Nov 2022 23:30:04 GMT Etag: "638650c5-37" Last-Modified: Tue, 29 Nov 2022 18:34:45 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 471`

	firefox.settings.services.mozilla.com/v1/	34.102.187.140	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 29 Nov 2022 23:19:38 GMT cache-control: public,max-age=3600 content-type: application/json age: 626 alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 6d9d34c96b9a826ae5676640c966469c 8052a16d41a637e420478b7de1ff5a2dc951fccd f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4983 Expires: Wed, 30 Nov 2022 00:53:07 GMT Date: Tue, 29 Nov 2022 23:30:04 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: 4Q9HDc8N0iHCfkztzx/mGnAHgliB1c455T/g4aMz7JwcAH92kJFmvwAH/n1G7NIstBsBAuwCp7E= x-amz-request-id: 4SRZDMGZ83GS8ZAA content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 29 Nov 2022 22:45:38 GMT age: 2666 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 29 Nov 2022 23:30:04 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	www.cognitoforms.com/AtomicTransport/HRDepartmentComplianceForm	23.96.4.241	200 OK	1.2 kB
URL HTTP/2 www.cognitoforms.com/AtomicTransport/HRDepartmentComplianceForm IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators Size 1.2 kB (1173 bytes) Hash a6581ae0ca4c1b2f8d88dc9af0e00297 bd084b74f619d020fe9a6c89f3fc16f72af7bfee 8cace2d83fe7abe41fdd346e67975728d316d72b013a346ac6c713e0c7881d15 HTTP Headers `GET /AtomicTransport/HRDepartmentComplianceForm HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate pragma: no-cache content-type: text/html; charset=utf-8 content-encoding: gzip expires: -1 vary: Accept-Encoding strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-29T23:30:04.144Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_23 x-request-time: 42ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 29 Nov 2022 23:30:04 GMT content-length: 1173 X-Firefox-Spdy: h2

	www.cognitoforms.com/Scripts/testing/AutotestDetect.js	23.96.4.241	200 OK	1.5 kB
URL HTTP/2 www.cognitoforms.com/Scripts/testing/AutotestDetect.js IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type ASCII text, with CRLF line terminators Size 1.5 kB (1528 bytes) Hash 47854f6a1fb2c16a012dd75b2a40c2fe 52c97dfa106dbd52c5845b21c2aabcf8cabf0e59 8826630b3a77989babb056bc120eeb281055a6ee866bfd7908eba5a78b44e48f HTTP Headers `GET /Scripts/testing/AutotestDetect.js HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/AtomicTransport/HRDepartmentComplianceForm Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/javascript content-encoding: gzip last-modified: Wed, 23 Nov 2022 13:34:36 GMT accept-ranges: bytes etag: "07e45440ffd81:0" vary: Accept-Encoding strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-29T23:12:57.873Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_23 x-request-time: 0ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 29 Nov 2022 23:30:04 GMT content-length: 1528 X-Firefox-Spdy: h2

	www.cognitoforms.com/Content/public-form.css?cachehash=1737407831	23.96.4.241	200 OK	1.1 kB
URL HTTP/2 www.cognitoforms.com/Content/public-form.css?cachehash=1737407831 IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type ASCII text, with CRLF line terminators Size 1.1 kB (1144 bytes) Hash ff765e6666c8e745158dfa361d7786a4 09a9b1953538c0b2daade16da213546f84bc3057 89fa26eff04447efbff01c413d359f02e31395b21b44643827730cac3cbb234c HTTP Headers `GET /Content/public-form.css?cachehash=1737407831 HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/AtomicTransport/HRDepartmentComplianceForm Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: text/css content-encoding: gzip last-modified: Wed, 23 Nov 2022 13:34:32 GMT accept-ranges: bytes etag: "024a25140ffd81:0" vary: Accept-Encoding strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-29T23:30:04.410Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_23 x-request-time: 0ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 29 Nov 2022 23:30:04 GMT content-length: 1144 X-Firefox-Spdy: h2

	www.cognitoforms.com/Scripts/vertical-form-edge-snapping.js?cachehash=1737407831	23.96.4.241	200 OK	632 B
URL HTTP/2 www.cognitoforms.com/Scripts/vertical-form-edge-snapping.js?cachehash=1737407831 IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type ASCII text, with CRLF line terminators Size 632 B (632 bytes) Hash 9b25400f98c7a372d5960c49f460299a 4b6aa36bc7076b3ac6632bb8028d6faa32ed93a1 d76029622f511b30df678438e8e14e173601fd3268b7b177ccadf68b5ca881a2 HTTP Headers `GET /Scripts/vertical-form-edge-snapping.js?cachehash=1737407831 HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/AtomicTransport/HRDepartmentComplianceForm Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: application/javascript content-encoding: gzip last-modified: Wed, 23 Nov 2022 13:34:36 GMT accept-ranges: bytes etag: "07e45440ffd81:0" vary: Accept-Encoding strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-29T23:30:04.410Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_23 x-request-time: 0ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 29 Nov 2022 23:30:04 GMT content-length: 632 X-Firefox-Spdy: h2

	www.cognitoforms.com/f/seamless.js	23.96.4.241	200 OK	17 kB
URL HTTP/2 www.cognitoforms.com/f/seamless.js IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type ASCII text, with very long lines (65536), with no line terminators Size 17 kB (16910 bytes) Hash e8ae3bb9b9eff3b01a8b6fec9c4315ea 34cb2bc1b89ffa6c4d12e1b353475e7507945f63 0d86f03fc6a1930adb7e09d1cfdc420a2e2082ed1fcf6738217d8080f86da40d HTTP Headers `GET /f/seamless.js HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/AtomicTransport/HRDepartmentComplianceForm Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK cache-control: no-cache, no-store, must-revalidate pragma: no-cache content-type: application/javascript content-encoding: gzip expires: -1 strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-29T23:30:04.425Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_23 x-request-time: 4ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 29 Nov 2022 23:30:04 GMT content-length: 16910 X-Firefox-Spdy: h2

	www.cognitoforms.com/Content/Images/favicons/favicon-32x32.png	23.96.4.241	200 OK	1.5 kB
URL HTTP/2 www.cognitoforms.com/Content/Images/favicons/favicon-32x32.png IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data Size 1.5 kB (1535 bytes) Hash 7b12a230e0d34f9d6471aca3bbfa1d2f 13642a7ac18f1402f089c2a3adcfbc31895cbbe0 44bedf652c45f811f1155dc4d045f63ce291faa59a05a4be857c0309700fd84b HTTP Headers `GET /Content/Images/favicons/favicon-32x32.png HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/AtomicTransport/HRDepartmentComplianceForm Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: image/png last-modified: Wed, 23 Nov 2022 13:34:34 GMT accept-ranges: bytes etag: "051d35240ffd81:0" strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-29T23:29:20.720Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_23 x-request-time: 3ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 29 Nov 2022 23:30:04 GMT content-length: 1535 X-Firefox-Spdy: h2

	www.cognitoforms.com/Content/Images/favicons/apple-touch-icon.png	23.96.4.241	200 OK	8.4 kB
URL HTTP/2 www.cognitoforms.com/Content/Images/favicons/apple-touch-icon.png IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size 8.4 kB (8436 bytes) Hash 440cb8423a3a03adc0ecd60cf1eebb72 a2b8f62340a170ce329dbca0e36faef514fe467f c25f440c3eb5101cb38f08717099cb43bd48d28b4baf73849adaa3ad06a5c831 HTTP Headers `GET /Content/Images/favicons/apple-touch-icon.png HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/AtomicTransport/HRDepartmentComplianceForm Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK content-type: image/png last-modified: Wed, 23 Nov 2022 13:34:34 GMT accept-ranges: bytes etag: "051d35240ffd81:0" strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: * x-server-time: 2022-11-29T23:30:04.566Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_23 x-request-time: 1ms content-security-policy: default-src 'self' https://; img-src data:; script-src https://* 'unsafe-inline' 'unsafe-eval'; style-src https://* 'unsafe-inline'; frame-src 'self' https://* mailto:; worker-src blob:; x-content-type-options: nosniff referrer-policy: origin-when-cross-origin request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 29 Nov 2022 23:30:04 GMT content-length: 8436 X-Firefox-Spdy: h2

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	34.102.187.140	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 29 Nov 2022 23:08:56 GMT cache-control: public,max-age=3600 age: 1268 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	55 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type HTML document, ASCII text Size 55 B (55 bytes) Hash 9f073354411bbaf7a319b1519f10b4b7 571498f38548829bf186f49f5be9d5fa6e689a68 4a7aaaa1c093dee8a191d4469c9f701c5e62e88896bc778a13cc4ffedf9be89a HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4207 Cache-Control: max-age=125211 Content-Type: text/html Date: Tue, 29 Nov 2022 23:30:04 GMT Etag: "6385cba8-1d7" Expires: Thu, 01 Dec 2022 10:16:55 GMT Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 55`

	push.services.mozilla.com/	54.148.69.31	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.148.69.31:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: y1Jxp/7aQjavxdoC74efgg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: v2hBiZLhfq7bR9oc97ITzZtRqNM=`

	www.cognitoforms.com/svc/load-form/new-session/xESsvnXPBkSC3wx7QOE7LQ/1?embedContext=public	23.96.4.241	400 Bad Request	99 B
URL HTTP/2 www.cognitoforms.com/svc/load-form/new-session/xESsvnXPBkSC3wx7QOE7LQ/1?embedContext=public IP 23.96.4.241:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type JSON data\012- , ASCII text, with no line terminators Size 99 B (99 bytes) Hash 8e3ec39d0716d752131dae88b0972c0c 7a0191022f1939dd506ddce63900a250f9ea18eb b5567be4c5affb7095692b81bfae858a2c8db2191cc8f0571bcc199868d79666 HTTP Headers POST /svc/load-form/new-session/xESsvnXPBkSC3wx7QOE7LQ/1?embedContext=public HTTP/1.1 Host: www.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/AtomicTransport/HRDepartmentComplianceForm X-Requested-With: XmlHttpRequest Origin: https://www.cognitoforms.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Content-Length: 0 TE: trailers HTTP/2 400 Bad Request cache-control: no-cache, no-store, must-revalidate pragma: no-cache content-type: application/json; charset=utf-8 expires: -1 vary: Origin access-control-allow-credentials: true strict-transport-security: max-age=35136000; includeSubDomains access-control-allow-origin: https://www.cognitoforms.com x-server-time: 2022-11-29T23:30:05.201Z access-control-expose-headers: X-SessionToken,X-Server-Time p3p: CP="Cognito does not have a P3P policy. Visit https://cognitoforms.com/privacy for details." x-role-instance: Cognito.Services_IN_23 x-request-time: 20ms request-context: appId=cid-v1:bac45fa9-8f8e-4ddb-8e70-d648fe57a27a date: Tue, 29 Nov 2022 23:30:05 GMT content-length: 99 X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ac3edd07bb0a4ebdaae6ec26e91d2079 b6efe3811dfa37cdcde1e9d411c171732ac7e12a c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10000 Expires: Wed, 30 Nov 2022 02:16:46 GMT Date: Tue, 29 Nov 2022 23:30:06 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ac3edd07bb0a4ebdaae6ec26e91d2079 b6efe3811dfa37cdcde1e9d411c171732ac7e12a c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10000 Expires: Wed, 30 Nov 2022 02:16:46 GMT Date: Tue, 29 Nov 2022 23:30:06 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ac3edd07bb0a4ebdaae6ec26e91d2079 b6efe3811dfa37cdcde1e9d411c171732ac7e12a c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10000 Expires: Wed, 30 Nov 2022 02:16:46 GMT Date: Tue, 29 Nov 2022 23:30:06 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ac3edd07bb0a4ebdaae6ec26e91d2079 b6efe3811dfa37cdcde1e9d411c171732ac7e12a c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10000 Expires: Wed, 30 Nov 2022 02:16:46 GMT Date: Tue, 29 Nov 2022 23:30:06 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ac3edd07bb0a4ebdaae6ec26e91d2079 b6efe3811dfa37cdcde1e9d411c171732ac7e12a c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C" Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10000 Expires: Wed, 30 Nov 2022 02:16:46 GMT Date: Tue, 29 Nov 2022 23:30:06 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F265a94d3-cdf4-4682-bcea-7cb1b79bc860.png	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F265a94d3-cdf4-4682-bcea-7cb1b79bc860.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (13195 bytes) Hash 9fb14804c284e300f976848e30396e9c 6004b4b7afd22dded903f026d245bc90a6706767 1cf96b0b6c83f182d018fa4ffb9924038bf282755091e7bacff2a624220260d5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F265a94d3-cdf4-4682-bcea-7cb1b79bc860.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 13195 x-amzn-requestid: 1303b72c-fe18-46a3-b3c1-06f3b8550d90 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYhGvHW6oAMFxgw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867bc4-1b3dbbb005a238117076d1f3;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: pw2Wm8mI8MxRAOVsdvvWLEuxPN5ffcgWBZ_KecuuS5stoTHF4hxECg== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 22:08:33 GMT age: 4893 etag: "6004b4b7afd22dded903f026d245bc90a6706767" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg	34.120.237.76	200 OK	8.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.9 kB (8885 bytes) Hash 8825a2c5c0d98323f489e0b816b7f1d8 05f46985ea4ace57460120876da8e19db08857b3 1d12590a78b32146d6f1d107fb93bdb6cb45228d15babd087c0111495d7138e1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48df8a6f-5803-4ce0-ab84-1efc8ca3e251.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8885 x-amzn-requestid: 67e1ba67-b4fb-42c8-985d-f34164101c7b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYhIGGtloAMFxjw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867bcd-295995bb1123430c55659fe3;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:21 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: vOFoi7vW7NluI5wQB03BGh9efp_jvCoH1sUh4s1ubG_JAC6KcDkHxg== via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 22:15:52 GMT age: 4454 etag: "05f46985ea4ace57460120876da8e19db08857b3" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp	34.120.237.76	200 OK	7.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.7 kB (7658 bytes) Hash 536cd283dee06cf1ceb9e15e4850db92 47aafca572d34f9726a0174ac902178556e581d8 63a5acf87962da6656f828422545af0ccc0888f0a2a15ebd2160ffb3714e6241 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6bad627-8bb4-4de1-a2da-92da8f9ec614.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7658 x-amzn-requestid: e729e5b6-0c92-4ed3-b449-4a30d5bb4b89 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgEyEQSIAMFWsQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a1e-1bba7e9a2d15d66779b1896c;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:10 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: AuN9hTb4YydNZjvpnTGyE313wl-O3F_p4jC_NUSe8kr3RB_4AjOEMw== via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:56:25 GMT age: 5621 etag: "47aafca572d34f9726a0174ac902178556e581d8" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg	34.120.237.76	200 OK	7.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.3 kB (7298 bytes) Hash e00769bd1391b8f4f5b8ab128a825355 e4ddf955e8ac1986045ed55880c43c69e588a021 81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7298 x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYgDcE3poAMFaAA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 8heT2eN5oLbO14R9qLq78Vma_TkteufTyKM5i3K2XoJYXfWNwLMEwQ== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:56:25 GMT age: 5621 etag: "e4ddf955e8ac1986045ed55880c43c69e588a021" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa44c8657-c62c-4dd0-8688-d6b89a767fb4.png	34.120.237.76	200 OK	8.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa44c8657-c62c-4dd0-8688-d6b89a767fb4.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.3 kB (8337 bytes) Hash 2cb669522a324cd5d9ba1b1743138d38 71e4307194ea9fb15d29c8a5e35f9bfd3cb0c6e0 a997731964710b80affb001f7f2e2f05a93550b06c1626279516d78b11332803 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa44c8657-c62c-4dd0-8688-d6b89a767fb4.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8337 x-amzn-requestid: 88e6ec5a-6b04-4787-91e4-02f316d0d6e2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYhgYHViIAMFZrA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867c68-10f0d81a09c0ae930f6be726;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:40:56 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: CQERARyqGc2C8dEihlWw5X9eI6QqdR9Equ683aCy1XkizytQdod9Kw== via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:57:25 GMT age: 5561 etag: "71e4307194ea9fb15d29c8a5e35f9bfd3cb0c6e0" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe74cbd5b-36b7-497f-97d1-4e7073a47375.jpeg	34.120.237.76	200 OK	4.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe74cbd5b-36b7-497f-97d1-4e7073a47375.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.7 kB (4706 bytes) Hash 9b96b63164d7dc37268951510afb359f 5991d60e238558f9fe4e1759fe18dde628cb7be4 cd7a88b3173bae9ad466d41b9ae9a2ed9e18157660697f1f1b070043194c3db4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe74cbd5b-36b7-497f-97d1-4e7073a47375.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4706 x-amzn-requestid: ce0b287a-7242-402b-8261-c519a1310309 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cYhHxETjoAMFcTw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63867bcb-7a69d6d14ad0fd707ede2882;Sampled=0 x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:19 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: odDoJgXLfaw-QRX8PfW3PW2yav7R41pQoyVbEVaDARSYLJPToLsTTA== via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google date: Tue, 29 Nov 2022 21:52:45 GMT age: 5841 etag: "5991d60e238558f9fe4e1759fe18dde628cb7be4" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	static.cognitoforms.com/form/modern/173.95e1454c07dffb43e25d.js	13.107.246.53	200 OK	0 B
URL HTTP/2 static.cognitoforms.com/form/modern/173.95e1454c07dffb43e25d.js IP 13.107.246.53:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers `GET /form/modern/173.95e1454c07dffb43e25d.js HTTP/1.1 Host: static.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` HTTP/2 200 OK cache-control: public, max-age=31536000 content-type: application/x-javascript content-encoding: br content-md5: ulM5+EtcOrhxHO2+eYBnnw== last-modified: Tue, 29 Nov 2022 14:38:42 GMT etag: 0x8DAD2176977C086 x-cache: TCP_HIT server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-ms-request-id: 7e97243e-601e-0057-3d1f-04020e000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref: 0/JWGYwAAAABzWIF6FGhKTIqoDlZ9tVg1QU1TMDRFREdFMTkxMgA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= date: Tue, 29 Nov 2022 23:30:03 GMT X-Firefox-Spdy: h2

	static.cognitoforms.com/form/modern/177.6165d29c0533a4970669.js	13.107.246.53	200 OK	0 B
URL HTTP/2 static.cognitoforms.com/form/modern/177.6165d29c0533a4970669.js IP 13.107.246.53:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers `GET /form/modern/177.6165d29c0533a4970669.js HTTP/1.1 Host: static.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` HTTP/2 200 OK cache-control: public, max-age=31536000 content-type: application/x-javascript content-encoding: br content-md5: nnO7Dp8to9ZF2WHIqXmvEw== last-modified: Wed, 23 Nov 2022 13:38:08 GMT etag: 0x8DACD57F5039CFC x-cache: TCP_HIT server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-ms-request-id: eabc5b8e-801e-004f-6ea3-02dd69000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref: 0/JWGYwAAAAAsnXByo26gT56zOwp+jgFrQU1TMDRFREdFMTkxMgA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= date: Tue, 29 Nov 2022 23:30:03 GMT X-Firefox-Spdy: h2

	static.cognitoforms.com/form/modern/100.534caefe73b9e709c216.js	13.107.246.53	200 OK	0 B
URL HTTP/2 static.cognitoforms.com/form/modern/100.534caefe73b9e709c216.js IP 13.107.246.53:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers `GET /form/modern/100.534caefe73b9e709c216.js HTTP/1.1 Host: static.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` HTTP/2 200 OK cache-control: public, max-age=31536000 content-type: application/x-javascript content-encoding: br content-md5: GXnGuEMlPhEv4nM8PmTfKQ== last-modified: Tue, 29 Nov 2022 14:38:41 GMT etag: 0x8DAD2176956EFE5 x-cache: TCP_HIT server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-ms-request-id: 5531799c-901e-006c-5011-0447aa000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref: 0/JWGYwAAAAC4GSfPXR4oR5KrR4IvtKR6QU1TMDRFREdFMTkxMgA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= date: Tue, 29 Nov 2022 23:30:03 GMT X-Firefox-Spdy: h2

	static.cognitoforms.com/form/modern/152.854b758c937818d8cfa1.js	13.107.246.53	200 OK	0 B
URL HTTP/2 static.cognitoforms.com/form/modern/152.854b758c937818d8cfa1.js IP 13.107.246.53:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers `GET /form/modern/152.854b758c937818d8cfa1.js HTTP/1.1 Host: static.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK cache-control: public, max-age=31536000 content-type: application/x-javascript content-encoding: br content-md5: GuD9TeOfets4sSXld8IIUQ== last-modified: Mon, 28 Nov 2022 22:13:49 GMT etag: 0x8DAD18DD382AFAD x-cache: TCP_HIT server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-ms-request-id: cb3cc17e-801e-005f-08ee-031801000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref: 0/JWGYwAAAACKWdfujVnVQLnCT/PIOZNCQU1TMDRFREdFMTkxMgA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= date: Tue, 29 Nov 2022 23:30:04 GMT X-Firefox-Spdy: h2

	static.cognitoforms.com/form/modern/172.c22be0a45c3e78321854.js	13.107.246.53	200 OK	0 B
URL HTTP/2 static.cognitoforms.com/form/modern/172.c22be0a45c3e78321854.js IP 13.107.246.53:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers `GET /form/modern/172.c22be0a45c3e78321854.js HTTP/1.1 Host: static.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK cache-control: public, max-age=31536000 content-type: application/x-javascript content-encoding: br content-md5: EUdq4SQtn/xvH/x5/50kew== last-modified: Wed, 23 Nov 2022 13:38:08 GMT etag: 0x8DACD57F506CDAB x-cache: TCP_HIT server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-ms-request-id: 50b1fdde-701e-0029-1162-039249000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref: 0/JWGYwAAAAAHhBtmsfsJS62NjYUUl1rDQU1TMDRFREdFMTkxMgA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= date: Tue, 29 Nov 2022 23:30:04 GMT X-Firefox-Spdy: h2

	static.cognitoforms.com/form/modern/174.8f03aa17747eefb09c0f.js	13.107.246.53	200 OK	0 B
URL HTTP/2 static.cognitoforms.com/form/modern/174.8f03aa17747eefb09c0f.js IP 13.107.246.53:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers `GET /form/modern/174.8f03aa17747eefb09c0f.js HTTP/1.1 Host: static.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK cache-control: public, max-age=31536000 content-type: application/x-javascript content-encoding: br content-md5: mPtMwBfX/T0VA5iM+AqtnA== last-modified: Mon, 28 Nov 2022 22:13:49 GMT etag: 0x8DAD18DD38ABCEC x-cache: TCP_HIT server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-ms-request-id: 47a70234-901e-0031-3ee4-034d2e000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref: 0/JWGYwAAAAAgxLInAnQ4Sp1OsMIYyKAnQU1TMDRFREdFMTkxMgA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= date: Tue, 29 Nov 2022 23:30:04 GMT X-Firefox-Spdy: h2

	static.cognitoforms.com/form/modern/149.ddbdadbe527bd4354d0a.js	13.107.246.53	200 OK	0 B
URL HTTP/2 static.cognitoforms.com/form/modern/149.ddbdadbe527bd4354d0a.js IP 13.107.246.53:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash HTTP Headers `GET /form/modern/149.ddbdadbe527bd4354d0a.js HTTP/1.1 Host: static.cognitoforms.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.cognitoforms.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site TE: trailers` HTTP/2 200 OK cache-control: public, max-age=31536000 content-type: application/x-javascript content-encoding: br content-md5: BOTxl0W0HWw2iLw6syBCyA== last-modified: Tue, 29 Nov 2022 14:38:42 GMT etag: 0x8DAD217696FDA24 x-cache: TCP_HIT server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0 x-ms-request-id: 0ad2393c-c01e-0061-092e-048f7e000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * x-azure-ref: 0/ZWGYwAAAACFZm4TStJcSrNZdwRYt3zTQU1TMDRFREdFMTkxMgA3NmYzYzE3Ny1kZGYzLTQ2MDktODNmYi00ZjQ2YTY1Y2JiZWY= date: Tue, 29 Nov 2022 23:30:04 GMT X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (10)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations