| login.giuseppedibrothers.com/WUCnhwcz |  185.142.238.105 | 302 Found | 68 B |
URL HTTP/1.1login.giuseppedibrothers.com/WUCnhwcz IP185.142.238.105:0
File typeHTML document, ASCII text Hashcc452931fd676c9985f9429c2b68913c 8d695dbe2c9f34d5376351563ef625fe9968a28a 106f4f93237e0d0b3d6ed7fc253794836b3137f1e48bcc05429589fc506da8ff
GET /WUCnhwcz HTTP/1.1
Host: login.giuseppedibrothers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Location: https://login.giuseppedibrothers.com/WUCnhwcz
Date: Mon, 28 Nov 2022 03:50:15 GMT
Content-Length: 68
|
|
| r3.o.lencr.org/ |  23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash150792cfc458af013998f4ef6bdf5f74 d5179b2dcb11d06f82606bf6eb6648319998d63e 72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11285
Expires: Mon, 28 Nov 2022 06:58:20 GMT
Date: Mon, 28 Nov 2022 03:50:15 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash64b2a23eab6e5ae8c010ec7242be930c 0673e4385ba01a5a245711bab96cafc34f765793 64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3090
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:50:15 GMT
Last-Modified: Mon, 28 Nov 2022 02:58:45 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash3b56944f0e5716fd4fad2ec18994d4be 61cafa4de31ba960d1145ec37272f6f6b6944e0c 4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9984
Expires: Mon, 28 Nov 2022 06:36:39 GMT
Date: Mon, 28 Nov 2022 03:50:15 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashd130218d0e2841f39c99610fe1a2ab90 29fbe1e177ee55c7a61ae0a206afff271cf5f945 6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 03:17:45 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1950
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: NQSRSX6hOeYC/9zY+091OWjsoRYGlE4cktqUBgmLNqGICNtbJV80jSfaJC5lb6vYGVfRond5vCI=
x-amz-request-id: 59CSQSPBTBZ0PSDM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 03:41:54 GMT
age: 501
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 03:50:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashcc0055c1ac714f1756039be5949207ff 7f86b6a3e9bbce0e3dfe557f7b030e9d5184efa4 fba7953f6cfb0fac6980c3a00bc9e7b9884efd54a33fed7aa1dcf641ce11377f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FBA7953F6CFB0FAC6980C3A00BC9E7B9884EFD54A33FED7AA1DCF641CE11377F"
Last-Modified: Sun, 27 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21541
Expires: Mon, 28 Nov 2022 09:49:17 GMT
Date: Mon, 28 Nov 2022 03:50:16 GMT
Connection: keep-alive
|
|
| login.giuseppedibrothers.com/WUCnhwcz | 185.142.238.105 | 302 Found | 0 B |
URL HTTP/1.1login.giuseppedibrothers.com/WUCnhwcz IP185.142.238.105:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /WUCnhwcz HTTP/1.1
Host: login.giuseppedibrothers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Connection: close
Content-Type: text/html
Location: https://microsoftonline.development-to.online/login/aHR0cHM6Ly9sb2dpbi5naXVzZXBwZWRpYnJvdGhlcnMuY29tL1dVQ25od2N6
Set-Cookie: RUSSIA=true; Path=/; Expires=Mon, 28 Nov 2022 04:50:16 GMT; Max-Age=3600
USA=true; Path=/; Expires=Mon, 28 Nov 2022 04:50:16 GMT; Max-Age=3600
Transfer-Encoding: chunked
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 03:08:55 GMT
cache-control: public,max-age=3600
age: 2481
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 344 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash85b83b2e200eb89c117e1dc68cd074ec bfe82ecc97f015b26334e26374e5206bf79da8c0 7279f552a1ba2162128f43a74f34b5d4eeac62ab1fcd723c6842b2300c4c6802
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "7279F552A1BA2162128F43A74F34B5D4EEAC62AB1FCD723C6842B2300C4C6802"
Last-Modified: Sun, 27 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5909
Expires: Mon, 28 Nov 2022 05:28:45 GMT
Date: Mon, 28 Nov 2022 03:50:16 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hasha6fee11dfe1b88cd768a0ca3e2bd0c89 59cec9a44a4a92467678afe65f347f68641a2174 50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5391
Cache-Control: max-age=110787
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 03:50:16 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:36:43 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
|
|
| microsoftonline.development-to.online/cdn-cgi/styles/challenges.css |  104.21.92.128 | 200 OK | 2.6 kB |
URL HTTP/2microsoftonline.development-to.online/cdn-cgi/styles/challenges.css IP104.21.92.128:0
Hash2080f6c1c5995ef744362ba648f04a8c 41e33c8ce9c082bd9945f612eb1cb507a7ba5c8b a8496326269f30076b3683f0ef278e989c6d80cda9b8aa1f587d0a48a518cf78
GET /cdn-cgi/styles/challenges.css HTTP/1.1
Host: microsoftonline.development-to.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://microsoftonline.development-to.online/login/aHR0cHM6Ly9sb2dpbi5naXVzZXBwZWRpYnJvdGhlcnMuY29tL1dVQ25od2N6
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 03:50:16 GMT
content-type: text/css
last-modified: Tue, 22 Nov 2022 13:34:50 GMT
etag: W/"637ccffa-1896"
server: cloudflare
cf-ray: 771023727b8eb50b-OSL
x-frame-options: DENY
x-content-type-options: nosniff
vary: Accept-Encoding
expires: Mon, 28 Nov 2022 05:50:16 GMT
cache-control: max-age=7200, public
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| microsoftonline.development-to.online/favicon.ico | 104.21.92.128 | 200 OK | 0 B |
URL HTTP/2microsoftonline.development-to.online/favicon.ico IP104.21.92.128:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: microsoftonline.development-to.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://microsoftonline.development-to.online/login/aHR0cHM6Ly9sb2dpbi5naXVzZXBwZWRpYnJvdGhlcnMuY29tL1dVQ25od2N6
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 03:50:16 GMT
content-type: image/vnd.microsoft.icon
content-length: 0
last-modified: Tue, 22 Nov 2022 11:26:50 GMT
etag: "0-5ee0d72bafe3f"
cache-control: max-age=14400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eYY746viLFX8UGbx8rC0nEisfaLB9tc3Wg8tmg7JTNMChHS0vab%2FwdvqMqs%2FF9mw2LWVB8kb9fHIVph%2FY07S%2FrbSiLrT50KqJaVpYNIZ5LUiRSWAMWui%2B31iAPjNSqHo6oqjsN7kJbkuyBbGJq7IUwKl%2F1GYmjc7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771023727b8fb50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| e1.o.lencr.org/ | 23.36.77.32 | 200 OK | 344 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash85b83b2e200eb89c117e1dc68cd074ec bfe82ecc97f015b26334e26374e5206bf79da8c0 7279f552a1ba2162128f43a74f34b5d4eeac62ab1fcd723c6842b2300c4c6802
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "7279F552A1BA2162128F43A74F34B5D4EEAC62AB1FCD723C6842B2300C4C6802"
Last-Modified: Sun, 27 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5909
Expires: Mon, 28 Nov 2022 05:28:45 GMT
Date: Mon, 28 Nov 2022 03:50:16 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 35.166.172.24 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP35.166.172.24:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BxOFiGYNX8BdcO8BHO0R+g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2YH525b4qY7k1kntYUJ17iF42F8=
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash8bb181e3f5ca898c6e31a8efc2e28291 eda3a91f8e2cbc5467da08ad85e6f6a30702b66c 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4733
Expires: Mon, 28 Nov 2022 05:09:11 GMT
Date: Mon, 28 Nov 2022 03:50:18 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash8bb181e3f5ca898c6e31a8efc2e28291 eda3a91f8e2cbc5467da08ad85e6f6a30702b66c 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4733
Expires: Mon, 28 Nov 2022 05:09:11 GMT
Date: Mon, 28 Nov 2022 03:50:18 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash8bb181e3f5ca898c6e31a8efc2e28291 eda3a91f8e2cbc5467da08ad85e6f6a30702b66c 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4733
Expires: Mon, 28 Nov 2022 05:09:11 GMT
Date: Mon, 28 Nov 2022 03:50:18 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg | 34.120.237.76 | 200 OK | 9.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1f434933b5bd6377d299ada22d1ae7ef 075531f525e625b117b2497f31139c9824d0e9c5 b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 20912
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash15bd53848c7082464273007e010c54e0 9a3ca698ca1aeae695923277ed2244465e01a1ea 36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _jTN1lFL0_PS-9DYgE6O2V6s6AYnlGJs0xCEHn761Mxq_asytlaRoQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:40 GMT
age: 21518
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash005e5ba3c9588cf389a58195001b64e3 238a7439d887fb3aa7f1302eeb43fce62f08441a d75dd5b6f57d9c9290725c5be76cc7d7a39682ca569bea18eceb9bdc13d444f9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd18bfa3f-3214-4f84-8a7e-d219428f5242.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10813
x-amzn-requestid: 5a3c9584-1389-45ac-968d-0a2301f82eda
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KG00oAMFpig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-6ffc3ff67f7f7e75399834e8;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3ggibSv4guzAQjW77yMg7HTp5JCBi1B9dxXi-Zy_-Vw0b6lP1PAGyQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:09 GMT
age: 21549
etag: "238a7439d887fb3aa7f1302eeb43fce62f08441a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg | 34.120.237.76 | 200 OK | 6.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb24e349e9d22fb30fbc80497b512cead c033d1ecdb9e7640f3df044e39053bed8292fcbc 2d77e3c39c60a3563613b1ba97ec0b1a256f41ad09936ba49b23d8cf22f8a7a8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd6c93814-fbc2-4f60-a417-7cb6ff99a2ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6263
x-amzn-requestid: 5c3da401-eb9e-4904-a7e9-5e74648b8b77
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KFfWoAMF99A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-3110d65625e883502a5078a9;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: X6t2ucU4VTXi5XIRLVpmTMxEW3MtinOQs3mIHIhgeW6aK6kN53dWEQ==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:51:18 GMT
age: 21540
etag: "c033d1ecdb9e7640f3df044e39053bed8292fcbc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4329da24-0de7-409f-87fa-68fd5668aa29.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4329da24-0de7-409f-87fa-68fd5668aa29.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash30820a2f1a026d67a31e7598773f9a04 796020fb42c93fde996945b41173e5191d98fc90 5da3e0535e72165a1aee6a7ac4ab290ac1ee77878019e8123ed5567ba6768732
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4329da24-0de7-409f-87fa-68fd5668aa29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11082
x-amzn-requestid: f7a38cfd-874a-47fd-97cd-234459ce7868
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR8IxEKzIAMFiYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383da37-10cbaa3f0be7f1112fd4192e;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:44:23 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: opDWv4_zUdDXxOQ9JPkV2WsU4vtQP-ua-yCWx2ESjikq71zG84yibQ==
via: 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:09:36 GMT
age: 20442
etag: "796020fb42c93fde996945b41173e5191d98fc90"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg | 34.120.237.76 | 200 OK | 6.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash78b1389f425425d0450c94d900404dc4 53b12a8702f7c5b7cc697e2a24da824d9434be65 0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:46 GMT
age: 20912
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| login.giuseppedibrothers.com/WUCnhwcz | 185.142.238.105 | 302 Found | 0 B |
URL HTTP/1.1login.giuseppedibrothers.com/WUCnhwcz IP185.142.238.105:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /WUCnhwcz HTTP/1.1
Host: login.giuseppedibrothers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: RUSSIA=true; USA=true
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Connection: close
Content-Type: text/html
Location: https://microsoftonline.development-to.online/login/aHR0cHM6Ly9sb2dpbi5naXVzZXBwZWRpYnJvdGhlcnMuY29tL1dVQ25od2N6
Set-Cookie: RUSSIA=true; Path=/; Expires=Mon, 28 Nov 2022 04:50:21 GMT; Max-Age=3600
USAt=true; Path=/; Expires=Mon, 28 Nov 2022 04:50:21 GMT; Max-Age=3600
Transfer-Encoding: chunked
|
|
| login.giuseppedibrothers.com/WUCnhwcz | 185.142.238.105 | 302 Found | 445 B |
URL HTTP/1.1login.giuseppedibrothers.com/WUCnhwcz IP185.142.238.105:0
File typePNG image data, 19 x 2, 8-bit/color RGB, non-interlaced\012- data Hash5ed07950e229a35538d8539f9696321d 9c12f6140aff736cdc2a3bb7243c0656799c4447 d5621861ad24bfc81dc2aaff9c5341e74ed5b96a47ad2432e87b5be37c84352c
GET /WUCnhwcz HTTP/1.1
Host: login.giuseppedibrothers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: RUSSIA=true; USA=true; USAt=true
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Connection: close
Content-Type: text/html
Location: https://login.giuseppedibrothers.com/
Set-Cookie: LEGf=989e10e11e3eb2438b973b5a1f3a49a3ae8d3992965cd8b6d889c109f3b52d74; Path=/; Domain=giuseppedibrothers.com; Expires=Mon, 28 Nov 2022 04:50:21 GMT; Max-Age=3600
USAt=true; Path=/; Domain=giuseppedibrothers.com; Expires=Mon, 28 Nov 2022 04:50:21 GMT; Max-Age=3600
RUSSIA=true; Path=/; Domain=giuseppedibrothers.com; Expires=Mon, 28 Nov 2022 04:50:21 GMT; Max-Age=3600
Transfer-Encoding: chunked
|
|
| login.giuseppedibrothers.com/ | 185.142.238.105 | 302 Found | 158 B |
URL HTTP/1.1login.giuseppedibrothers.com/ IP185.142.238.105:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hashb8685cea26ba8c9c661dcff2b7d11b44 6bd2fdb4fbebb4c84b89a45302748e18a3647e90 cec488b01179a9085cb2cbce4d86995641bf0ff277f903ca8c732f9b2daf3237
GET / HTTP/1.1
Host: login.giuseppedibrothers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: RUSSIA=true; USA=true; USAt=true; LEGf=989e10e11e3eb2438b973b5a1f3a49a3ae8d3992965cd8b6d889c109f3b52d74; USAt=true; RUSSIA=true
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, no-cache
Connection: close
Content-Type: text/html; charset=utf-8
Date: Mon, 28 Nov 2022 03:50:21 GMT
Expires: -1
Location: https://www.giuseppedibrothers.com/login
P3p: CP="DSP CUR OTPi IND OTRi ONL FIN"
Pragma: no-cache
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: fpc=Ai0FjL9qq5xHjwse-Cucieo; Path=/; Expires=Wed, 28 Dec 2022 03:50:21 GMT; HttpOnly; Secure; SameSite=None
esctx=AQABAAAAAAD--DLA3VO7QrddgJg7WevrMRHJtOcYZhMSO-eHNE4MbuEqflzovXTynSh-h3xI5wAxrQFmZnT7-Z97ULGCegmWJsB7hKWSKjcljpGwx_tiPNMWwQGbZ3ZymJuOqjNAgD-CMGV2Z2zaNS1nPeDUowz7ZXdObWmLcPJtYFwd4QIAJ53160GOg5PI4391QgdWmtLy24BmGht0ceZBDH-TNzGfiUKV5EsjqFaGrUNlV8-sMZoghv3Epv_REHwMpiqGOlogAA; Path=/; Domain=login.giuseppedibrothers.com; HttpOnly; Secure; SameSite=None
x-ms-gateway-slice=estsfd; Path=/; HttpOnly; Secure; SameSite=None
stsservicecookie=estsfd; Path=/; HttpOnly; Secure; SameSite=None
Transfer-Encoding: chunked
Vary: Accept-Encoding
X-Ms-Ests-Server: 2.1.14059.16 - NEULR2 ProdSlices
X-Ms-Request-Id: 3d37300c-23dc-4727-b98a-fc4919599e00
|
|
| www.giuseppedibrothers.com/login | 185.142.238.105 | 302 Found | 0 B |
URL HTTP/1.1www.giuseppedibrothers.com/login IP185.142.238.105:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /login HTTP/1.1
Host: www.giuseppedibrothers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: LEGf=989e10e11e3eb2438b973b5a1f3a49a3ae8d3992965cd8b6d889c109f3b52d74; USAt=true; RUSSIA=true
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Connection: close
Content-Encoding: gzip
Content-Type: text/html; charset=utf-8
Date: Mon, 28 Nov 2022 03:50:22 GMT
Location: https://login.giuseppedibrothers.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638052042221501295.NmQ0MWJmZGYtYzUwYy00ODAyLWJhZjAtYjExN2VmN2QyNmM1MDgyYTAzODAtZTg4Yy00MTFmLWI0MDgtOGE1NGUwNmZjOTU0&ui_locales=en-US&mkt=en-US&state=w1FbabCqA5ruhjk_mAkp0ceFcM3n2_ZnnsjJUAa4cCKpy7QFVC3_yBkj0kaJPuv09Mk8HzEJNmC05KCvDBcg_cXdHIVVJpAQ8ft74Z-iyVsL0vf4bnFYgdK_GbJ6JSNHXq0pWViw7g5nZOJecBFMCYQrrcuDuPt3zmGcEF3KHWbyQIZvTrhVjbohGb5dx5pq0T5ZMnLKjcjUAMkAt_wSk1iJJ9zcVF5zx31dNLX2YBb6q-tKMFxeaeDpQ80xVFMqoa0X8xKmPM6kjq_gyBxdUA&x-client-SKU=ID_NETSTANDARD2_0&x-client-ver=6.16.0.0
Referrer-Policy: strict-origin-when-cross-origin
Request-Context: appId=
Set-Cookie: OH.DCAffinity=OH-weu; Path=/; Expires=Mon, 28 Nov 2022 11:50:22 GMT; HttpOnly; Secure; SameSite=None
OH.FLID=43e1fb88-00c9-46be-bc99-b7613ed7fe9a; Path=/; Expires=Tue, 28 Nov 2023 03:50:22 GMT; HttpOnly; Secure; SameSite=None
OH.SID=; Path=/; Expires=Thu, 01 Jan 1970 00:00:00 GMT
.AspNetCore.OpenIdConnect.Nonce.GtknTkKRqBZCVg510PlQCto4RWGyIBwrO-l32ThsCf3VYzY4EaGmkRM1a1C_3q5L5nPVZzECtFXhWUiqy02uapMsMKdI_fmH0NzOPuwnmIKxNy_jkKrRmlQddJh-aYc_dYulIpTfT3P-Bg26VQgX2GX8D6t9OvkaBvS4nHYsOSXIwUWwbOJVZUveSkU7NBz5AtpgleqmxHb-L-G8RTu3uuWBjBVCOvDxFihBOH2N9-wxL6dx-GyIh8nYl5pSSxvz=N; Path=/; Expires=Mon, 28 Nov 2022 04:05:22 GMT; HttpOnly; Secure; SameSite=None
.AspNetCore.Correlation.OpenIdConnectV2.t7-m8nkAqaXxdV3tIiB-KgToKWkxBIdFe-BqKE0Cgrc=N; Path=/; Expires=Mon, 28 Nov 2022 04:05:22 GMT; HttpOnly; Secure; SameSite=None
MUID=053F592D5F9B6CD23A2C4B475E106D8F; Path=/; Domain=giuseppedibrothers.com; Expires=Sat, 23 Dec 2023 03:50:22 GMT; Secure
Transfer-Encoding: chunked
Vary: Accept-Encoding
X-Cache: CONFIG_NOCACHE
X-Msedge-Ref: Ref A: 340B9282DFA34D27B3DABA9B7B61D642 Ref B: AMS231032602035 Ref C: 2022-11-28T03:50:22Z
X-Ua-Compatible: IE=edge,chrome=1
|
|
| aadcdn.msauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico | 13.107.246.53 | 200 OK | 80 kB |
URL HTTP/2aadcdn.msauth.net/shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico IP13.107.246.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash601d61c4e6bd58d53c633a986112a4ff 2302154782e855d1710037ca8fc4b301422ba332 672ffaa2883d011e8ce9ff3a60b8c4f3db8f9b82230bf02c8b925c05fca8598d
GET /shared/1.0/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.giuseppedibrothers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 17174
content-type: image/x-icon
content-md5: EuPayFgGHQiAI7K9SOL6lg==
last-modified: Sun, 18 Oct 2020 03:02:03 GMT
etag: 0x8D8731230C851A6
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 65361e6a-e01e-001d-1e9f-02584a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 0/y+EYwAAAAD3OGYhTaTsQ4QeiUbcGMjrQU1TMDRFREdFMTkyMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Mon, 28 Nov 2022 03:50:22 GMT
X-Firefox-Spdy: h2
|
|
| login.giuseppedibrothers.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638052042221501295.NmQ0MWJmZGYtYzUwYy00ODAyLWJhZjAtYjExN2VmN2QyNmM1MDgyYTAzODAtZTg4Yy00MTFmLWI0MDgtOGE1NGUwNmZjOTU0&ui_locales=en-US&mkt=en-US&state=w1FbabCqA5ruhjk_mAkp0ceFcM3n2_ZnnsjJUAa4cCKpy7QFVC3_yBkj0kaJPuv09Mk8HzEJNmC05KCvDBcg_cXdHIVVJpAQ8ft74Z-iyVsL0vf4bnFYgdK_GbJ6JSNHXq0pWViw7g5nZOJecBFMCYQrrcuDuPt3zmGcEF3KHWbyQIZvTrhVjbohGb5dx5pq0T5ZMnLKjcjUAMkAt_wSk1iJJ9zcVF5zx31dNLX2YBb6q-tKMFxeaeDpQ80xVFMqoa0X8xKmPM6kjq_gyBxdUA&x-client-SKU=ID_NETSTANDARD2_0&x-client-ver=6.16.0.0 | 185.142.238.105 | 200 OK | 229 kB |
URL HTTP/1.1login.giuseppedibrothers.com/common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638052042221501295.NmQ0MWJmZGYtYzUwYy00ODAyLWJhZjAtYjExN2VmN2QyNmM1MDgyYTAzODAtZTg4Yy00MTFmLWI0MDgtOGE1NGUwNmZjOTU0&ui_locales=en-US&mkt=en-US&state=w1FbabCqA5ruhjk_mAkp0ceFcM3n2_ZnnsjJUAa4cCKpy7QFVC3_yBkj0kaJPuv09Mk8HzEJNmC05KCvDBcg_cXdHIVVJpAQ8ft74Z-iyVsL0vf4bnFYgdK_GbJ6JSNHXq0pWViw7g5nZOJecBFMCYQrrcuDuPt3zmGcEF3KHWbyQIZvTrhVjbohGb5dx5pq0T5ZMnLKjcjUAMkAt_wSk1iJJ9zcVF5zx31dNLX2YBb6q-tKMFxeaeDpQ80xVFMqoa0X8xKmPM6kjq_gyBxdUA&x-client-SKU=ID_NETSTANDARD2_0&x-client-ver=6.16.0.0 IP185.142.238.105:0
Size229 kB (228837 bytes) Hash79ed0c7101bcdb9a586f8e0ed5b51a2b e18e544c4a25fbb065a2277af88d8634170eee0a 00011b57c45a3df6550b96aad2cfe4d5bd77eca34a81cef54cd6ed5609b7eb06
GET /common/oauth2/v2.0/authorize?client_id=4765445b-32c6-49b0-83e6-1d93765276ca&redirect_uri=https%3A%2F%2Fwww.office.com%2Flandingv2&response_type=code%20id_token&scope=openid%20profile%20https%3A%2F%2Fwww.office.com%2Fv2%2FOfficeHome.All&response_mode=form_post&nonce=638052042221501295.NmQ0MWJmZGYtYzUwYy00ODAyLWJhZjAtYjExN2VmN2QyNmM1MDgyYTAzODAtZTg4Yy00MTFmLWI0MDgtOGE1NGUwNmZjOTU0&ui_locales=en-US&mkt=en-US&state=w1FbabCqA5ruhjk_mAkp0ceFcM3n2_ZnnsjJUAa4cCKpy7QFVC3_yBkj0kaJPuv09Mk8HzEJNmC05KCvDBcg_cXdHIVVJpAQ8ft74Z-iyVsL0vf4bnFYgdK_GbJ6JSNHXq0pWViw7g5nZOJecBFMCYQrrcuDuPt3zmGcEF3KHWbyQIZvTrhVjbohGb5dx5pq0T5ZMnLKjcjUAMkAt_wSk1iJJ9zcVF5zx31dNLX2YBb6q-tKMFxeaeDpQ80xVFMqoa0X8xKmPM6kjq_gyBxdUA&x-client-SKU=ID_NETSTANDARD2_0&x-client-ver=6.16.0.0 HTTP/1.1
Host: login.giuseppedibrothers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: RUSSIA=true; USA=true; USAt=true; LEGf=989e10e11e3eb2438b973b5a1f3a49a3ae8d3992965cd8b6d889c109f3b52d74; USAt=true; RUSSIA=true; fpc=Ai0FjL9qq5xHjwse-Cucieo; esctx=AQABAAAAAAD--DLA3VO7QrddgJg7WevrMRHJtOcYZhMSO-eHNE4MbuEqflzovXTynSh-h3xI5wAxrQFmZnT7-Z97ULGCegmWJsB7hKWSKjcljpGwx_tiPNMWwQGbZ3ZymJuOqjNAgD-CMGV2Z2zaNS1nPeDUowz7ZXdObWmLcPJtYFwd4QIAJ53160GOg5PI4391QgdWmtLy24BmGht0ceZBDH-TNzGfiUKV5EsjqFaGrUNlV8-sMZoghv3Epv_REHwMpiqGOlogAA; x-ms-gateway-slice=estsfd; stsservicecookie=estsfd; MUID=053F592D5F9B6CD23A2C4B475E106D8F
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-store, no-cache
Connection: close
Content-Type: text/html; charset=utf-8
Date: Mon, 28 Nov 2022 03:50:21 GMT
Expires: -1
Link: <https://aadcdn.msauth.net>; rel=preconnect; crossorigin, <https://aadcdn.msauth.net>; rel=dns-prefetch, <https://aadcdn.msftauth.net>; rel=dns-prefetch
P3p: CP="DSP CUR OTPi IND OTRi ONL FIN"
Pragma: no-cache
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: buid=0.AS8AMe_N-B6jSkuT5F9XHpElWltEZUfGMrBJg-Ydk3ZSdsoBAAA.AQABAAEAAAD--DLA3VO7QrddgJg7WevrN18kF74Ed0npL5jxtXFA5-R-A5iRl0QrmDeOlClIgI62PcAkK-yuvpZSiYqANcVn22EJJBVdBJXHIDOWLXEezduzvtzVPSWDquNDW7zaclcgAA; Path=/; Expires=Wed, 28 Dec 2022 03:50:22 GMT; HttpOnly; Secure; SameSite=None
fpc=Ai0FjL9qq5xHjwse-Cucieq8Ae7AAQAAAP4mFtsOAAAA; Path=/; Expires=Wed, 28 Dec 2022 03:50:22 GMT; HttpOnly; Secure; SameSite=None
x-ms-gateway-slice=estsfd; Path=/; HttpOnly; Secure; SameSite=None
Transfer-Encoding: chunked
Vary: Accept-Encoding
X-Dns-Prefetch-Control: on
X-Ms-Clitelem: 1,0,0,,
X-Ms-Ests-Server: 2.1.14059.16 - WEULR2 ProdSlices
X-Ms-Request-Id: 779d1758-8b0f-415f-a027-5029c0b7a800
|
|
| aadcdn.msauth.net/shared/1.0/content/js/ConvergedLogin_PCore_pcipSPYgxw6k0H7PwESK3w2.js | 13.107.246.53 | 200 OK | 113 kB |
URL HTTP/2aadcdn.msauth.net/shared/1.0/content/js/ConvergedLogin_PCore_pcipSPYgxw6k0H7PwESK3w2.js IP13.107.246.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Size113 kB (112903 bytes) Hash7c62de1c1adb0cf7d2d8a24afc7641bb ab17dc97e0ee2f63de8568c197b805d143b111c8 98ad9b7569ad30504e16bb99aed1e905465bfe9810cfecff8054a4608cd2fa6e
GET /shared/1.0/content/js/ConvergedLogin_PCore_pcipSPYgxw6k0H7PwESK3w2.js HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.giuseppedibrothers.com/
Origin: https://login.giuseppedibrothers.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 111991
content-type: application/x-javascript
content-encoding: gzip
content-md5: GWIREUt3H0wPJYOZTfRfQg==
last-modified: Wed, 12 Oct 2022 00:12:26 GMT
etag: 0x8DAABE671C38EA0
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: cc822d71-101e-0062-2886-012355000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 0/y+EYwAAAAAiN/aTfyEiSqnI5veOJnrXQU1TMDRFREdFMTgyMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Mon, 28 Nov 2022 03:50:22 GMT
X-Firefox-Spdy: h2
|
|
| aadcdn.msauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_itjeuokkx5s5hz5xm6syrg2.js | 13.107.246.53 | 200 OK | 14 kB |
URL HTTP/2aadcdn.msauth.net/ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_itjeuokkx5s5hz5xm6syrg2.js IP13.107.246.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
File typeUnicode text, UTF-8 text, with very long lines (32022) Hashfe0b8c7d4fcee6f95c820abec986ee2c 0ff57bf0689128477a3657b974d8ebec8a7b6109 7271a4bef8372fcbc2c0634d4a3ec49c5cec1be47f35350d00e49dc4d9d0a1a2
GET /ests/2.1/content/cdnbundles/ux.converged.login.strings-en.min_itjeuokkx5s5hz5xm6syrg2.js HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.giuseppedibrothers.com/
X-Moz: prefetch
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 14015
content-type: application/x-javascript
content-encoding: gzip
content-md5: /guMfU/O5vlcggq+yYbuLA==
last-modified: Wed, 12 Oct 2022 19:43:39 GMT
etag: 0x8DAAC8A0FCEC697
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 195f6e08-901e-007a-1194-02cb66000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 0/y+EYwAAAAB5ga+IxEqbSKUhH1BvCniOQU1TMDRFREdFMTkyMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Mon, 28 Nov 2022 03:50:22 GMT
X-Firefox-Spdy: h2
|
|
| aadcdn.msauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pfetchsessionsprogress_bc2482665b7aae7b068e.js | 13.107.246.53 | 200 OK | 5.9 kB |
URL HTTP/2aadcdn.msauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pfetchsessionsprogress_bc2482665b7aae7b068e.js IP13.107.246.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash0f44bbbe34e6cc6305949100801decd1 8cdf2a3b8045a5a8b620300469daf546a62ea5e7 24876e38f2aaa699cff2d88f68bb7a215d765d2e8ded91df59fe053c10938320
GET /shared/1.0/content/js/asyncchunk/convergedlogin_pfetchsessionsprogress_bc2482665b7aae7b068e.js HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.giuseppedibrothers.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 5531
content-type: application/x-javascript
content-encoding: gzip
content-md5: 4Xt/SF4lC+Zsg96sCtMl3A==
last-modified: Wed, 07 Sep 2022 21:51:35 GMT
etag: 0x8DA911B2266454B
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9cd2a4ab-401e-0007-36a5-02e67d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 0/y+EYwAAAAAbB63RQF+zRp4Ozz4G8nflQU1TMDRFREdFMTkyMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Mon, 28 Nov 2022 03:50:22 GMT
X-Firefox-Spdy: h2
|
|
| aadcdn.msauth.net/shared/1.0/content/images/marching_ants_white_166de53471265253ab3a456defe6da23.gif | 13.107.246.53 | 200 OK | 2.7 kB |
URL HTTP/2aadcdn.msauth.net/shared/1.0/content/images/marching_ants_white_166de53471265253ab3a456defe6da23.gif IP13.107.246.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
File typeGIF image data, version 89a, 352 x 3\012- data Hash166de53471265253ab3a456defe6da23 17c6df4d7ccf1fa2c9efd716fbae0fc2c71c8d6d a46201581a7c7c667fd42787cd1e9adf2f6bf809efb7596e61a03e8dba9ada13
GET /shared/1.0/content/images/marching_ants_white_166de53471265253ab3a456defe6da23.gif HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.giuseppedibrothers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 2672
content-type: image/gif
content-md5: Fm3lNHEmUlOrOkVt7+baIw==
last-modified: Fri, 17 Jan 2020 19:28:37 GMT
etag: 0x8D79B83739984DD
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 50084b3d-501e-004a-5359-02ea77000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 0/y+EYwAAAAAjAbSM+hGDSapyNkh8RG37QU1TMDRFREdFMTkyMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Mon, 28 Nov 2022 03:50:22 GMT
X-Firefox-Spdy: h2
|
|
| aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css | 13.107.246.53 | 200 OK | 20 kB |
URL HTTP/2aadcdn.msauth.net/ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css IP13.107.246.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
File typeASCII text, with very long lines (61177) Hashf4adbf9c60a3ef95809a6008f6764d08 b55c98c403b111b494c1ece263dc06eabc0ab075 6a59a4f890ea26ef050b83d0722aafc3ad70ddbce706806381c4f159a5db7497
GET /ests/2.1/content/cdnbundles/converged.v2.login.min_8owwt4u-33ps0wawi7tmow2.css HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.giuseppedibrothers.com/
X-Moz: prefetch
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 19970
content-type: text/css
content-encoding: gzip
content-md5: 9K2/nGCj75WAmmAI9nZNCA==
last-modified: Thu, 04 Aug 2022 19:37:00 GMT
etag: 0x8DA7650B37ACC3D
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 500b0d90-501e-004a-7a5a-02ea77000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 0/y+EYwAAAAAby8P6mbJdRKgiFSkYG2LcQU1TMDRFREdFMTkyMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Mon, 28 Nov 2022 03:50:22 GMT
X-Firefox-Spdy: h2
|
|
| aadcdn.msauth.net/shared/1.0/content/images/marching_ants_b540a8e518037192e32c4fe58bf2dbab.gif | 13.107.246.53 | 200 OK | 3.6 kB |
URL HTTP/2aadcdn.msauth.net/shared/1.0/content/images/marching_ants_b540a8e518037192e32c4fe58bf2dbab.gif IP13.107.246.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
File typeGIF image data, version 89a, 352 x 3\012- data Hashb540a8e518037192e32c4fe58bf2dbab 3047c1db97b86f6981e0ad2f96af40cdf43511af 8737d721808655f37b333f08a90185699e7e8b9bdaaa15cdb63c8448b426f95d
GET /shared/1.0/content/images/marching_ants_b540a8e518037192e32c4fe58bf2dbab.gif HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.giuseppedibrothers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 3620
content-type: image/gif
content-md5: tUCo5RgDcZLjLE/li/Lbqw==
last-modified: Fri, 17 Jan 2020 19:28:38 GMT
etag: 0x8D79B8373B17F89
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: b32da8f8-301e-0018-67a8-02df40000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 0/y+EYwAAAAAGalOwhpuZR4uQQELJuC7xQU1TMDRFREdFMTkyMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Mon, 28 Nov 2022 03:50:22 GMT
X-Firefox-Spdy: h2
|
|
| aadcdn.msauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_8dc1586f19519d6b618f.js | 13.107.246.53 | 200 OK | 32 kB |
URL HTTP/2aadcdn.msauth.net/shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_8dc1586f19519d6b618f.js IP13.107.246.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
File typeASCII text, with very long lines (33036) Hashc5832c6b7f7c0653bba1058d165855a6 76aa9a35af65314340a4626c6c59007abbf4a825 e57c3e8430a632f0eed33f4fff534698bab803b69fabaa095f585ae490c18ec1
GET /shared/1.0/content/js/asyncchunk/convergedlogin_pcustomizationloader_8dc1586f19519d6b618f.js HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.giuseppedibrothers.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 32180
content-type: application/x-javascript
content-encoding: gzip
content-md5: xYMsa398BlO7oQWNFlhVpg==
last-modified: Wed, 07 Sep 2022 21:51:35 GMT
etag: 0x8DA911B224BBA9B
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: dd0b854a-d01e-0006-589e-02cd7f000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 0/y+EYwAAAACGGkv2eKYiSrkhk0cwLpawQU1TMDRFREdFMTkyMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Mon, 28 Nov 2022 03:50:22 GMT
X-Firefox-Spdy: h2
|
|
| aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg | 13.107.246.53 | 200 OK | 673 B |
URL HTTP/2aadcdn.msauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg IP13.107.246.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1864), with no line terminators Hash0e176276362b94279a4492511bfcbd98 389fe6b51f62254bb98939896b8c89ebeffe2a02 9a2c174ae45cac057822844211156a5ed293e65c5f69e1d211a7206472c5c80c
GET /shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.giuseppedibrothers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 673
content-type: image/svg+xml
content-encoding: gzip
content-md5: DhdidjYrlCeaRJJRG/y9mA==
last-modified: Wed, 12 Feb 2020 22:01:30 GMT
etag: 0x8D7B0071D86E386
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 9cd211c8-401e-0007-0fa5-02e67d000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 0/y+EYwAAAAALrsNRl+CLTqHelFTc/l2VQU1TMDRFREdFMTkyMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Mon, 28 Nov 2022 03:50:22 GMT
X-Firefox-Spdy: h2
|
|
| aadcdn.msauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg | 13.107.246.53 | 200 OK | 1.4 kB |
URL HTTP/2aadcdn.msauth.net/shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg IP13.107.246.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3651), with no line terminators Hash9f368bc4580fed907775f31c6b26d6cf e393a40b3e337f43057eee3de189f197ab056451 7ecbba946c099539c3d9c03f4b6804958900e5b90d48336eea7e5a2ed050fa36
GET /shared/1.0/content/images/microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.giuseppedibrothers.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 1435
content-type: image/svg+xml
content-encoding: gzip
content-md5: nzaLxFgP7ZB3dfMcaybWzw==
last-modified: Fri, 17 Jan 2020 19:28:38 GMT
etag: 0x8D79B8373CB2849
x-cache: TCP_HIT
server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 5008b555-501e-004a-1d59-02ea77000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref: 0/y+EYwAAAAD4R9/0NWSNTpe3nLfn7biqQU1TMDRFREdFMTkyMgAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Mon, 28 Nov 2022 03:50:22 GMT
X-Firefox-Spdy: h2
|
|
| login.live.com/Me.htm?v=3 |  20.190.160.15 | 200 OK | 1.1 kB |
URL HTTP/1.1login.live.com/Me.htm?v=3 IP20.190.160.15:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
File typeHTML document, ASCII text, with very long lines (2345), with CRLF line terminators Hash9c08f0f5b411918572bb176b56d4b747 12814f1ffd1c414337cfc57da7561f4386ec8b67 d9f196403747ff4bbf6c3d61c7319f51e33be05825ac3b5200665e6e5ee26c0e
GET /Me.htm?v=3 HTTP/1.1
Host: login.live.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://login.giuseppedibrothers.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=315360000
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Expires: Thu, 25 Nov 2032 03:50:23 GMT
Vary: Accept-Encoding
P3P: CP="DSP CUR OTPi IND OTRi ONL FIN"
Referrer-Policy: strict-origin-when-cross-origin
x-ms-route-info: R3_BL2
x-ms-request-id: 33e95879-a59b-463c-aafb-be74ce1847d2
PPServer: PPV: 30 H: BL6PPF979F90E2F V: 0
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000
X-XSS-Protection: 1; mode=block
Set-Cookie: uaid=be56e7e00ab54b9c92534249165a95f8; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
MSPRequ=id=N<=1669607423&co=1; domain=login.live.com; Secure; path=/; SameSite=None; HttpOnly
Date: Mon, 28 Nov 2022 03:50:23 GMT
Content-Length: 1132
|
|
| microsoftonline.development-to.online/login/aHR0cHM6Ly9sb2dpbi5naXVzZXBwZWRpYnJvdGhlcnMuY29tL1dVQ25od2N6 | 104.21.92.128 | 503 Service Unavailable | 0 B |
URL HTTP/2microsoftonline.development-to.online/login/aHR0cHM6Ly9sb2dpbi5naXVzZXBwZWRpYnJvdGhlcnMuY29tL1dVQ25od2N6 IP104.21.92.128:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /login/aHR0cHM6Ly9sb2dpbi5naXVzZXBwZWRpYnJvdGhlcnMuY29tL1dVQ25od2N6 HTTP/1.1
Host: microsoftonline.development-to.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 503 Service Unavailable
date: Mon, 28 Nov 2022 03:50:16 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
referrer-policy: same-origin
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WpE2UMAhPcGWtC%2BB%2F3LJJD4mAU6iZWziOZBrtBoh6Xe2LbWsR8cnSt4nXsVHP6Z1H1NuKCrXoNPObB2IVkY4jadlIepR3hnBDuXletrkZcpjhGxKi7Al6%2FIluL1%2Bg7vujCfU5Ecy2QgFbG74faKw87aaejXnWH%2F2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 771023709ae5b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| microsoftonline.development-to.online/cdn-cgi/challenge-platform/h/b/orchestrate/jsch/v1?ray=771023709ae5b50b | 104.21.92.128 | 200 OK | 0 B |
URL HTTP/2microsoftonline.development-to.online/cdn-cgi/challenge-platform/h/b/orchestrate/jsch/v1?ray=771023709ae5b50b IP104.21.92.128:0
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /cdn-cgi/challenge-platform/h/b/orchestrate/jsch/v1?ray=771023709ae5b50b HTTP/1.1
Host: microsoftonline.development-to.online
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://microsoftonline.development-to.online/login/aHR0cHM6Ly9sb2dpbi5naXVzZXBwZWRpYnJvdGhlcnMuY29tL1dVQ25od2N6?__cf_chl_rt_tk=GhAqtWZP4Xyqdyut8HqCPVZvSVtj7B.tiJZbXcxja00-1669607416-0-gaNycGzNCGU
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 28 Nov 2022 03:50:16 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=0, must-revalidate
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HmCp3bDEJD9HA0mz6DRkx134%2Fapd9gPoTJs3mtO7clPZr5kEdIReOQKGe%2Fe48aUJkR6VKetQPHToEB7uFtm1dqdd7IKKjtCNMRsZlGAEbOY9lSa7T87ZRFNnA%2BiVRNIVwPYEXqjtiA6EX0W3GcVWfzLjrqz2TmQE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77102372dbc8b50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|