Report - marriott.dattaservices.com

Report Overview

Submitted URL
marriott.dattaservices.com
IP
54.232.62.213
ASN
#16509 AMAZON-02
Submitted
2022-12-23 17:13:56
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.2 kB	63 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	2.4 kB	6.2 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	413 B	5.8 kB	34.160.144.191
marriott.dattaservices.com	unknown	2022-12-22T07:07:26Z	2022-12-22T07:07:30Z	8.2 kB	976 kB	54.232.62.213
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	333 B	391 B	34.117.237.239
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	341 B	796 B	93.184.220.29
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	606 B	127 B	54.148.213.75

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	marriott.dattaservices.com/core/js/dst.js?lang=es_EC	6.3 kB	2023-03-08	2023-12-16
Pretty URL marriott.dattaservices.com/core/js/dst.js?lang=es_EC IP 54.232.62.213 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:27:05 Last Seen2023-12-16 19:17:26 Times Seen54 Hash 1ee6d4ac760f4ce41fe0520ab1c330f0 7a68c87279a5a700762b8eac733e533cbbcf3984 56e34cce76ba7c8cc564b9b708cc122ccb1c5ebe82e3facefbd9e2f5c9707955 Loading...

	marriott.dattaservices.com/includes/jquery/plugins/jnotify/jquery.jnotify.min.js?layout=classic&version=16.0.1	3.1 kB	2023-03-08	2023-12-28
Pretty URL marriott.dattaservices.com/includes/jquery/plugins/jnotify/jquery.jnotify.min.js?layout=classic&version=16.0.1 IP 54.232.62.213 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:27:05 Last Seen2023-12-28 08:48:24 Times Seen63 Hash cdfa64990c808af7009d75478134f966 14b53595fdd26caa7ee0c617155b015f6e2f00b3 4573cf9fc6aea6c5074556fb4370b088efbc3149cee28dbb557e72a66bd56553 Loading...

	marriott.dattaservices.com/includes/jquery/js/jquery-ui.min.js?layout=classic&version=16.0.1	255 kB	2023-03-07	2024-04-10
Pretty URL marriott.dattaservices.com/includes/jquery/js/jquery-ui.min.js?layout=classic&version=16.0.1 IP 54.232.62.213 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:16:24 Last Seen2024-04-10 12:43:40 Times Seen669 Hash 842e3946fa938e62f185abb29ab00dc7 c72ff777806f59b02c8e9fd84ac258051d2a2b39 793cb14b4ae48e92c4a35eae5d34b4b95092e3cd7995ce342b6895a560ef7526 Loading...

	marriott.dattaservices.com/	145 B	2023-03-08	2023-04-17
Pretty URL marriott.dattaservices.com/ IP 54.232.62.213 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:27:05 Last Seen2023-04-17 22:57:00 Times Seen4 Hash b036bf9bc67ea42499e7aad241c00557 770c4c2a4dad3efb641ffc62d93c52e947027201 288a53734644242c3faf0ba841569d0cc6387e44e5800ff1d74d2c9857370439 Loading...

	marriott.dattaservices.com/includes/jquery/plugins/multiselect/jquery.multi-select.js?layout=classic&version=16.0.1	10 kB	2023-03-08	2023-12-28
Pretty URL marriott.dattaservices.com/includes/jquery/plugins/multiselect/jquery.multi-select.js?layout=classic&version=16.0.1 IP 54.232.62.213 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 08:27:05 Last Seen2023-12-28 08:48:24 Times Seen60 Hash b447df8a1a351be3bf9c11fb97cb1aea 85f3d2fa32d3994271264e7ef6a3a88197f86a64 3edf7b8877f3523372f837b54c897c5b877c509072556727023bc86dac5fdbba Loading...

	marriott.dattaservices.com/includes/jquery/js/jquery.min.js?layout=classic&version=16.0.1	90 kB	2023-03-07	2024-04-18
Pretty URL marriott.dattaservices.com/includes/jquery/js/jquery.min.js?layout=classic&version=16.0.1 IP 54.232.62.213 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-18 04:53:13 Times Seen259539 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	marriott.dattaservices.com/core/js/lib_head.js.php?lang=es_EC&layout=classic&version=16.0.1	37 kB	2023-03-10	2023-03-10
Pretty URL marriott.dattaservices.com/core/js/lib_head.js.php?lang=es_EC&layout=classic&version=16.0.1 IP 54.232.62.213 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 07:11:38 Last Seen2023-03-10 07:11:38 Times Seen1 Hash 0d0530a33d68ff996dbcc6da84a72a35 b922a9c6d7b1e1d46ef386985e5cc16abe2f5320 afbace2923b1ec3fdf839d2b96aa7f72743423452db4e016fca4db4f390f1c7b Loading...

	marriott.dattaservices.com/includes/jquery/plugins/select2/dist/js/select2.full.min.js?layout=classic&version=16.0.1	79 kB	2023-03-07	2024-04-17
Pretty URL marriott.dattaservices.com/includes/jquery/plugins/select2/dist/js/select2.full.min.js?layout=classic&version=16.0.1 IP 54.232.62.213 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:42 Last Seen2024-04-17 19:47:30 Times Seen1579 Hash fcd7500d8e13d2b2aae5d3956dc3e21d aa40e683c82dd844db73fde37048cf7fc145135e 5c6fdab80cb86a279695dccc226a1fac50e2c922bea70242edaa28f52b7bad2d Loading...

	marriott.dattaservices.com/includes/jstz/jstz.min.js?lang=es_EC	12 kB	2023-03-07	2024-04-03
Pretty URL marriott.dattaservices.com/includes/jstz/jstz.min.js?lang=es_EC IP 54.232.62.213 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:54 Last Seen2024-04-03 17:49:35 Times Seen318 Hash 48f703a2b72224c19334f03ba294d924 4291cd3b259d2060460c2a6ab99f428d3c0c9537 ebcb35563ab0d4a54fd83891e6e3629594237feb45e88ad023d3e329363cf273 Loading...

HTTP Transactions (37)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7e300ca7d2d586dd1ca0c185ef6b0da5 3914cfd3b7aa6e1d1117bf509319479e489ed2a4 91c8810ad137faf4393f7d15f9c619c06d124a7aaebfa21290dca614db2c7757 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "91C8810AD137FAF4393F7D15F9C619C06D124A7AAEBFA21290DCA614DB2C7757" Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5406 Expires: Fri, 23 Dec 2022 18:43:51 GMT Date: Fri, 23 Dec 2022 17:13:45 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d6a971d765338f107fe9d2c67fa4bbdf a72bdf191446a37fa0420cc9d7c087aaff757cd6 dc5291c136b0b81621a02679a31f6b7c852e2803429d54c2a9afcc8edf031328 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DC5291C136B0B81621A02679A31F6B7C852E2803429D54C2A9AFCC8EDF031328" Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2673 Expires: Fri, 23 Dec 2022 17:58:18 GMT Date: Fri, 23 Dec 2022 17:13:45 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Fri, 23 Dec 2022 16:34:46 GMT content-type: application/json age: 2339 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 32167242c3bbe7e45a2a865279df94a6 d03436f418ff77d50a553daa892c05e0725ba908 d5578d537296da18f3f349a98465e9fe930dca60a8ed62c183e9c9f6eb53f493 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "D5578D537296DA18F3F349A98465E9FE930DCA60A8ED62C183E9C9F6EB53F493" Last-Modified: Wed, 21 Dec 2022 11:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6666 Expires: Fri, 23 Dec 2022 19:04:51 GMT Date: Fri, 23 Dec 2022 17:13:45 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash b1fcd419a4245617397846e8d17233f6 2a037ce244587640b27ead9a0ec2af4f862d91b2 e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: PGVNs450AsK/8tVyLvbF+luyTj6b5DF/q/pENQTwgjmYQtlyht6jZnQSDDHxB7LOWpPHHQ616yY= x-amz-request-id: 26XHRG79TNMT9ZSK content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Fri, 23 Dec 2022 16:54:08 GMT age: 1177 last-modified: Tue, 20 Dec 2022 14:47:58 GMT etag: "b1fcd419a4245617397846e8d17233f6" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	marriott.dattaservices.com/	54.232.62.213	200 OK	6.0 kB
URL HTTP/1.1 marriott.dattaservices.com/ IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text Size 6.0 kB (6047 bytes) Hash e7a57db941ca3f4c1342e0a21b96550d c312ac6e5b7859377ffb4d44e92b90ef5e30c208 06634c9aff313bf36e5417cd13085f4760e6382c6e51967159c40530c15ccc1a HTTP Headers `GET / HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:45 GMT Server: Apache X-Powered-By: PHP/7.2.24 Expires: Thu, 19 Nov 1981 08:52:00 GMT Pragma: no-cache Cache-Control: Public, must-revalidate X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN Set-Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj; path=/; HttpOnly Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Transfer-Encoding: chunked Content-Type: text/html; charset=UTF-8`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Fri, 23 Dec 2022 17:13:45 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	marriott.dattaservices.com/includes/jquery/plugins/jnotify/jquery.jnotify-alt.min.css?layout=classic&version=16.0.1	54.232.62.213	200 OK	2.3 kB
URL HTTP/1.1 marriott.dattaservices.com/includes/jquery/plugins/jnotify/jquery.jnotify-alt.min.css?layout=classic&version=16.0.1 IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type ASCII text Size 2.3 kB (2297 bytes) Hash 599a8439ed6125670db4a61b4f93b406 46baf1509c790908b0506299cd0c27ffe7804640 0d7219251c45197107e14fccf156f2867d433e04c1523a0ebdd846e64e7fa948 HTTP Headers `GET /includes/jquery/plugins/jnotify/jquery.jnotify-alt.min.css?layout=classic&version=16.0.1 HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:45 GMT Server: Apache Last-Modified: Sat, 08 Oct 2022 12:13:54 GMT ETag: "8f9-5ea84dc2be480" Accept-Ranges: bytes Content-Length: 2297 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: text/css`

	marriott.dattaservices.com/includes/jquery/css/base/jquery-ui.css?layout=classic&version=16.0.1	54.232.62.213	200 OK	36 kB
URL HTTP/1.1 marriott.dattaservices.com/includes/jquery/css/base/jquery-ui.css?layout=classic&version=16.0.1 IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (2363) Size 36 kB (35973 bytes) Hash c4a88ec0cb998929a670c0c58d7dc526 03135a88e8dbc36020dd453d1e7407ce9a3a2cc2 44f8a56d427917b5fa0dd7933ba545679be5e6b3b93099e64a4e29c2159f57c0 HTTP Headers `GET /includes/jquery/css/base/jquery-ui.css?layout=classic&version=16.0.1 HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:45 GMT Server: Apache Last-Modified: Sat, 08 Oct 2022 12:13:54 GMT ETag: "8c85-5ea84dc2be480" Accept-Ranges: bytes Content-Length: 35973 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/css`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Fri, 23 Dec 2022 16:33:25 GMT age: 2421 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	marriott.dattaservices.com/includes/jquery/plugins/select2/dist/css/select2.css?layout=classic&version=16.0.1	54.232.62.213	200 OK	17 kB
URL HTTP/1.1 marriott.dattaservices.com/includes/jquery/plugins/select2/dist/css/select2.css?layout=classic&version=16.0.1 IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type ASCII text Size 17 kB (17389 bytes) Hash 31200fee4c50bde339054c0cc5d3ca32 ee19231c62053a0118fa3f6ed08eb7c168c5395b 5679f4a9f5d534ce89c6d37113eac774457d6c2cdc45f976c323173b41bd2358 HTTP Headers `GET /includes/jquery/plugins/select2/dist/css/select2.css?layout=classic&version=16.0.1 HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:45 GMT Server: Apache Last-Modified: Sat, 08 Oct 2022 12:13:54 GMT ETag: "43ed-5ea84dc2be480" Accept-Ranges: bytes Content-Length: 17389 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/css`

	marriott.dattaservices.com/theme/common/fontawesome-5/css/v4-shims.min.css?layout=classic&version=16.0.1	54.232.62.213	200 OK	27 kB
URL HTTP/1.1 marriott.dattaservices.com/theme/common/fontawesome-5/css/v4-shims.min.css?layout=classic&version=16.0.1 IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (26516) Size 27 kB (26702 bytes) Hash fb073a92592d70e5aa6e3cce1cf93a11 b9a847b0e25ec6d3c5a27a97d26b20a9acf2c1a4 c0ded025aa80c10d37920521c8de04536a6145d0e42eb4186c57b412fa50eb45 HTTP Headers `GET /theme/common/fontawesome-5/css/v4-shims.min.css?layout=classic&version=16.0.1 HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:45 GMT Server: Apache Last-Modified: Sat, 08 Oct 2022 12:13:53 GMT ETag: "684e-5ea84dc1ca240" Accept-Ranges: bytes Content-Length: 26702 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/css`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash c615c937e6371bda0824b44af0c21c74 b097d69452bcc60085f563d094388185c26f0e7d 9f1194921b5d57dd52a217a47e69ad4cec7c08378c73c8dfccc3817119fcbb41 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 643 Cache-Control: max-age=144224 Content-Type: application/ocsp-response Date: Fri, 23 Dec 2022 17:13:46 GMT Etag: "63a56fa7-1d7" Expires: Sun, 25 Dec 2022 09:17:30 GMT Last-Modified: Fri, 23 Dec 2022 09:06:47 GMT Server: ECS (ska/F70B) X-Cache: HIT Content-Length: 471`

	marriott.dattaservices.com/includes/jquery/plugins/jnotify/jquery.jnotify.min.js?layout=classic&version=16.0.1	54.232.62.213	200 OK	3.1 kB
URL HTTP/1.1 marriott.dattaservices.com/includes/jquery/plugins/jnotify/jquery.jnotify.min.js?layout=classic&version=16.0.1 IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (2404) Size 3.1 kB (3098 bytes) Hash cdfa64990c808af7009d75478134f966 14b53595fdd26caa7ee0c617155b015f6e2f00b3 4573cf9fc6aea6c5074556fb4370b088efbc3149cee28dbb557e72a66bd56553 HTTP Headers `GET /includes/jquery/plugins/jnotify/jquery.jnotify.min.js?layout=classic&version=16.0.1 HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:46 GMT Server: Apache Last-Modified: Sat, 08 Oct 2022 12:13:54 GMT ETag: "c1a-5ea84dc2be480" Accept-Ranges: bytes Content-Length: 3098 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: application/javascript`

	marriott.dattaservices.com/theme/common/fontawesome-5/css/all.min.css?layout=classic&version=16.0.1	54.232.62.213	200 OK	59 kB
URL HTTP/1.1 marriott.dattaservices.com/theme/common/fontawesome-5/css/all.min.css?layout=classic&version=16.0.1 IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (58392) Size 59 kB (58578 bytes) Hash 76cb46c10b6c0293433b371bae2414b2 0038dc97c79451578b7bd48af60ba62282b4082b 876d023d9d10c97941b80c3b03e2a5b94631ff7a4af9cee5604a6a2d39718d84 HTTP Headers `GET /theme/common/fontawesome-5/css/all.min.css?layout=classic&version=16.0.1 HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:45 GMT Server: Apache Last-Modified: Sat, 08 Oct 2022 12:13:53 GMT ETag: "e4d2-5ea84dc1ca240" Accept-Ranges: bytes Content-Length: 58578 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: text/css`

	marriott.dattaservices.com/includes/jquery/plugins/multiselect/jquery.multi-select.js?layout=classic&version=16.0.1	54.232.62.213	200 OK	10 kB
URL HTTP/1.1 marriott.dattaservices.com/includes/jquery/plugins/multiselect/jquery.multi-select.js?layout=classic&version=16.0.1 IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type assembler source, ASCII text Size 10 kB (10177 bytes) Hash b447df8a1a351be3bf9c11fb97cb1aea 85f3d2fa32d3994271264e7ef6a3a88197f86a64 3edf7b8877f3523372f837b54c897c5b877c509072556727023bc86dac5fdbba HTTP Headers `GET /includes/jquery/plugins/multiselect/jquery.multi-select.js?layout=classic&version=16.0.1 HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:46 GMT Server: Apache Last-Modified: Sat, 08 Oct 2022 12:13:54 GMT ETag: "27c1-5ea84dc2be480" Accept-Ranges: bytes Content-Length: 10177 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: application/javascript`

	marriott.dattaservices.com/includes/jquery/js/jquery.min.js?layout=classic&version=16.0.1	54.232.62.213	200 OK	90 kB
URL HTTP/1.1 marriott.dattaservices.com/includes/jquery/js/jquery.min.js?layout=classic&version=16.0.1 IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65447) Size 90 kB (89501 bytes) Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e HTTP Headers `GET /includes/jquery/js/jquery.min.js?layout=classic&version=16.0.1 HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:45 GMT Server: Apache Last-Modified: Sat, 08 Oct 2022 12:13:54 GMT ETag: "15d9d-5ea84dc2be480" Accept-Ranges: bytes Content-Length: 89501 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: application/javascript`

	marriott.dattaservices.com/core/js/lib_head.js.php?lang=es_EC&layout=classic&version=16.0.1	54.232.62.213	200 OK	37 kB
URL HTTP/1.1 marriott.dattaservices.com/core/js/lib_head.js.php?lang=es_EC&layout=classic&version=16.0.1 IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text Size 37 kB (37381 bytes) Hash 0d0530a33d68ff996dbcc6da84a72a35 b922a9c6d7b1e1d46ef386985e5cc16abe2f5320 afbace2923b1ec3fdf839d2b96aa7f72743423452db4e016fca4db4f390f1c7b HTTP Headers `GET /core/js/lib_head.js.php?lang=es_EC&layout=classic&version=16.0.1 HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:46 GMT Server: Apache X-Powered-By: PHP/7.2.24 Expires: Fri, 23 Dec 2022 20:13:46 GMT X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN Cache-Control: max-age=10800, public, must-revalidate Last-Modified: Mon, 12 Dec 2022 23:47:45 GMT Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Transfer-Encoding: chunked Content-Type: text/javascript; charset=UTF-8`

	push.services.mozilla.com/	54.148.213.75	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.148.213.75:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: SkVhZkoxMfbMbtsOApKopA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: Xl5Qa150JyH9K1odKdUN6jMouas=`

	marriott.dattaservices.com/includes/jquery/plugins/select2/dist/js/select2.full.min.js?layout=classic&version=16.0.1	54.232.62.213	200 OK	79 kB
URL HTTP/1.1 marriott.dattaservices.com/includes/jquery/plugins/select2/dist/js/select2.full.min.js?layout=classic&version=16.0.1 IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (64131) Size 79 kB (79212 bytes) Hash fcd7500d8e13d2b2aae5d3956dc3e21d aa40e683c82dd844db73fde37048cf7fc145135e 5c6fdab80cb86a279695dccc226a1fac50e2c922bea70242edaa28f52b7bad2d HTTP Headers `GET /includes/jquery/plugins/select2/dist/js/select2.full.min.js?layout=classic&version=16.0.1 HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:46 GMT Server: Apache Last-Modified: Sat, 08 Oct 2022 12:13:54 GMT ETag: "1356c-5ea84dc2be480" Accept-Ranges: bytes Content-Length: 79212 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: application/javascript`

	marriott.dattaservices.com/includes/jstz/jstz.min.js?lang=es_EC	54.232.62.213	200 OK	12 kB
URL HTTP/1.1 marriott.dattaservices.com/includes/jstz/jstz.min.js?lang=es_EC IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (12020) Size 12 kB (12076 bytes) Hash 48f703a2b72224c19334f03ba294d924 4291cd3b259d2060460c2a6ab99f428d3c0c9537 ebcb35563ab0d4a54fd83891e6e3629594237feb45e88ad023d3e329363cf273 HTTP Headers `GET /includes/jstz/jstz.min.js?lang=es_EC HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:46 GMT Server: Apache Last-Modified: Sat, 08 Oct 2022 12:13:53 GMT ETag: "2f2c-5ea84dc1ca240" Accept-Ranges: bytes Content-Length: 12076 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Content-Type: application/javascript`

	marriott.dattaservices.com/core/js/dst.js?lang=es_EC	54.232.62.213	200 OK	6.3 kB
URL HTTP/1.1 marriott.dattaservices.com/core/js/dst.js?lang=es_EC IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text Size 6.3 kB (6265 bytes) Hash 1ee6d4ac760f4ce41fe0520ab1c330f0 7a68c87279a5a700762b8eac733e533cbbcf3984 56e34cce76ba7c8cc564b9b708cc122ccb1c5ebe82e3facefbd9e2f5c9707955 HTTP Headers `GET /core/js/dst.js?lang=es_EC HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:46 GMT Server: Apache Last-Modified: Sat, 08 Oct 2022 12:13:55 GMT ETag: "1879-5ea84dc3b26c0" Accept-Ranges: bytes Content-Length: 6265 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: application/javascript`

	marriott.dattaservices.com/includes/jquery/js/jquery-ui.min.js?layout=classic&version=16.0.1	54.232.62.213	200 OK	255 kB
URL HTTP/1.1 marriott.dattaservices.com/includes/jquery/js/jquery-ui.min.js?layout=classic&version=16.0.1 IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (64399) Size 255 kB (255082 bytes) Hash 842e3946fa938e62f185abb29ab00dc7 c72ff777806f59b02c8e9fd84ac258051d2a2b39 793cb14b4ae48e92c4a35eae5d34b4b95092e3cd7995ce342b6895a560ef7526 HTTP Headers `GET /includes/jquery/js/jquery-ui.min.js?layout=classic&version=16.0.1 HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:45 GMT Server: Apache Last-Modified: Sat, 08 Oct 2022 12:13:54 GMT ETag: "3e46a-5ea84dc2be480" Accept-Ranges: bytes Content-Length: 255082 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/javascript`

	marriott.dattaservices.com/theme/eldy/style.css.php?lang=es_EC&theme=eldy&userid=0&entity=1&layout=classic&version=16.0.1&revision=51	54.232.62.213	200 OK	234 kB
URL HTTP/1.1 marriott.dattaservices.com/theme/eldy/style.css.php?lang=es_EC&theme=eldy&userid=0&entity=1&layout=classic&version=16.0.1&revision=51 IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type HTML document, ASCII text Size 234 kB (234139 bytes) Hash 2d35d1e4f89a43705685afa70a4b0ef3 fb3a50a429ebcd0480fc535622aed7793def0587 f5796c97554b19b035e81cbedf85e3cf839f12a9a4ba91aabf0aa6d32dba3551 HTTP Headers `GET /theme/eldy/style.css.php?lang=es_EC&theme=eldy&userid=0&entity=1&layout=classic&version=16.0.1&revision=51 HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:46 GMT Server: Apache X-Powered-By: PHP/7.2.24 Expires: Fri, 23 Dec 2022 20:13:46 GMT X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN Cache-Control: max-age=10800, public, must-revalidate Last-Modified: Mon, 12 Dec 2022 23:47:44 GMT Keep-Alive: timeout=5, max=97 Connection: Keep-Alive Transfer-Encoding: chunked Content-Type: text/css;charset=UTF-8`

	marriott.dattaservices.com/viewimage.php?cache=1&modulepart=mycompany&file=logos%2Fthumbs%2FlogoMarriott_small.jpeg	54.232.62.213	200 OK	17 kB
URL HTTP/1.1 marriott.dattaservices.com/viewimage.php?cache=1&modulepart=mycompany&file=logos%2Fthumbs%2FlogoMarriott_small.jpeg IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 80", baseline, precision 8, 353x270, components 3\012- data Size 17 kB (16970 bytes) Hash b57c11f90bde2ea4cd604d34eb1dd111 2ebd7ff7420434641079f18408a28515495e7fb2 414188808f238ea6a5fca7a7b5100712c0e84cff10222266c27cd9637ffc373d HTTP Headers `GET /viewimage.php?cache=1&modulepart=mycompany&file=logos%2Fthumbs%2FlogoMarriott_small.jpeg HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:47 GMT Server: Apache X-Powered-By: PHP/7.2.24 Expires: Thu, 19 Nov 1981 08:52:00 GMT Cache-Control: max-age=3600, public, must-revalidate Pragma: cache X-Content-Type-Options: nosniff X-Frame-Options: SAMEORIGIN Content-Disposition: inline; filename="logoMarriott_small.jpeg" Keep-Alive: timeout=5, max=99 Connection: Keep-Alive Transfer-Encoding: chunked Content-Type: image/jpeg`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 6ce699bd0db3ee9d3a4ef6dcf941f9f1 14d813942d74d801024c42e2a4628ecd9306d2ad 060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388" Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10978 Expires: Fri, 23 Dec 2022 20:16:45 GMT Date: Fri, 23 Dec 2022 17:13:47 GMT Connection: keep-alive`

	marriott.dattaservices.com/theme/common/fontawesome-5/webfonts/fa-solid-900.woff2	54.232.62.213	200 OK	79 kB
URL HTTP/1.1 marriott.dattaservices.com/theme/common/fontawesome-5/webfonts/fa-solid-900.woff2 IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 79444, version 331.524\012- data Size 79 kB (79444 bytes) Hash b15db15f746f29ffa02638cb455b8ec0 75a88815c47a249eadb5f0edc1675957f860cca7 7f4d3fd0a705dbf8403298aad91d5de6972e6b5d536068eba8b24954a5a0a8c7 HTTP Headers GET /theme/common/fontawesome-5/webfonts/fa-solid-900.woff2 HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: http://marriott.dattaservices.com/theme/common/fontawesome-5/css/all.min.css?layout=classic&version=16.0.1 Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj `HTTP/1.1 200 OK Date: Fri, 23 Dec 2022 17:13:47 GMT Server: Apache Last-Modified: Sat, 08 Oct 2022 12:13:53 GMT ETag: "13654-5ea84dc1ca240" Accept-Ranges: bytes Content-Length: 79444 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: font/woff2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 6ce699bd0db3ee9d3a4ef6dcf941f9f1 14d813942d74d801024c42e2a4628ecd9306d2ad 060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388" Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10978 Expires: Fri, 23 Dec 2022 20:16:45 GMT Date: Fri, 23 Dec 2022 17:13:47 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 6ce699bd0db3ee9d3a4ef6dcf941f9f1 14d813942d74d801024c42e2a4628ecd9306d2ad 060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388" Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10978 Expires: Fri, 23 Dec 2022 20:16:45 GMT Date: Fri, 23 Dec 2022 17:13:47 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 6ce699bd0db3ee9d3a4ef6dcf941f9f1 14d813942d74d801024c42e2a4628ecd9306d2ad 060de67922db1f612b7f4c173f11e8714c8329d20fbec45a421bcefe7451f388 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "060DE67922DB1F612B7F4C173F11E8714C8329D20FBEC45A421BCEFE7451F388" Last-Modified: Thu, 22 Dec 2022 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10978 Expires: Fri, 23 Dec 2022 20:16:45 GMT Date: Fri, 23 Dec 2022 17:13:47 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F636d561f-4cac-46b6-9b12-799eb03be3f7.jpeg	34.120.237.76	200 OK	8.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F636d561f-4cac-46b6-9b12-799eb03be3f7.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.1 kB (8103 bytes) Hash 5aee260508b4a6317aa74cfa263fcf0f 0268b809b07f0126ae1c707f0a72cbf2c5ee5dde b43410a5b53d6318d13a1b6cac311beaff9aaf2b21a6d68420ec7e3291ce44b4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F636d561f-4cac-46b6-9b12-799eb03be3f7.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8103 x-amzn-requestid: 1dec4794-e477-4587-a919-10fed7e06f73 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: degIwFtioAMFZoQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63a27a37-2088c1ec6c0d3158153e907b;Sampled=0 x-amzn-remapped-date: Wed, 21 Dec 2022 03:15:03 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: mBdKNm-n2HvTeSA3FxMS7yfjJvmpTCrNNCuOlJgt1Q6y258pawKQ0A== via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google date: Fri, 23 Dec 2022 08:40:52 GMT age: 30775 etag: "0268b809b07f0126ae1c707f0a72cbf2c5ee5dde" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4d96f-b35a-4cc6-9fe3-c52ed693df34.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4d96f-b35a-4cc6-9fe3-c52ed693df34.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11471 bytes) Hash 5dd6622433d537fbb91a04bd3b57d873 552f216608b819b4f65f0574e421f4a761f0d721 5e9b03133d928378a775ab52ec6e58cd7753aa2975a4966534353c0d6bc46af5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fe4d96f-b35a-4cc6-9fe3-c52ed693df34.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11471 x-amzn-requestid: 20d9459a-710b-4fcf-bfce-9f0c5f513740 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dbNEqGPnoAMFcDg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63a12884-4a93ab9047181db109d328e2;Sampled=0 x-amzn-remapped-date: Tue, 20 Dec 2022 03:14:12 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: qFwWS-f0U1hSbrFFgBiGNzXRvZyvR90n_MI7jfYfWsyv2W6jH8D-9w== via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a06140ffee86972bad90c57fc682df36.cloudfront.net (CloudFront), 1.1 google date: Fri, 23 Dec 2022 04:54:20 GMT age: 44367 etag: "552f216608b819b4f65f0574e421f4a761f0d721" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F580b4499-2ffd-427f-93ed-4c39a78dd125.jpeg	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F580b4499-2ffd-427f-93ed-4c39a78dd125.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (12794 bytes) Hash 7ee73339f3e7eaeb4c1ecab1a24632a8 48ff42e4329102d6a006b8f947bfaf29c0a5de17 ae5787d0df124d7d95ccaaf58148bb46c931610ca908cd58787748da5b75a1c0 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F580b4499-2ffd-427f-93ed-4c39a78dd125.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12794 x-amzn-requestid: 82617475-f461-429b-b38d-0c84eee33754 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dk55IGPioAMFi1Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63a509d3-0dfc997d3853974a08914362;Sampled=0 x-amzn-remapped-date: Fri, 23 Dec 2022 01:52:19 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: -24dBoLhaZcF6kjZCYp8EJSAYmslMmv15G3oPgPAydPxVA0j51Vs3w== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google date: Fri, 23 Dec 2022 01:52:20 GMT age: 55287 etag: "48ff42e4329102d6a006b8f947bfaf29c0a5de17" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdce5468-cf1b-4a55-968b-1aaa101e60d6.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdce5468-cf1b-4a55-968b-1aaa101e60d6.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11939 bytes) Hash 38cc82b5e5d8c2fee6f51021e156ec81 eafb4e029313caabcdbdc1002abcab95f66e91b1 b8cad011e1a98ee4e896f00263495aab7f9cab986736a7a5b4187b8e94c46493 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcdce5468-cf1b-4a55-968b-1aaa101e60d6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11939 x-amzn-requestid: a00e5ab5-ad16-4576-b046-381e36456998 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dkUhqE94oAMFu5A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63a4ce0a-28687ad51eea1f6f3ce8cc86;Sampled=0 x-amzn-remapped-date: Thu, 22 Dec 2022 21:37:14 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: uIDvI3BVK0v68x1jkgw9GB0U1i3l2kyW81q2Kiy3ZDREqQmyUTXCnQ== via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google date: Thu, 22 Dec 2022 21:38:11 GMT age: 70536 etag: "eafb4e029313caabcdbdc1002abcab95f66e91b1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c838f6-5365-43bb-981e-8ddefc5f3f14.jpeg	34.120.237.76	200 OK	5.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c838f6-5365-43bb-981e-8ddefc5f3f14.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.7 kB (5659 bytes) Hash 2d4cf077d410b94f1326e942304f9e9b 98fb13feecfada3cc8b467aa48d7cdf1ed8ab001 ec82cd83bfd4da849888b0535c9764cd4d462ef9e12c5934512858375908dfe4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46c838f6-5365-43bb-981e-8ddefc5f3f14.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5659 x-amzn-requestid: bc225a93-868b-42d4-aa94-c8fa16ef2c64 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dk33gHUqIAMFg1A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63a50696-7710727f0f086a791a0e7939;Sampled=0 x-amzn-remapped-date: Fri, 23 Dec 2022 01:38:30 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: FGP2S7V05eAwwnHzdlYQJC9ZW-5xLD8Aqi7XBCcJtaqbVoNCocGFhw== via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google date: Fri, 23 Dec 2022 01:50:42 GMT age: 55385 etag: "98fb13feecfada3cc8b467aa48d7cdf1ed8ab001" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bd09861-a6e6-4462-b7cf-0572eabdfd71.jpeg	34.120.237.76	200 OK	7.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bd09861-a6e6-4462-b7cf-0572eabdfd71.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.1 kB (7117 bytes) Hash 61b1b9ece5581fe0b212144f45243f1a d161c613f1491ae6ab63b536c50c6630e80d6382 f5a2b23b66a05734b86755986573c07c5f75bc6cbe67d2b769aee9ef402b2c14 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bd09861-a6e6-4462-b7cf-0572eabdfd71.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7117 x-amzn-requestid: 470b959f-7f5f-4a64-8d8d-bfc91856fad2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: dUnBBFhZIAMFhiQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-639e8539-3916bad034c86d5503e456f2;Sampled=0 x-amzn-remapped-date: Sun, 18 Dec 2022 03:12:57 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: UIB-d7y4AawAml6oXhsAeoIud_U-fhQzha7VwRqY9AgNaYtJ49nlzg== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google date: Fri, 23 Dec 2022 05:06:41 GMT age: 43626 etag: "d161c613f1491ae6ab63b536c50c6630e80d6382" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	marriott.dattaservices.com/favicon.ico	54.232.62.213	404 Not Found	196 B
URL HTTP/1.1 marriott.dattaservices.com/favicon.ico IP 54.232.62.213:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 196 B (196 bytes) Hash 62962daa1b19bbcc2db10b7bfd531ea6 d64bae91091eda6a7532ebec06aa70893b79e1f8 80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880 HTTP Headers `GET /favicon.ico HTTP/1.1 Host: marriott.dattaservices.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://marriott.dattaservices.com/ Cookie: DOLSESSID_e0383d50cd882a293a81e8f65912b041f890e03e=evsutcv16utui0ucufppkhknmj` `HTTP/1.1 404 Not Found Date: Fri, 23 Dec 2022 17:13:47 GMT Server: Apache Content-Length: 196 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive Content-Type: text/html; charset=iso-8859-1`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations