mss.meperia.com/production/orgs/107/rnp/requisitions/29638/get_cost?_dc=1663609693728&requisition_id=29638&id=29638&authenticity_token=L6Lx234hCzODc3QHsjI0T970DBWs29PiI7PBp3jtLV4=&org_id=107
107.21.8.137301 Moved Permanently 194 B URL HTTP/1.1 mss.meperia.com/production/orgs/107/rnp/requisitions/29638/get_cost?_dc=1663609693728&requisition_id=29638&id=29638&authenticity_token=L6Lx234hCzODc3QHsjI0T970DBWs29PiI7PBp3jtLV4=&org_id=107
IP 107.21.8.137:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ec0f2d6d8da7997a10f72a2537729e59
d6b8ca36f266d92775f5b757e65b8c10c747c30a
95e1144ae5faba1d6ea1ac58b29b1e8d0399125e4dbc6a17d50d0bf5cf3bdcf8
GET /production/orgs/107/rnp/requisitions/29638/get_cost?_dc=1663609693728&requisition_id=29638&id=29638&authenticity_token=L6Lx234hCzODc3QHsjI0T970DBWs29PiI7PBp3jtLV4=&org_id=107 HTTP/1.1
Host: mss.meperia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.14.0 (Ubuntu)
Date: Mon, 19 Sep 2022 18:17:30 GMT
Content-Type: text/html
Content-Length: 194
Connection: keep-alive
Location: https://mss.meperia.com/production/orgs/107/rnp/requisitions/29638/get_cost?_dc=1663609693728&requisition_id=29638&id=29638&authenticity_token=L6Lx234hCzODc3QHsjI0T970DBWs29PiI7PBp3jtLV4=&org_id=107
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 19 Sep 2022 17:17:40 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 301cgsdAFz3cqCdLtFlYVUEVWn9rUUA40iwP48QHQBKf7abQaf4IIQ==
Age: 3590
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 861cfa99de956423d917ed0ddbea4b9c
ad65dbc394b48b04a45c205f56af296c8d008db4
5c706b2718b1698995f4feb91223779aef4bf6dc967c31f9ef9a93873197d5f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5C706B2718B1698995F4FEB91223779AEF4BF6DC967C31F9EF9A93873197D5F9"
Last-Modified: Sun, 18 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16392
Expires: Mon, 19 Sep 2022 22:50:42 GMT
Date: Mon, 19 Sep 2022 18:17:30 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 19 Sep 2022 04:35:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UqGtzteyLbcd4icy1IPuvIETodjgzPM1STyrU6X1vJoCgkV8GuS7aw==
age: 49337
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 19 Sep 2022 18:17:30 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash e03a875d30ba8dbc21bd400cc6ac3b0d
10d9cda099fbbccc2c8a2bb45677bfba21ec5bcf
bb8e01b387593c7e0d69ae3f61feb05f2a20c13772f98e65806982ba927eb6e4
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 19 Sep 2022 18:17:31 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 17 Sep 2022 02:46:45 GMT
Expires: Sat, 24 Sep 2022 02:46:44 GMT
Etag: "10d9cda099fbbccc2c8a2bb45677bfba21ec5bcf"
Cache-Control: max-age=375552,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74d451919c80b4e8-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 19 Sep 2022 18:03:22 GMT
Cache-Control: max-age=3600
Expires: Mon, 19 Sep 2022 18:42:46 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FryNjRLmV17BbYOxWqzsJ66wjo0YOz0e1tMYnGsAEilZekgT6Hmwmg==
Age: 849
mss.meperia.com/production/orgs/107/rnp/requisitions/29638/get_cost?_dc=1663609693728&requisition_id=29638&id=29638&authenticity_token=L6Lx234hCzODc3QHsjI0T970DBWs29PiI7PBp3jtLV4=&org_id=107
107.21.8.137302 Found 112 B URL HTTP/1.1 mss.meperia.com/production/orgs/107/rnp/requisitions/29638/get_cost?_dc=1663609693728&requisition_id=29638&id=29638&authenticity_token=L6Lx234hCzODc3QHsjI0T970DBWs29PiI7PBp3jtLV4=&org_id=107
IP 107.21.8.137:0
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash f35a64dc7bfe606d6d4c1de4237d2091
c2f4cee06ccb4765d34fc13daae45e5cbb97ad8e
f760192faac69c75f75d6869ecf77197b22ea9eabf822abd7515a993cbe37c4f
GET /production/orgs/107/rnp/requisitions/29638/get_cost?_dc=1663609693728&requisition_id=29638&id=29638&authenticity_token=L6Lx234hCzODc3QHsjI0T970DBWs29PiI7PBp3jtLV4=&org_id=107 HTTP/1.1
Host: mss.meperia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Server: nginx
Date: Mon, 19 Sep 2022 18:17:31 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 112
Connection: keep-alive
Status: 302 Found
Location: https://mss.meperia.com/production/client/YUMA
Cache-Control: no-cache
X-Runtime: 2
Set-Cookie: _meperia_session_production15=BAh7BzoPc2Vzc2lvbl9pZCIlZjc2NjNiNWQxMTZhZDQxZGM4YzIzMTBiMWQ5MDAxNTA6DnJldHVybl90byIBpC9vcmdzLzEwNy9ybnAvcmVxdWlzaXRpb25zLzI5NjM4L2dldF9jb3N0P19kYz0xNjYzNjA5NjkzNzI4JnJlcXVpc2l0aW9uX2lkPTI5NjM4JmlkPTI5NjM4JmF1dGhlbnRpY2l0eV90b2tlbj1MNkx4MjM0aEN6T0RjM1FIc2pJMFQ5NzBEQldzMjlQaUk3UEJwM2p0TFY0PSZvcmdfaWQ9MTA3--8cef2c1628f8be06debd43902a3a677de6b871b1; path=/; secure; HttpOnly
Front-End-Https: on
mss.meperia.com/production/client/YUMA
107.21.8.137200 OK 11 kB URL HTTP/1.1 mss.meperia.com/production/client/YUMA
IP 107.21.8.137:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (20271)
Hash fe1e59709eab712c8c5754c887ac6bd6
af2f275131bae8f2942cece634589f5f6d32cbc7
a59096e2e4e03d71152700202275f0490b34c6e5458e407393057ae4bdbfe0df
GET /production/client/YUMA HTTP/1.1
Host: mss.meperia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _meperia_session_production15=BAh7BzoPc2Vzc2lvbl9pZCIlZjc2NjNiNWQxMTZhZDQxZGM4YzIzMTBiMWQ5MDAxNTA6DnJldHVybl90byIBpC9vcmdzLzEwNy9ybnAvcmVxdWlzaXRpb25zLzI5NjM4L2dldF9jb3N0P19kYz0xNjYzNjA5NjkzNzI4JnJlcXVpc2l0aW9uX2lkPTI5NjM4JmlkPTI5NjM4JmF1dGhlbnRpY2l0eV90b2tlbj1MNkx4MjM0aEN6T0RjM1FIc2pJMFQ5NzBEQldzMjlQaUk3UEJwM2p0TFY0PSZvcmdfaWQ9MTA3--8cef2c1628f8be06debd43902a3a677de6b871b1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 19 Sep 2022 18:17:31 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Status: 200 OK
Cache-Control: private, max-age=0, must-revalidate
X-Runtime: 5
ETag: W/"fdf0bf250132641ff3dc89fa994bab7e"
Set-Cookie: _meperia_session_production15=BAh7CjoPYWNjZXNzX2xvZ3sHOhBsYXN0X2FjY2Vzc3sAOhNjdXJyZW50X2FjY2Vzc3sHOhBhY3Rpb25fbmFtZSIPc3NvX2NsaWVudDoUY29udHJvbGxlcl9uYW1lIg1zZXNzaW9uczoPZXhwaXJlc19hdFU6IEFjdGl2ZVN1cHBvcnQ6OlRpbWVXaXRoWm9uZVsISXU6CVRpbWUNcqIewJZs%2BL0GOh9AbWFyc2hhbF93aXRoX3V0Y19jb2VyY2lvblQiCFVUQ0ANOg9zZXNzaW9uX2lkIiVmNzY2M2I1ZDExNmFkNDFkYzhjMjMxMGIxZDkwMDE1MDoOcmV0dXJuX3RvIgGkL29yZ3MvMTA3L3JucC9yZXF1aXNpdGlvbnMvMjk2MzgvZ2V0X2Nvc3Q%2FX2RjPTE2NjM2MDk2OTM3MjgmcmVxdWlzaXRpb25faWQ9Mjk2MzgmaWQ9Mjk2MzgmYXV0aGVudGljaXR5X3Rva2VuPUw2THgyMzRoQ3pPRGMzUUhzakkwVDk3MERCV3MyOVBpSTdQQnAzanRMVjQ9Jm9yZ19pZD0xMDc6DnNzb2NsaWVudCIJWVVNQQ%3D%3D--f89eba940994dbb6a32cbd129c71bed23f81af19; path=/; secure; HttpOnly
Front-End-Https: on
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5c817aa82ca8ed4a4257fd1e1628b423
7905c62b6bbc582860c07b75eddae371a4b8d02b
dce1783ecfe50c83d30878b48d60e1cf3fe42a3fa4090fb5d318194de73e53d6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2839
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 18:17:31 GMT
Last-Modified: Mon, 19 Sep 2022 17:30:12 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.148.228.200101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.228.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NXR800Zepz6TN/jVwqeUog==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0KNoQKQlsENLPxa3MBHZhKolPD0=
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash c4f000f5c9e3306a5a1ab4c2558f4f93
19b08636d5c94ce7d42f633c6f2123076358652e
003afd64234bc53be356195dd79f48c9724560158b29983d074d5d91095affd5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 19 Sep 2022 18:17:31 GMT
Last-Modified: Mon, 19 Sep 2022 17:09:04 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XG6RV9dyliNmSEGzwc0uhIGMIpNlbsSu66GgDcp6TWge10gfNRy9jg==
Age: 4107
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash c4f000f5c9e3306a5a1ab4c2558f4f93
19b08636d5c94ce7d42f633c6f2123076358652e
003afd64234bc53be356195dd79f48c9724560158b29983d074d5d91095affd5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 19 Sep 2022 18:17:31 GMT
Last-Modified: Mon, 19 Sep 2022 17:52:41 GMT
Server: ECS (nyb/1D06)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 62vwN3YOBNJ2US9fPcxbInn9Rb0n6PVaXuvgeJ9MKIoz9aHzkEYr1w==
Age: 1490
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash c4f000f5c9e3306a5a1ab4c2558f4f93
19b08636d5c94ce7d42f633c6f2123076358652e
003afd64234bc53be356195dd79f48c9724560158b29983d074d5d91095affd5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 19 Sep 2022 18:17:31 GMT
Last-Modified: Mon, 19 Sep 2022 17:09:04 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: yqtmxbmacrPiUIOxtoMMi8tAX_EFNmlX3ZFcflaVweQfyQvJVcuLoQ==
Age: 4107
msss-assets.s3.amazonaws.com/production/stylesheets/session_packaged.css?1662946776
54.231.164.121200 OK 5.5 kB URL HTTP/1.1 msss-assets.s3.amazonaws.com/production/stylesheets/session_packaged.css?1662946776
IP 54.231.164.121:0
File type ASCII text, with very long lines (388)
Hash 5a4e21f18f42701ecffb59973355ac62
3baaae14356ea91f4241181470702ca0fc757cbc
3a6f56b2f70ea23dfd70c48f6aae00e9af8ba27f4b2d4f72946fb1e7e1c65d9d
GET /production/stylesheets/session_packaged.css?1662946776 HTTP/1.1
Host: msss-assets.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mss.meperia.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: acnA9HPaayImIzt3MX611JKnMOmiNNVA5YovFSUNLtsp6yn8vvfL412MlkWAPdDus5hIZT55RW0=
x-amz-request-id: 07S16BA1B1DAYY9V
Date: Mon, 19 Sep 2022 18:17:33 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Mon, 12 Sep 2022 01:39:18 GMT
ETag: "5a4e21f18f42701ecffb59973355ac62"
x-amz-meta-s3cmd-attrs: atime:1662946741/ctime:1662946741/gid:1000/gname:ubuntu/md5:5a4e21f18f42701ecffb59973355ac62/mode:33204/mtime:1662946741/uid:1000/uname:ubuntu
Content-Encoding: gzip
x-amz-version-id: HrqTHWxlvPVVpEVcR2IELUKTj6a6MfAm
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 5480
msss-assets.s3.amazonaws.com/production/javascripts/common_packaged.js?1662946777
54.231.164.121200 OK 32 kB URL HTTP/1.1 msss-assets.s3.amazonaws.com/production/javascripts/common_packaged.js?1662946777
IP 54.231.164.121:0
File type ASCII text, with very long lines (62602)
Hash 98cc444e53451d20f76ec431d2207f40
d3ae16eccb4e89c3cfaa1d8243c6a0bde9419b51
f7d04dfb91dd833a922e7133314477f5610cd3b73cf898fce5f4b85bd32f481f
GET /production/javascripts/common_packaged.js?1662946777 HTTP/1.1
Host: msss-assets.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mss.meperia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 4UOIor1nuQ2P+DW6UTaS9Guax++0W5vejjrmsD5rb/U3XYBfZ0CNXIyIhxS+m6hT16pMe8qHEJY=
x-amz-request-id: 07S4516QEWS554K8
Date: Mon, 19 Sep 2022 18:17:33 GMT
x-amz-replication-status: COMPLETED
Last-Modified: Mon, 12 Sep 2022 01:38:11 GMT
ETag: "98cc444e53451d20f76ec431d2207f40"
x-amz-meta-s3cmd-attrs: atime:1662946672/ctime:1662946674/gid:1000/gname:ubuntu/md5:98cc444e53451d20f76ec431d2207f40/mode:33204/mtime:1662946672/uid:1000/uname:ubuntu
Content-Encoding: gzip
x-amz-version-id: 4XPl51EcEr3vrtt.SQetsCzJA80Rlgbe
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 31833
msss-assets.s3.amazonaws.com/production/images/ad_big_images/waiting_img.gif?1662715878
54.231.164.121200 OK 2.0 kB URL HTTP/1.1 msss-assets.s3.amazonaws.com/production/images/ad_big_images/waiting_img.gif?1662715878
IP 54.231.164.121:0
File type GIF image data, version 89a, 228 x 202\012- data
Hash 698e1f341d14647279637e6951d4bed9
ea800373c9534469df8e37620be36d1a8b7c3cad
f4c2327c59df7109f4c3dfed5b80656b559173cf58145a2fee9a4818fd55864b
GET /production/images/ad_big_images/waiting_img.gif?1662715878 HTTP/1.1
Host: msss-assets.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mss.meperia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: QpZByZVHOuwNDbCxJzueS8uIueE0fVSlhz0iv9XruEJ9LeLAy1gnllEvTAsqCo8Hf/JZEVBp/Pg=
x-amz-request-id: 07SC56H45F81KB11
Date: Mon, 19 Sep 2022 18:17:33 GMT
Last-Modified: Tue, 10 Dec 2019 02:19:32 GMT
ETag: "698e1f341d14647279637e6951d4bed9"
x-amz-meta-s3cmd-attrs: uid:1000/gname:ubuntu/uname:ubuntu/gid:1000/mode:33204/mtime:1410746090/atime:1410746090/ctime:1410746090
Cache-Control: max-age=604800
x-amz-version-id: 3qXByL91oJU2NR6rvuvBE3zWEDL7UbWz
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 2011
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 45f95aa258ab932ac2f8a33ff7944ffe
8f52b66e897dab7cb160d481886805ea216f407f
de4fd2aaa566b601e82c38806ec8ea84110b1d63f15efe48186f5bcf70847488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 18:17:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mss.meperia.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Mon, 19 Sep 2022 16:41:12 GMT
expires: Mon, 19 Sep 2022 18:41:12 GMT
cache-control: public, max-age=7200
age: 5780
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 45f95aa258ab932ac2f8a33ff7944ffe
8f52b66e897dab7cb160d481886805ea216f407f
de4fd2aaa566b601e82c38806ec8ea84110b1d63f15efe48186f5bcf70847488
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 19 Sep 2022 18:17:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
msss-assets.s3.amazonaws.com/production/favicon2.ico?1662715878
54.231.164.121200 OK 26 kB URL HTTP/1.1 msss-assets.s3.amazonaws.com/production/favicon2.ico?1662715878
IP 54.231.164.121:0
File type MS Windows icon resource - 1 icon, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel\012- data
Hash f091f32967b9c4597683a807dc09e0bf
d7729a4c43b8f8a4ba280bb101666e8f463ccfeb
6237c1a67cb3c75d7aad83bf4f600a390d567aee7a911d244c7975b71e90efc9
GET /production/favicon2.ico?1662715878 HTTP/1.1
Host: msss-assets.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mss.meperia.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: gTm65YbJUs9/qEC00klZuOTxW6mgc/aK393k3FP9mV3Y/jSQ3F7aPuRyrH1fcwIUkQXLGuoFnIo=
x-amz-request-id: 07S481HX2CGAENJG
Date: Mon, 19 Sep 2022 18:17:33 GMT
Last-Modified: Tue, 24 Mar 2020 01:25:10 GMT
ETag: "f091f32967b9c4597683a807dc09e0bf"
x-amz-version-id: pMHIAifpBC0TklxbwCAZUPNe_DQaed2i
Accept-Ranges: bytes
Content-Type: image/vnd.microsoft.icon
Server: AmazonS3
Content-Length: 26451
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14113
Expires: Mon, 19 Sep 2022 22:12:46 GMT
Date: Mon, 19 Sep 2022 18:17:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14113
Expires: Mon, 19 Sep 2022 22:12:46 GMT
Date: Mon, 19 Sep 2022 18:17:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14113
Expires: Mon, 19 Sep 2022 22:12:46 GMT
Date: Mon, 19 Sep 2022 18:17:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 85aa2dcaf76d25900c78356e5e1c254f
46cd66c9921a162c9e67cfa7d85bc82e5967d531
741815f43b76661b9edde512bc9061cb4bc659b297e7d822bf8e68e5aac9d23d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "741815F43B76661B9EDDE512BC9061CB4BC659B297E7D822BF8E68E5AAC9D23D"
Last-Modified: Sun, 18 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14113
Expires: Mon, 19 Sep 2022 22:12:46 GMT
Date: Mon, 19 Sep 2022 18:17:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4098577adb98eae5ba4a8b5e143df71
b0ad467f2837d103f8a96fb732bd34176c4c7110
83aa54020ffc684690dfb58d78608411de38ab02fee50808a8243c6b388e77c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd460ce9f-ea5c-436e-8b02-8ec8233b9681.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5064
x-amzn-requestid: 985dbd5b-3e8a-4e22-a974-1effa6c99112
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrOS8FyBoAMFrCQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632790df-201df5494f1513b91eefe9d5;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:42:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: GIhj3a2-SwYu2w4mLx7JiIJzFfV82-Et89ORRsx5fsGOx9nttPlCxA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:57:13 GMT
etag: "b0ad467f2837d103f8a96fb732bd34176c4c7110"
content-type: image/jpeg
age: 73220
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc349860f-d61d-42ea-8638-7ebcefe23e00.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc349860f-d61d-42ea-8638-7ebcefe23e00.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1976af26c5d4a671c8298bffafc90ce3
9b17ad091f936a8dd50126ce9ad5f9a7fd7d55f8
2349b9e1233d43cf8d0ff273f8bf6147dda00314fd631a81cb278ce0b8e32684
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc349860f-d61d-42ea-8638-7ebcefe23e00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12545
x-amzn-requestid: 6720348a-0245-486b-a978-2df18eb4bd43
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yl7YKHayIAMFo1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6325729a-2601f775219651777cba839c;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 07:09:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NdQpOGtyA7AxpmkvFf3K3IrkgSku9QQzQ4BvpoRfTv16Kj1Gr6n7oA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 06:11:29 GMT
age: 43564
etag: "9b17ad091f936a8dd50126ce9ad5f9a7fd7d55f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d3e70b2859ca89b353682d03f6b46b93
ebd83f29edd95217dfa4f4c7a94eddf34dd58b14
43ad8f8b0a664bbec39e0410c1201498a2d2e36e5bd7d5ece8d65b15230ec50b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a91bc33-86f4-4bda-af70-da083ceb7c72.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10894
x-amzn-requestid: f7aad96e-af80-4db7-8bc1-d1e09a9b37e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YeJQGHhOIAMFYuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322559a-538534e91448af217c59ab3d;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 22:28:42 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: P7aZQzmAvqn2rcHJUQjHo0Dcg8dsrqseey5mNOabfq1b857M4SUMDQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 10:33:00 GMT
age: 27873
etag: "ebd83f29edd95217dfa4f4c7a94eddf34dd58b14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87c956a4-db39-47fc-87b0-5c576f15441b.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87c956a4-db39-47fc-87b0-5c576f15441b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 97d0fb7f2e5c544eb87b803a153d8763
a247157989727bf0d4598679f7f0cc9646299cbd
cfff9f9aaad7b3dc4949c917df6096ee65a3392d8a8dceddf94261af5480ac56
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87c956a4-db39-47fc-87b0-5c576f15441b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8989
x-amzn-requestid: cb45074f-f130-41a6-b253-6bc6654e8ebb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yn6KXH3gIAMFwnA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63263d75-32ffacde1e1eb46117c61fe9;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 21:34:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: C7GRi8GhZIuvpTxonPcqkhCseHo_gczXhZ-0vaF1FasWdd3WCWV_dA==
via: 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 19 Sep 2022 07:49:42 GMT
age: 37671
etag: "a247157989727bf0d4598679f7f0cc9646299cbd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f003d8b6e12692fb16dddd6827deead8
786c333cf08456aea446a55c547520572e1c2df9
d79ea50cfc0f237b3de8f1826cbae1de0b1dbc632a5a06b08d9640abedded935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c670b93-3941-4322-a938-e74eba949ad6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11919
x-amzn-requestid: 2f547c1f-2f5d-4707-8f6c-fe9dfff51383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfS4FI9oAMFScw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632145ab-3c967f2653d06c1c079f88c1;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:08:27 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: xG9XQItrQEJXCW9JRcI6aDELQKCTOlnwq1Xg5_vQcqCPNtHGWkScFw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 22:00:17 GMT
age: 73036
etag: "786c333cf08456aea446a55c547520572e1c2df9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1105b56cf779b6df1cbd081bbd0cda50
58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c
10c1f0433baf51e06565ff905688075aaba8fec0a8b3f9cef34168e297f94c2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3e5b5676-18df-4d43-8bbd-b85ffe4f1a94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5866
x-amzn-requestid: 3a7db39d-cd4f-486f-954b-39fc7464706c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YrNeAE67IAMFSoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63278f8c-66a419ac7fbd977f5f41061b;Sampled=0
x-amzn-remapped-date: Sun, 18 Sep 2022 21:37:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: TdVz72qdwMdsuW1WsOq1qEZk2vmbXJlbppLTTsZ9PlrmN7GEph0dyQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sun, 18 Sep 2022 21:53:39 GMT
etag: "58c5d6f8ba1d3236d788ac55ff7cb2ec7863fb5c"
content-type: image/jpeg
age: 73434
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
meperiab2cprod.b2clogin.com/meperiab2cprod.onmicrosoft.com/oauth2/v2.0/authorize?p=B2C_1A_YRMC_signin&client_id=8133731e-d429-4575-a101-e44dd1576103&nonce=defaultNonce&redirect_uri=https://mss.meperia.com/production/ad_callback&scope=openid&response_type=id_token&prompt=login&response_mode=query
40.126.32.69302 Found 1.2 kB URL HTTP/1.1 meperiab2cprod.b2clogin.com/meperiab2cprod.onmicrosoft.com/oauth2/v2.0/authorize?p=B2C_1A_YRMC_signin&client_id=8133731e-d429-4575-a101-e44dd1576103&nonce=defaultNonce&redirect_uri=https://mss.meperia.com/production/ad_callback&scope=openid&response_type=id_token&prompt=login&response_mode=query
IP 40.126.32.69:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1174), with CRLF line terminators
Hash 5c2f0e9ff3e3bd4168deea1d93be637e
dbbc6050bd33631b16388d2d72823bb091f4f5c9
529910e0289d4eea7fd0849b302d384711d93d996770fb036b5998b323d90e96
GET /meperiab2cprod.onmicrosoft.com/oauth2/v2.0/authorize?p=B2C_1A_YRMC_signin&client_id=8133731e-d429-4575-a101-e44dd1576103&nonce=defaultNonce&redirect_uri=https://mss.meperia.com/production/ad_callback&scope=openid&response_type=id_token&prompt=login&response_mode=query HTTP/1.1
Host: meperiab2cprod.b2clogin.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mss.meperia.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-store, must-revalidate, no-cache
Content-Type: text/html; charset=utf-8
Location: https://adfs.yumaregional.org/adfs/ls/?SAMLRequest=tVLLbsIwEPyVyPckJA0NtQApgKpWAhUBrdReosXZgKXYTr1O1f59k9D3gVtPlnd2vDM7HhOoquZZ4456g88NkvNeVaWJd8CENVZzAySJa1BI3Am%2bzVZLHgcDDkRonTSaebeLCcuLEV4WEcQ%2bDNO9nyRp5I8gGfmiiIZlLJJoD8C8B7TUciasfaIlEjV4q8mBdm1pEMf%2b4MqPrnbRiEcpv0iDeHgxSC%2fTJ%2bYtWnFSg%2bvZR%2bdq4mEIRUnBW6PA4qEFoAqMPfTVsKKQedfGCuztTVgJFWE3c91Kly%2f4VVlb44ww1UzqQurDedv7UxPxm91u7a%2fvtjvmZZ%2brmBtNjUK7RfsiBd5vlt9SFdZoJexjUVtTBO1ZmYPUgTDqL2a0ksIaMqXr4Vk8z6Msf9ys5vkMCMM%2btpDIhF8piI%2fR7EeA9Xkr9YdvNh133bxPw3Y7U%2bDOU7uKLPyyb%2bWonXRvbPoPVsfhD2nT0%2b33h52%2bAw%3d%3d&RelayState=StateProperties%3deyJUSUQiOiI0MmNhYWEwMy0zZWYzLTQ5NjEtOWM2My02NWY1ZTA5NjUyNGMifQ&SigAlg=http%3a%2f%2fwww.w3.org%2f2001%2f04%2fxmldsig-more%23rsa-sha256&Signature=KIA0FssgHdDX9ZrHiZW3gcHiC0ZTFnZcYtlw12BIXkpp7FAdGB9LUZINwn6HFfgqLpD1Rru7vaPCsxSSSKpmSHQa3QAgatn%2f%2bFPDQilYYffnd07zSuXxLy1tIsqn8dltAXuJG6leQi0jOobFDO2AX4Cg%2bzkOUbq57zCw%2bJg7Loa2bMU0zRud1uRcxQHl8EAbHErwqZv2Hty2xbTjhckIBSjUqgnK05HbRe%2b%2bvklIkgX3ZvoKAha7Y03F4%2fL0YTAfjgx3mEJp2%2f9jXbm3ugN4qNUTEZp2Pptv9wIJjZmAX6FkvvB811DqCIh7f6wpiWZfCL%2baH4kRyW%2bTyQnVLySQ0Q%3d%3d
x-ms-gateway-requestid: 9e2d321b-d1df-433b-b617-4b6a2cb5f239
X-Frame-Options: DENY
Public: OPTIONS,TRACE,GET,HEAD,POST
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Set-Cookie: x-ms-cpim-rc:42caaa03-3ef3-4961-9c63-65f5e096524c=OFBXL1dHRHpuUnZLa3VEbmwxc0ZpcUJycjhTRnczczNrQ05JZnA2cTJnRVI5T1VkVEE5WExRR3psaGR4WW8zUFF1WVROTmZvL3Y0QTdOMmFNY1NpWEE9PTsyMDIyLTA5LTE5VDE4OjE3OjM3LjI4NDI3Nlo7NThZcFdFYStvOUp1alZNOUhEYUlCUT09O3siVGFyZ2V0RW50aXR5IjoiQ29udG9zb0V4Y2hhbmdlIiwiT3JjaGVzdHJhdGlvblN0ZXAiOjJ9; domain=meperiab2cprod.b2clogin.com; path=/; SameSite=None; secure; HttpOnly
x-ms-cpim-cache|a6rkqvm-yumcy2x14jzsta_0=m1.rtp9QdrBte+HZ2kO.t1eNj4IugC+f7vczKhr/XQ==.0.BmWI2fDExboM/z8ppvpR7YmpNnd/gU3hlgmIJUVelldo94Xluw3gWk+HfrKfXOpKZLd2RW6lINrGoCjj7Qojizub+YrDKnq2QYMdV0e5ezM3SdScV+mq6g5/F1/yOQYI1sAw5N8y6ATHnTqrXeZAmJ/5e89qxKG6XW14C9b8VZIDbKwV+5XJiSstGBZxduT3ghoMwk99WWMz2I0AhbAZPRpWd2Iq2+55foOe8W3fSUCRyhNOWeBB5eKd1f0byqSckV15eS5kUzqA+1OZEPLiVlvLi5L5P5iXQJwxrD10mXsOr2Ux6bsvXDN/O/lARiMiCFDgs/LH7h1O6AcFwlZGD9rKC/8Tg7TRd6kXDfekv5zMg2ERNhde/9xyCQxNzno/gGaA0OPgBgSOokD2yK0r1dIzoRXEV0bkW3COMgDTrUW7XOaoGuxrRLFRd7LK/pqMD4CrJqAJKCLs4WV237RSxqpQ9eX69PAoC8AJ5/dNQDIK6P4NwEjfe4TYRjnl/MPAEQDeQdpjEva+Q9VxmpV8zzLIAiNclylK1l5Fa53eJ9z6DzPViFtDiXdZhrcPkn9YNx2fWjKF/v1EqW5YJie6pI5krpfEcf1je5Iqemst43d4eB3CRSW2RiK4/YG/0PMEbAZ6qnT2M9bFiu3Sdfv3N49pVgxht4OA++hnIRjKmbom3Lqnq0rH8ljI3C3qqRaQwmXexi1h9Pl/SaxirKKAuig7kCqS530LzjPWPj7F9eFLPwxQ7dpe35okhzsET1aapifvNfFb4qj8QyhxC9ituzfH6NoMqDN0VNcaW5ZNyqHRX06zG1j5rfG1+TjLkSUFD9pBnTX3KlWOMUQPVdHVNqcCCvJub3zVnKZXwl+WVAN4ZpDonhZB1OSDgXwS/R/YLGpiUu6lS1LUpc7rKWW9RuNdXy/3pvCnjWuUhtf4dCdL7JbeW9gbKif6C9f8iM8mNdCm9YqnswfRxBtp5CfdHsGOnFXki1dfwEjEbW4ODxpTtrmrKTlLUEQjt9UGWioF+sTxNewVEVTHg4vIdxqNzIxj6hwkK33lbKwu5UZ/2A==; domain=meperiab2cprod.b2clogin.com; path=/; SameSite=None; secure; HttpOnly
x-ms-cpim-trans=eyJUX0RJQyI6W3siSSI6IjQyY2FhYTAzLTNlZjMtNDk2MS05YzYzLTY1ZjVlMDk2NTI0YyIsIlQiOiJtZXBlcmlhYjJjcHJvZC5vbm1pY3Jvc29mdC5jb20iLCJQIjoiQjJDXzFBX1lSTUNfc2lnbmluIiwiQyI6IjgxMzM3MzFlLWQ0MjktNDU3NS1hMTAxLWU0NGRkMTU3NjEwMyIsIlMiOjEsIk0iOnt9LCJEIjowfV0sIkNfSUQiOiI0MmNhYWEwMy0zZWYzLTQ5NjEtOWM2My02NWY1ZTA5NjUyNGMifQ==; domain=meperiab2cprod.b2clogin.com; path=/; SameSite=None; secure; HttpOnly
Allow: OPTIONS, TRACE, GET, HEAD, POST
Date: Mon, 19 Sep 2022 18:17:36 GMT
Content-Length: 1246
ocsp.godaddy.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash f4df767f674cb661e10f4b32f3ec4465
7f9fe295d63aedf5aefd764663a163a628a4321e
27ec388588886899fdfde68103a580b229788f74b72726ee000aa012564daa9e
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 19 Sep 2022 18:17:38 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 18 Sep 2022 20:52:56 GMT
Expires: Mon, 19 Sep 2022 20:52:56 GMT
ETag: "7f9fe295d63aedf5aefd764663a163a628a4321e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
adfs.yumaregional.org/adfs/ls/?SAMLRequest=tVLLbsIwEPyVyPckJA0NtQApgKpWAhUBrdReosXZgKXYTr1O1f59k9D3gVtPlnd2vDM7HhOoquZZ4456g88NkvNeVaWJd8CENVZzAySJa1BI3Am%2bzVZLHgcDDkRonTSaebeLCcuLEV4WEcQ%2bDNO9nyRp5I8gGfmiiIZlLJJoD8C8B7TUciasfaIlEjV4q8mBdm1pEMf%2b4MqPrnbRiEcpv0iDeHgxSC%2fTJ%2bYtWnFSg%2bvZR%2bdq4mEIRUnBW6PA4qEFoAqMPfTVsKKQedfGCuztTVgJFWE3c91Kly%2f4VVlb44ww1UzqQurDedv7UxPxm91u7a%2fvtjvmZZ%2brmBtNjUK7RfsiBd5vlt9SFdZoJexjUVtTBO1ZmYPUgTDqL2a0ksIaMqXr4Vk8z6Msf9ys5vkMCMM%2btpDIhF8piI%2fR7EeA9Xkr9YdvNh133bxPw3Y7U%2bDOU7uKLPyyb%2bWonXRvbPoPVsfhD2nT0%2b33h52%2bAw%3d%3d&RelayState=StateProperties%3deyJUSUQiOiI0MmNhYWEwMy0zZWYzLTQ5NjEtOWM2My02NWY1ZTA5NjUyNGMifQ&SigAlg=http%3a%2f%2fwww.w3.org%2f2001%2f04%2fxmldsig-more%23rsa-sha256&Signature=KIA0FssgHdDX9ZrHiZW3gcHiC0ZTFnZcYtlw12BIXkpp7FAdGB9LUZINwn6HFfgqLpD1Rru7vaPCsxSSSKpmSHQa3QAgatn%2f%2bFPDQilYYffnd07zSuXxLy1tIsqn8dltAXuJG6leQi0jOobFDO2AX4Cg%2bzkOUbq57zCw%2bJg7Loa2bMU0zRud1uRcxQHl8EAbHErwqZv2Hty2xbTjhckIBSjUqgnK05HbRe%2b%2bvklIkgX3ZvoKAha7Y03F4%2fL0YTAfjgx3mEJp2%2f9jXbm3ugN4qNUTEZp2Pptv9wIJjZmAX6FkvvB811DqCIh7f6wpiWZfCL%2baH4kRyW%2bTyQnVLySQ0Q%3d%3d
74.87.148.121200 OK 18 kB URL HTTP/1.1 adfs.yumaregional.org/adfs/ls/?SAMLRequest=tVLLbsIwEPyVyPckJA0NtQApgKpWAhUBrdReosXZgKXYTr1O1f59k9D3gVtPlnd2vDM7HhOoquZZ4456g88NkvNeVaWJd8CENVZzAySJa1BI3Am%2bzVZLHgcDDkRonTSaebeLCcuLEV4WEcQ%2bDNO9nyRp5I8gGfmiiIZlLJJoD8C8B7TUciasfaIlEjV4q8mBdm1pEMf%2b4MqPrnbRiEcpv0iDeHgxSC%2fTJ%2bYtWnFSg%2bvZR%2bdq4mEIRUnBW6PA4qEFoAqMPfTVsKKQedfGCuztTVgJFWE3c91Kly%2f4VVlb44ww1UzqQurDedv7UxPxm91u7a%2fvtjvmZZ%2brmBtNjUK7RfsiBd5vlt9SFdZoJexjUVtTBO1ZmYPUgTDqL2a0ksIaMqXr4Vk8z6Msf9ys5vkMCMM%2btpDIhF8piI%2fR7EeA9Xkr9YdvNh133bxPw3Y7U%2bDOU7uKLPyyb%2bWonXRvbPoPVsfhD2nT0%2b33h52%2bAw%3d%3d&RelayState=StateProperties%3deyJUSUQiOiI0MmNhYWEwMy0zZWYzLTQ5NjEtOWM2My02NWY1ZTA5NjUyNGMifQ&SigAlg=http%3a%2f%2fwww.w3.org%2f2001%2f04%2fxmldsig-more%23rsa-sha256&Signature=KIA0FssgHdDX9ZrHiZW3gcHiC0ZTFnZcYtlw12BIXkpp7FAdGB9LUZINwn6HFfgqLpD1Rru7vaPCsxSSSKpmSHQa3QAgatn%2f%2bFPDQilYYffnd07zSuXxLy1tIsqn8dltAXuJG6leQi0jOobFDO2AX4Cg%2bzkOUbq57zCw%2bJg7Loa2bMU0zRud1uRcxQHl8EAbHErwqZv2Hty2xbTjhckIBSjUqgnK05HbRe%2b%2bvklIkgX3ZvoKAha7Y03F4%2fL0YTAfjgx3mEJp2%2f9jXbm3ugN4qNUTEZp2Pptv9wIJjZmAX6FkvvB811DqCIh7f6wpiWZfCL%2baH4kRyW%2bTyQnVLySQ0Q%3d%3d
IP 74.87.148.121:0
ASN #20001 TWC-20001-PACWEST
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document textAlgol 68 source text\012- Pascal source, ASCII text, with very long lines (1260), with CRLF line terminators
Hash eef0befe48df0a087d86f6a64265a1f0
8cc10e0856264447e3cfad410c4d8a54d628eb41
75cbb263a4aa1ce1cf1104f3ef6663a6f640f7e215b5428ce474598db67dda51
Analyzer Verdict Alert urlquery Phishing website detected
urlquery Phishing website detected
urlquery Phishing website detected
GET /adfs/ls/?SAMLRequest=tVLLbsIwEPyVyPckJA0NtQApgKpWAhUBrdReosXZgKXYTr1O1f59k9D3gVtPlnd2vDM7HhOoquZZ4456g88NkvNeVaWJd8CENVZzAySJa1BI3Am%2bzVZLHgcDDkRonTSaebeLCcuLEV4WEcQ%2bDNO9nyRp5I8gGfmiiIZlLJJoD8C8B7TUciasfaIlEjV4q8mBdm1pEMf%2b4MqPrnbRiEcpv0iDeHgxSC%2fTJ%2bYtWnFSg%2bvZR%2bdq4mEIRUnBW6PA4qEFoAqMPfTVsKKQedfGCuztTVgJFWE3c91Kly%2f4VVlb44ww1UzqQurDedv7UxPxm91u7a%2fvtjvmZZ%2brmBtNjUK7RfsiBd5vlt9SFdZoJexjUVtTBO1ZmYPUgTDqL2a0ksIaMqXr4Vk8z6Msf9ys5vkMCMM%2btpDIhF8piI%2fR7EeA9Xkr9YdvNh133bxPw3Y7U%2bDOU7uKLPyyb%2bWonXRvbPoPVsfhD2nT0%2b33h52%2bAw%3d%3d&RelayState=StateProperties%3deyJUSUQiOiI0MmNhYWEwMy0zZWYzLTQ5NjEtOWM2My02NWY1ZTA5NjUyNGMifQ&SigAlg=http%3a%2f%2fwww.w3.org%2f2001%2f04%2fxmldsig-more%23rsa-sha256&Signature=KIA0FssgHdDX9ZrHiZW3gcHiC0ZTFnZcYtlw12BIXkpp7FAdGB9LUZINwn6HFfgqLpD1Rru7vaPCsxSSSKpmSHQa3QAgatn%2f%2bFPDQilYYffnd07zSuXxLy1tIsqn8dltAXuJG6leQi0jOobFDO2AX4Cg%2bzkOUbq57zCw%2bJg7Loa2bMU0zRud1uRcxQHl8EAbHErwqZv2Hty2xbTjhckIBSjUqgnK05HbRe%2b%2bvklIkgX3ZvoKAha7Y03F4%2fL0YTAfjgx3mEJp2%2f9jXbm3ugN4qNUTEZp2Pptv9wIJjZmAX6FkvvB811DqCIh7f6wpiWZfCL%2baH4kRyW%2bTyQnVLySQ0Q%3d%3d HTTP/1.1
Host: adfs.yumaregional.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mss.meperia.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store
Pragma: no-cache
Content-Length: 17988
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-HTTPAPI/2.0 Microsoft-HTTPAPI/2.0
x-frame-options: DENY
Date: Mon, 19 Sep 2022 18:17:37 GMT
adfs.yumaregional.org/adfs/portal/css/style.css?id=D74D4D6943F32AE6F7F11D14D601DBB0E1A58919176EE512150366B6279AAF99
74.87.148.121200 OK 7.8 kB URL HTTP/1.1 adfs.yumaregional.org/adfs/portal/css/style.css?id=D74D4D6943F32AE6F7F11D14D601DBB0E1A58919176EE512150366B6279AAF99
IP 74.87.148.121:0
ASN #20001 TWC-20001-PACWEST
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 81d1717dd8379e22c8ab66f8f83dc181
67618f6e2a348cdd7c7cb8b6b6b10374ef87a0be
d74d4d6943f32ae6f7f11d14d601dbb0e1a58919176ee512150366b6279aaf99
GET /adfs/portal/css/style.css?id=D74D4D6943F32AE6F7F11D14D601DBB0E1A58919176EE512150366B6279AAF99 HTTP/1.1
Host: adfs.yumaregional.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adfs.yumaregional.org/adfs/ls/?SAMLRequest=tVLLbsIwEPyVyPckJA0NtQApgKpWAhUBrdReosXZgKXYTr1O1f59k9D3gVtPlnd2vDM7HhOoquZZ4456g88NkvNeVaWJd8CENVZzAySJa1BI3Am%2bzVZLHgcDDkRonTSaebeLCcuLEV4WEcQ%2bDNO9nyRp5I8gGfmiiIZlLJJoD8C8B7TUciasfaIlEjV4q8mBdm1pEMf%2b4MqPrnbRiEcpv0iDeHgxSC%2fTJ%2bYtWnFSg%2bvZR%2bdq4mEIRUnBW6PA4qEFoAqMPfTVsKKQedfGCuztTVgJFWE3c91Kly%2f4VVlb44ww1UzqQurDedv7UxPxm91u7a%2fvtjvmZZ%2brmBtNjUK7RfsiBd5vlt9SFdZoJexjUVtTBO1ZmYPUgTDqL2a0ksIaMqXr4Vk8z6Msf9ys5vkMCMM%2btpDIhF8piI%2fR7EeA9Xkr9YdvNh133bxPw3Y7U%2bDOU7uKLPyyb%2bWonXRvbPoPVsfhD2nT0%2b33h52%2bAw%3d%3d&RelayState=StateProperties%3deyJUSUQiOiI0MmNhYWEwMy0zZWYzLTQ5NjEtOWM2My02NWY1ZTA5NjUyNGMifQ&SigAlg=http%3a%2f%2fwww.w3.org%2f2001%2f04%2fxmldsig-more%23rsa-sha256&Signature=KIA0FssgHdDX9ZrHiZW3gcHiC0ZTFnZcYtlw12BIXkpp7FAdGB9LUZINwn6HFfgqLpD1Rru7vaPCsxSSSKpmSHQa3QAgatn%2f%2bFPDQilYYffnd07zSuXxLy1tIsqn8dltAXuJG6leQi0jOobFDO2AX4Cg%2bzkOUbq57zCw%2bJg7Loa2bMU0zRud1uRcxQHl8EAbHErwqZv2Hty2xbTjhckIBSjUqgnK05HbRe%2b%2bvklIkgX3ZvoKAha7Y03F4%2fL0YTAfjgx3mEJp2%2f9jXbm3ugN4qNUTEZp2Pptv9wIJjZmAX6FkvvB811DqCIh7f6wpiWZfCL%2baH4kRyW%2bTyQnVLySQ0Q%3d%3d
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Length: 7812
Content-Type: text/css
Expires: Wed, 19 Oct 2022 18:17:38 GMT
ETag: D74D4D6943F32AE6F7F11D14D601DBB0E1A58919176EE512150366B6279AAF99
Server: Microsoft-HTTPAPI/2.0 Microsoft-HTTPAPI/2.0
Date: Mon, 19 Sep 2022 18:17:37 GMT
adfs.yumaregional.org/favicon.ico
74.87.148.121503 Service Unavailable 326 B URL HTTP/1.1 adfs.yumaregional.org/favicon.ico
IP 74.87.148.121:0
ASN #20001 TWC-20001-PACWEST
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash bf3231d7fad0292d818aac7d6d669f00
c29683b3788d729a5fc4504279d10e31da60745c
fb2d9f058c2010c57f86a05ae33d282f33e3825290c66b8b120cd177416c6bdf
GET /favicon.ico HTTP/1.1
Host: adfs.yumaregional.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adfs.yumaregional.org/adfs/ls/?SAMLRequest=tVLLbsIwEPyVyPckJA0NtQApgKpWAhUBrdReosXZgKXYTr1O1f59k9D3gVtPlnd2vDM7HhOoquZZ4456g88NkvNeVaWJd8CENVZzAySJa1BI3Am%2bzVZLHgcDDkRonTSaebeLCcuLEV4WEcQ%2bDNO9nyRp5I8gGfmiiIZlLJJoD8C8B7TUciasfaIlEjV4q8mBdm1pEMf%2b4MqPrnbRiEcpv0iDeHgxSC%2fTJ%2bYtWnFSg%2bvZR%2bdq4mEIRUnBW6PA4qEFoAqMPfTVsKKQedfGCuztTVgJFWE3c91Kly%2f4VVlb44ww1UzqQurDedv7UxPxm91u7a%2fvtjvmZZ%2brmBtNjUK7RfsiBd5vlt9SFdZoJexjUVtTBO1ZmYPUgTDqL2a0ksIaMqXr4Vk8z6Msf9ys5vkMCMM%2btpDIhF8piI%2fR7EeA9Xkr9YdvNh133bxPw3Y7U%2bDOU7uKLPyyb%2bWonXRvbPoPVsfhD2nT0%2b33h52%2bAw%3d%3d&RelayState=StateProperties%3deyJUSUQiOiI0MmNhYWEwMy0zZWYzLTQ5NjEtOWM2My02NWY1ZTA5NjUyNGMifQ&SigAlg=http%3a%2f%2fwww.w3.org%2f2001%2f04%2fxmldsig-more%23rsa-sha256&Signature=KIA0FssgHdDX9ZrHiZW3gcHiC0ZTFnZcYtlw12BIXkpp7FAdGB9LUZINwn6HFfgqLpD1Rru7vaPCsxSSSKpmSHQa3QAgatn%2f%2bFPDQilYYffnd07zSuXxLy1tIsqn8dltAXuJG6leQi0jOobFDO2AX4Cg%2bzkOUbq57zCw%2bJg7Loa2bMU0zRud1uRcxQHl8EAbHErwqZv2Hty2xbTjhckIBSjUqgnK05HbRe%2b%2bvklIkgX3ZvoKAha7Y03F4%2fL0YTAfjgx3mEJp2%2f9jXbm3ugN4qNUTEZp2Pptv9wIJjZmAX6FkvvB811DqCIh7f6wpiWZfCL%2baH4kRyW%2bTyQnVLySQ0Q%3d%3d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 503 Service Unavailable
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Mon, 19 Sep 2022 18:17:37 GMT
Connection: close
Content-Length: 326
adfs.yumaregional.org/adfs/portal/illustration/illustration.png?id=183128A3C941EDE3D9199FA37D6AA90E0A7DFE101B37D10B4FEDA0CF35E11AFD
74.87.148.121200 OK 0 B URL HTTP/1.1 adfs.yumaregional.org/adfs/portal/illustration/illustration.png?id=183128A3C941EDE3D9199FA37D6AA90E0A7DFE101B37D10B4FEDA0CF35E11AFD
IP 74.87.148.121:0
ASN #20001 TWC-20001-PACWEST
GET /adfs/portal/illustration/illustration.png?id=183128A3C941EDE3D9199FA37D6AA90E0A7DFE101B37D10B4FEDA0CF35E11AFD HTTP/1.1
Host: adfs.yumaregional.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adfs.yumaregional.org/adfs/ls/?SAMLRequest=tVLLbsIwEPyVyPckJA0NtQApgKpWAhUBrdReosXZgKXYTr1O1f59k9D3gVtPlnd2vDM7HhOoquZZ4456g88NkvNeVaWJd8CENVZzAySJa1BI3Am%2bzVZLHgcDDkRonTSaebeLCcuLEV4WEcQ%2bDNO9nyRp5I8gGfmiiIZlLJJoD8C8B7TUciasfaIlEjV4q8mBdm1pEMf%2b4MqPrnbRiEcpv0iDeHgxSC%2fTJ%2bYtWnFSg%2bvZR%2bdq4mEIRUnBW6PA4qEFoAqMPfTVsKKQedfGCuztTVgJFWE3c91Kly%2f4VVlb44ww1UzqQurDedv7UxPxm91u7a%2fvtjvmZZ%2brmBtNjUK7RfsiBd5vlt9SFdZoJexjUVtTBO1ZmYPUgTDqL2a0ksIaMqXr4Vk8z6Msf9ys5vkMCMM%2btpDIhF8piI%2fR7EeA9Xkr9YdvNh133bxPw3Y7U%2bDOU7uKLPyyb%2bWonXRvbPoPVsfhD2nT0%2b33h52%2bAw%3d%3d&RelayState=StateProperties%3deyJUSUQiOiI0MmNhYWEwMy0zZWYzLTQ5NjEtOWM2My02NWY1ZTA5NjUyNGMifQ&SigAlg=http%3a%2f%2fwww.w3.org%2f2001%2f04%2fxmldsig-more%23rsa-sha256&Signature=KIA0FssgHdDX9ZrHiZW3gcHiC0ZTFnZcYtlw12BIXkpp7FAdGB9LUZINwn6HFfgqLpD1Rru7vaPCsxSSSKpmSHQa3QAgatn%2f%2bFPDQilYYffnd07zSuXxLy1tIsqn8dltAXuJG6leQi0jOobFDO2AX4Cg%2bzkOUbq57zCw%2bJg7Loa2bMU0zRud1uRcxQHl8EAbHErwqZv2Hty2xbTjhckIBSjUqgnK05HbRe%2b%2bvklIkgX3ZvoKAha7Y03F4%2fL0YTAfjgx3mEJp2%2f9jXbm3ugN4qNUTEZp2Pptv9wIJjZmAX6FkvvB811DqCIh7f6wpiWZfCL%2baH4kRyW%2bTyQnVLySQ0Q%3d%3d
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Content-Length: 116699
Content-Type: image/png
Expires: Wed, 19 Oct 2022 18:17:39 GMT
ETag: 183128A3C941EDE3D9199FA37D6AA90E0A7DFE101B37D10B4FEDA0CF35E11AFD
Server: Microsoft-HTTPAPI/2.0 Microsoft-HTTPAPI/2.0
Date: Mon, 19 Sep 2022 18:17:38 GMT