| | 20.210.115.203 | 302 Found | 143 B |
URL User Request GET HTTP/2IP20.210.115.203:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerDigiCert Inc Subject*.mgalfacloud.com Fingerprint1E:78:5C:36:A3:D3:84:25:03:28:60:20:61:8D:1A:31:CF:7B:EF:FB ValidityFri, 28 Apr 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT
File typeHTML document, ASCII text Hasha280e6b43e93f3f35e34c62155416191 eebb845035f011cc88c6b7bf756d657d9991d279 803e7c1ede7ec0488cd239d56cb272c27216ad854eb4a1925ba5c4dc5a3417f0
NIDS | Severity | Alert | suricata | medium | ET POLICY HTTP Request to a *.tk domain |
GET / HTTP/1.1
Host: quanyuhe.tk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 303 See Other
Content-Type: text/html; charset=UTF-8
Location: https://quanyuhe.tk/
Strict-Transport-Security: max-age=63072000;includeSubdomains;preload
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
X-Permitted-Cross-Domain-Policies: none
X-XSS-Protection: 0
Content-Security-Policy: default-src 'self' https://dc.services.visualstudio.com https://dc.applicationinsights.microsoft.com; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://az416426.vo.msecnd.net https://legalassets.z22.web.core.windows.net; frame-src 'self' https://*.blob.core.windows.net https://*.azure.com; img-src 'self' data:; frame-ancestors 'self'
Date: Thu, 18 Apr 2024 11:27:09 GMT
Content-Length: 143
|
|
| | 20.210.115.203 | 302 Found | 137 B |
URL User Request GET HTTP/2IP20.210.115.203:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerDigiCert Inc Subject*.mgalfacloud.com Fingerprint1E:78:5C:36:A3:D3:84:25:03:28:60:20:61:8D:1A:31:CF:7B:EF:FB ValidityFri, 28 Apr 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash48f4caafddaebd798ba9d8ab6ec5893b 3cbd5618b0481c7658c8deacad7170027d5263ad d7d4c09a37cd00d1b2d7d2213e6f29792c6ea8d3e7fe9ed6179a64b9d4f540d3
NIDS | Severity | Alert | suricata | medium | ET POLICY HTTP Request to a *.tk domain |
GET / HTTP/1.1
Host: quanyuhe.tk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: private
content-type: text/html; charset=utf-8
location: /Login?ReturnUrl=%2f
set-cookie: __ControllerTempData=AAEAAAD/////AQAAAAAAAAAEAQAAAOIBU3lzdGVtLkNvbGxlY3Rpb25zLkdlbmVyaWMuRGljdGlvbmFyeWAyW1tTeXN0ZW0uU3RyaW5nLCBtc2NvcmxpYiwgVmVyc2lvbj00LjAuMC4wLCBDdWx0dXJlPW5ldXRyYWwsIFB1YmxpY0tleVRva2VuPWI3N2E1YzU2MTkzNGUwODldLFtTeXN0ZW0uT2JqZWN0LCBtc2NvcmxpYiwgVmVyc2lvbj00LjAuMC4wLCBDdWx0dXJlPW5ldXRyYWwsIFB1YmxpY0tleVRva2VuPWI3N2E1YzU2MTkzNGUwODldXQMAAAAHVmVyc2lvbghDb21wYXJlcghIYXNoU2l6ZQADAAgWU3lzdGVtLk9yZGluYWxDb21wYXJlcggAAAAACQIAAAAAAAAABAIAAAAWU3lzdGVtLk9yZGluYWxDb21wYXJlcgEAAAALX2lnbm9yZUNhc2UAAQEL; path=/; secure; HttpOnly
request-context: appId=cid-v1:056a5d82-28d5-4045-832e-023d48676f6a
access-control-expose-headers: Request-Context
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-security-policy: default-src 'self' https://dc.services.visualstudio.com https://dc.applicationinsights.microsoft.com; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://az416426.vo.msecnd.net https://legalassets.z22.web.core.windows.net; frame-src 'self' https://*.blob.core.windows.net https://*.azure.com; img-src 'self' data:; frame-ancestors 'self'
date: Thu, 18 Apr 2024 11:27:12 GMT
content-length: 137
X-Firefox-Spdy: h2
|
|
| quanyuhe.tk/Login?ReturnUrl=%2f | 20.210.115.203 | 302 Found | 432 B |
URL User Request GET HTTP/2quanyuhe.tk/Login?ReturnUrl=%2f IP20.210.115.203:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
CertificateIssuerDigiCert Inc Subject*.mgalfacloud.com Fingerprint1E:78:5C:36:A3:D3:84:25:03:28:60:20:61:8D:1A:31:CF:7B:EF:FB ValidityFri, 28 Apr 2023 00:00:00 GMT - Tue, 07 May 2024 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (360), with CRLF line terminators Hashb31b28d61048a6ac883584028ea032bd 3f27142f0734abe468368331f9eea67fe4e03849 faf1a338ef7e49f54ce7e5724b7f318aac3fcb6313a623c918579d1a3f241fd2
GET /Login?ReturnUrl=%2f HTTP/1.1
Host: quanyuhe.tk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __ControllerTempData=AAEAAAD/////AQAAAAAAAAAEAQAAAOIBU3lzdGVtLkNvbGxlY3Rpb25zLkdlbmVyaWMuRGljdGlvbmFyeWAyW1tTeXN0ZW0uU3RyaW5nLCBtc2NvcmxpYiwgVmVyc2lvbj00LjAuMC4wLCBDdWx0dXJlPW5ldXRyYWwsIFB1YmxpY0tleVRva2VuPWI3N2E1YzU2MTkzNGUwODldLFtTeXN0ZW0uT2JqZWN0LCBtc2NvcmxpYiwgVmVyc2lvbj00LjAuMC4wLCBDdWx0dXJlPW5ldXRyYWwsIFB1YmxpY0tleVRva2VuPWI3N2E1YzU2MTkzNGUwODldXQMAAAAHVmVyc2lvbghDb21wYXJlcghIYXNoU2l6ZQADAAgWU3lzdGVtLk9yZGluYWxDb21wYXJlcggAAAAACQIAAAAAAAAABAIAAAAWU3lzdGVtLk9yZGluYWxDb21wYXJlcgEAAAALX2lnbm9yZUNhc2UAAQEL
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
cache-control: private
content-type: text/html; charset=utf-8
location: https://integrate-pru-prod01.jp.auth0.com/wsfed/urc1aEXFkvuvvdIw1k1s3W1te0v2sv5I?wa=wsignin1.0&wtrealm=urn%3aIntegrate-ifp-pojprod01&wctx=rm%3d0%26id%3durn%253aIntegrate-ifp-pojprod01%26ru%3d%252f&wct=2024-04-18T11%3a27%3a12Z&wreply=https%3a%2f%2fifp-pru01.mgalfacloud.com%2f&whr=prudential-adfs
set-cookie: __ControllerTempData=; path=/; secure
__ControllerTempData=AAEAAAD/////AQAAAAAAAAAEAQAAAOIBU3lzdGVtLkNvbGxlY3Rpb25zLkdlbmVyaWMuRGljdGlvbmFyeWAyW1tTeXN0ZW0uU3RyaW5nLCBtc2NvcmxpYiwgVmVyc2lvbj00LjAuMC4wLCBDdWx0dXJlPW5ldXRyYWwsIFB1YmxpY0tleVRva2VuPWI3N2E1YzU2MTkzNGUwODldLFtTeXN0ZW0uT2JqZWN0LCBtc2NvcmxpYiwgVmVyc2lvbj00LjAuMC4wLCBDdWx0dXJlPW5ldXRyYWwsIFB1YmxpY0tleVRva2VuPWI3N2E1YzU2MTkzNGUwODldXQMAAAAHVmVyc2lvbghDb21wYXJlcghIYXNoU2l6ZQADAAgWU3lzdGVtLk9yZGluYWxDb21wYXJlcggAAAAACQIAAAAAAAAABAIAAAAWU3lzdGVtLk9yZGluYWxDb21wYXJlcgEAAAALX2lnbm9yZUNhc2UAAQEL; path=/; secure; HttpOnly
request-context: appId=cid-v1:056a5d82-28d5-4045-832e-023d48676f6a
access-control-expose-headers: Request-Context
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-permitted-cross-domain-policies: none
x-xss-protection: 0
content-security-policy: default-src 'self' https://dc.services.visualstudio.com https://dc.applicationinsights.microsoft.com; style-src 'self' 'unsafe-inline'; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://az416426.vo.msecnd.net https://legalassets.z22.web.core.windows.net; frame-src 'self' https://*.blob.core.windows.net https://*.azure.com; img-src 'self' data:; frame-ancestors 'self'
date: Thu, 18 Apr 2024 11:27:12 GMT
content-length: 432
X-Firefox-Spdy: h2
|
|
| integrate-pru-prod01.jp.auth0.com/wsfed/urc1aEXFkvuvvdIw1k1s3W1te0v2sv5I?wa=wsignin1.0&wtrealm=urn%3aIntegrate-ifp-pojprod01&wctx=rm%3d0%26id%3durn%253aIntegrate-ifp-pojprod01%26ru%3d%252f&wct=2024-04-18T11%3a27%3a12Z&wreply=https%3a%2f%2fifp-pru01.mgalfacloud.com%2f&whr=prudential-adfs | 172.64.153.26 | 302 Found | 0 B |
URL User Request GET HTTP/2integrate-pru-prod01.jp.auth0.com/wsfed/urc1aEXFkvuvvdIw1k1s3W1te0v2sv5I?wa=wsignin1.0&wtrealm=urn%3aIntegrate-ifp-pojprod01&wctx=rm%3d0%26id%3durn%253aIntegrate-ifp-pojprod01%26ru%3d%252f&wct=2024-04-18T11%3a27%3a12Z&wreply=https%3a%2f%2fifp-pru01.mgalfacloud.com%2f&whr=prudential-adfs IP172.64.153.26:443
CertificateIssuerLet's Encrypt Subjectjp.auth0.com Fingerprint25:49:2D:E2:7F:C9:07:59:AE:82:61:5F:9B:01:49:9A:75:9D:F4:F8 ValidityFri, 23 Feb 2024 05:57:10 GMT - Thu, 23 May 2024 05:57:09 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wsfed/urc1aEXFkvuvvdIw1k1s3W1te0v2sv5I?wa=wsignin1.0&wtrealm=urn%3aIntegrate-ifp-pojprod01&wctx=rm%3d0%26id%3durn%253aIntegrate-ifp-pojprod01%26ru%3d%252f&wct=2024-04-18T11%3a27%3a12Z&wreply=https%3a%2f%2fifp-pru01.mgalfacloud.com%2f&whr=prudential-adfs HTTP/1.1
Host: integrate-pru-prod01.jp.auth0.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 18 Apr 2024 11:27:13 GMT
content-length: 0
location: https://cloudfs.prudentialap.com/adfs/ls/?whr=prudential-adfs&wctx=Y1y2TLiYgjE798pHcaWZAQYrBkiiqoAa&wtrealm=urn%3Aauth0%3Aintegrate-pru-prod01&wa=wsignin1.0
cf-ray: 87644dea38bd0b3d-OSL
cf-cache-status: DYNAMIC
cache-control: no-store, max-age=0, no-transform
strict-transport-security: max-age=31536000; includeSubDomains
pragma: no-cache
set-cookie: did=s%3Av0%3A9a545390-fd76-11ee-99cb-d3f037e1f756.UQsIY%2B%2FXTBwTq0pcKASiByQB6YNqzbjJDx0HCu91Zq0; Max-Age=31557600; Path=/; Expires=Fri, 18 Apr 2025 17:27:13 GMT; HttpOnly; Secure; SameSite=None
auth0=s%3Av1.gadzZXNzaW9ugqZoYW5kbGXEQNnTm_Cyf3J4kT-VmGzZLOsduqL5SxWXp2U1iGVo_950Ih4AbdZtSKsMgJDBLGG3HE-wNKZIDyKX2G9ILK6LV_ymY29va2llg6dleHBpcmVz1_89wBsAZiT4Ea5vcmlnaW5hbE1heEFnZc4PcxQAqHNhbWVTaXRlpG5vbmU.N533VrbI77pso9P9kJYV8Ad%2FR6UfTI3bbtPj%2FJehM6Y; Path=/; Expires=Sun, 21 Apr 2024 11:27:13 GMT; HttpOnly; Secure; SameSite=None
did_compat=s%3Av0%3A9a545390-fd76-11ee-99cb-d3f037e1f756.UQsIY%2B%2FXTBwTq0pcKASiByQB6YNqzbjJDx0HCu91Zq0; Max-Age=31557600; Path=/; Expires=Fri, 18 Apr 2025 17:27:13 GMT; HttpOnly; Secure
auth0_compat=s%3Av1.gadzZXNzaW9ugqZoYW5kbGXEQNnTm_Cyf3J4kT-VmGzZLOsduqL5SxWXp2U1iGVo_950Ih4AbdZtSKsMgJDBLGG3HE-wNKZIDyKX2G9ILK6LV_ymY29va2llg6dleHBpcmVz1_89wBsAZiT4Ea5vcmlnaW5hbE1heEFnZc4PcxQAqHNhbWVTaXRlpG5vbmU.N533VrbI77pso9P9kJYV8Ad%2FR6UfTI3bbtPj%2FJehM6Y; Path=/; Expires=Sun, 21 Apr 2024 11:27:13 GMT; HttpOnly; Secure
x-auth0-requestid: a00ea475da2daa9e778b
x-content-type-options: nosniff
x-ratelimit-limit: 100
x-ratelimit-remaining: 99
x-ratelimit-reset: 1713439634
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9gIh%2Ff6za%2BC7MTt%2BBMvqgaBAr07roVvFrwLFeBxHehtBzQddt2qLnp3i2fym4cxqipYwY7w6AzUESTdDURX%2Fj7Ja8C55Sal92KnI7XBHkh%2BHfExcDzaf5xjwMqIEULNAHmyqr9RFfp%2BZBv6yZVKsJXo7EA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cloudfs.prudentialap.com/adfs/ls/?whr=prudential-adfs&wctx=Y1y2TLiYgjE798pHcaWZAQYrBkiiqoAa&wtrealm=urn%3Aauth0%3Aintegrate-pru-prod01&wa=wsignin1.0 | 161.151.62.58 | 200 OK | 23 kB |
URL User Request GET HTTP/1.1cloudfs.prudentialap.com/adfs/ls/?whr=prudential-adfs&wctx=Y1y2TLiYgjE798pHcaWZAQYrBkiiqoAa&wtrealm=urn%3Aauth0%3Aintegrate-pru-prod01&wa=wsignin1.0 IP161.151.62.58:443
CertificateIssuerEntrust, Inc. Subjectcloudfs.prudentialap.com Fingerprint3E:BF:B9:0C:BB:F2:EB:72:8C:9C:D8:0D:9D:A2:5F:08:D9:3E:15:AB ValidityTue, 25 Jul 2023 12:40:24 GMT - Fri, 23 Aug 2024 12:40:23 GMT
File typeJavaScript source, ASCII text, with very long lines (351), with CRLF line terminators Hashe0be9ba2c6a0e13bb2f9c0c445c42f15 5160a509a1a7cf6adea6b48d73eb08766aab5c87 28a0c30064e045701dd6a72a006a67a2f117cfeca614119a6ffac5b0246a555f
GET /adfs/ls/?whr=prudential-adfs&wctx=Y1y2TLiYgjE798pHcaWZAQYrBkiiqoAa&wtrealm=urn%3Aauth0%3Aintegrate-pru-prod01&wa=wsignin1.0 HTTP/1.1
Host: cloudfs.prudentialap.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store
Pragma: no-cache
Content-Length: 22869
Content-Type: text/html; charset=utf-8
Expires: -1
Server: Microsoft-HTTPAPI/2.0 Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age = 31536000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:;
X-Frame-Options: DENY
Date: Thu, 18 Apr 2024 11:27:14 GMT
|
|
| cloudfs.prudentialap.com/adfs/portal/css/style.css?id=D74D4D6943F32AE6F7F11D14D601DBB0E1A58919176EE512150366B6279AAF99 | 161.151.62.58 | 200 OK | 7.8 kB |
URL GET HTTP/1.1cloudfs.prudentialap.com/adfs/portal/css/style.css?id=D74D4D6943F32AE6F7F11D14D601DBB0E1A58919176EE512150366B6279AAF99 IP161.151.62.58:443
Requested byhttps://cloudfs.prudentialap.com/adfs/ls/?whr=prudential-adfs&wctx=Y1y2TLiYgjE798pHcaWZAQYrBkiiqoAa&wtrealm=urn%3Aauth0%3Aintegrate-pru-prod01&wa=wsignin1.0 CertificateIssuerEntrust, Inc. Subjectcloudfs.prudentialap.com Fingerprint3E:BF:B9:0C:BB:F2:EB:72:8C:9C:D8:0D:9D:A2:5F:08:D9:3E:15:AB ValidityTue, 25 Jul 2023 12:40:24 GMT - Fri, 23 Aug 2024 12:40:23 GMT
File typeUnicode text, UTF-8 text, with CRLF line terminators Hash81d1717dd8379e22c8ab66f8f83dc181 67618f6e2a348cdd7c7cb8b6b6b10374ef87a0be d74d4d6943f32ae6f7f11d14d601dbb0e1a58919176ee512150366b6279aaf99
GET /adfs/portal/css/style.css?id=D74D4D6943F32AE6F7F11D14D601DBB0E1A58919176EE512150366B6279AAF99 HTTP/1.1
Host: cloudfs.prudentialap.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudfs.prudentialap.com/adfs/ls/?whr=prudential-adfs&wctx=Y1y2TLiYgjE798pHcaWZAQYrBkiiqoAa&wtrealm=urn%3Aauth0%3Aintegrate-pru-prod01&wa=wsignin1.0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 7812
Content-Type: text/css
Expires: Sat, 18 May 2024 11:27:15 GMT
ETag: D74D4D6943F32AE6F7F11D14D601DBB0E1A58919176EE512150366B6279AAF99
Server: Microsoft-HTTPAPI/2.0 Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age = 31536000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:;
Date: Thu, 18 Apr 2024 11:27:15 GMT
|
|
| cloudfs.prudentialap.com/favicon.ico | 161.151.62.58 | 404 Not Found | 315 B |
URL GET HTTP/1.1cloudfs.prudentialap.com/favicon.ico IP161.151.62.58:443
Requested byhttps://cloudfs.prudentialap.com/adfs/ls/?whr=prudential-adfs&wctx=Y1y2TLiYgjE798pHcaWZAQYrBkiiqoAa&wtrealm=urn%3Aauth0%3Aintegrate-pru-prod01&wa=wsignin1.0 CertificateIssuerEntrust, Inc. Subjectcloudfs.prudentialap.com Fingerprint3E:BF:B9:0C:BB:F2:EB:72:8C:9C:D8:0D:9D:A2:5F:08:D9:3E:15:AB ValidityTue, 25 Jul 2023 12:40:24 GMT - Fri, 23 Aug 2024 12:40:23 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash67932d4b695e1d6b19dfc2e3610761ff a66898b36c94c53766e66c1a7aaeb149447ec083 ce7127c38e30e92a021ed2bd09287713c6a923db9ffdb43f126e8965d777fbf0
GET /favicon.ico HTTP/1.1
Host: cloudfs.prudentialap.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudfs.prudentialap.com/adfs/ls/?whr=prudential-adfs&wctx=Y1y2TLiYgjE798pHcaWZAQYrBkiiqoAa&wtrealm=urn%3Aauth0%3Aintegrate-pru-prod01&wa=wsignin1.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=us-ascii
Server: Microsoft-HTTPAPI/2.0
Date: Thu, 18 Apr 2024 11:27:15 GMT
Connection: close
Content-Length: 315
|
|
| cloudfs.prudentialap.com/adfs/portal/illustration/illustration.png?id=183128A3C941EDE3D9199FA37D6AA90E0A7DFE101B37D10B4FEDA0CF35E11AFD | 161.151.62.58 | 200 OK | 117 kB |
URL GET HTTP/1.1cloudfs.prudentialap.com/adfs/portal/illustration/illustration.png?id=183128A3C941EDE3D9199FA37D6AA90E0A7DFE101B37D10B4FEDA0CF35E11AFD IP161.151.62.58:443
Requested byhttps://cloudfs.prudentialap.com/adfs/ls/?whr=prudential-adfs&wctx=Y1y2TLiYgjE798pHcaWZAQYrBkiiqoAa&wtrealm=urn%3Aauth0%3Aintegrate-pru-prod01&wa=wsignin1.0 CertificateIssuerEntrust, Inc. Subjectcloudfs.prudentialap.com Fingerprint3E:BF:B9:0C:BB:F2:EB:72:8C:9C:D8:0D:9D:A2:5F:08:D9:3E:15:AB ValidityTue, 25 Jul 2023 12:40:24 GMT - Fri, 23 Aug 2024 12:40:23 GMT
File typePNG image data, 1420 x 1080, 8-bit/color RGB, non-interlaced Size117 kB (116699 bytes) Hash1aee2235cc822dc6527bb377a4b363db e36089f29546687061f2ef30e2498a1e9744416d 183128a3c941ede3d9199fa37d6aa90e0a7dfe101b37d10b4feda0cf35e11afd
GET /adfs/portal/illustration/illustration.png?id=183128A3C941EDE3D9199FA37D6AA90E0A7DFE101B37D10B4FEDA0CF35E11AFD HTTP/1.1
Host: cloudfs.prudentialap.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cloudfs.prudentialap.com/adfs/ls/?whr=prudential-adfs&wctx=Y1y2TLiYgjE798pHcaWZAQYrBkiiqoAa&wtrealm=urn%3Aauth0%3Aintegrate-pru-prod01&wa=wsignin1.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 116699
Content-Type: image/png
Expires: Sat, 18 May 2024 11:27:15 GMT
ETag: 183128A3C941EDE3D9199FA37D6AA90E0A7DFE101B37D10B4FEDA0CF35E11AFD
Server: Microsoft-HTTPAPI/2.0 Microsoft-HTTPAPI/2.0
Strict-Transport-Security: max-age = 31536000
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: default-src 'self' 'unsafe-inline' 'unsafe-eval'; img-src 'self' data:;
Date: Thu, 18 Apr 2024 11:27:15 GMT
|
|