deltavex.com/new/auth/sf_rand_string_lowercase6/dmFuZGFuYS5zaGF3QG1zYy5jb20=?ectrans=1
162.241.124.47 0 B URL deltavex.com/new/auth/sf_rand_string_lowercase6/dmFuZGFuYS5zaGF3QG1zYy5jb20=?ectrans=1
IP 162.241.124.47:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /new/auth/sf_rand_string_lowercase6/dmFuZGFuYS5zaGF3QG1zYy5jb20=?ectrans=1 HTTP/1.1
Host: deltavex.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:20 GMT
Server: Apache
refresh: 0;url=https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp2.globalsign.com/gsorganizationvalsha2g3
104.18.21.226 1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g3
IP 104.18.21.226:0
Hash 54af7a07c59251acdd43b8a7315ba8f0
212d033bc3f736fceaa84d8417ee2229a4f541c5
2b173b11291fb62549c5d2a54d0952b6d8e8e9fe5fa5e4c93f35bf8615abb8ab
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:22 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Tue, 13 Jun 2023 07:04:14 GMT
ETag: "212d033bc3f736fceaa84d8417ee2229a4f541c5"
Last-Modified: Fri, 09 Jun 2023 07:04:15 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2412
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d48d1a94b1a0b55-OSL
burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
162.62.150.176200 OK 5.1 kB URL User Request GET HTTP/1.1 burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
IP 162.62.150.176:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Certificate IssuerGlobalSign nv-sa
Subject*.cos.eu-frankfurt.myqcloud.com
FingerprintC3:6C:C0:F6:49:39:82:9E:6C:DD:EB:8A:6F:02:7A:2F:A9:4B:0B:53
ValidityMon, 27 Feb 2023 06:46:03 GMT - Sat, 30 Mar 2024 06:46:02 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4166), with CRLF line terminators
Hash 52c27a58d2e2520e3df65f2ef7f55be9
2e862b9ec2b4f06f337e3624599d4de224cb698c
c6095f67f43b2c2c31336214f98a92c9c780f777452001151c4f1f52a8c10473
GET /burgesslaw.html?e=vandana.shaw@msc.com HTTP/1.1
Host: burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html
Content-Length: 5131
Connection: keep-alive
Accept-Ranges: bytes
Date: Fri, 09 Jun 2023 10:51:22 GMT
ETag: "52c27a58d2e2520e3df65f2ef7f55be9"
Last-Modified: Sun, 04 Jun 2023 15:34:03 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 2603289015988303010
x-cos-request-id: NjQ4MzA0MmFfZjdhZDM0MGJfMjQyZTdfMzk0YWRlMA==
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
104.17.25.14200 OK 6.2 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP 104.17.25.14:443
Requested by https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (19015)
Hash 70d3fda195602fe8b75e0097eed74dde
c3b977aa4b8dfb69d651e07015031d385ded964b
a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com
DNT: 1
Connection: keep-alive
Referer: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3687778
expires: Wed, 29 May 2024 10:51:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=um06291KXKApsrGyFVRxgPZZo3klW%2BXWzFgnCQ983mUovEJe2m1bqOzm2i5MR1n1mqejS143xFPG8Hd%2B7iDbfRaeRMj5i%2FmfV1YwAX2GdFap2D%2BWV0J%2FI8rILBaCGrkIsYxpvZgu"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7d48d1aadb18b4ed-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.2.1.slim.min.js
69.16.175.42200 OK 24 kB URL GET HTTP/2 code.jquery.com/jquery-3.2.1.slim.min.js
IP 69.16.175.42:443
Requested by https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (32012)
Hash 5f48fc77cac90c4778fa24ec9c57f37d
9e89d1515bc4c371b86f4cb1002fd8e377c1829f
9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com
DNT: 1
Connection: keep-alive
Referer: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:22 GMT
content-encoding: gzip
content-length: 23856
content-type: application/javascript; charset=utf-8
last-modified: Fri, 12 Aug 2022 13:47:02 GMT
accept-ranges: bytes
server: nginx
etag: W/"62f659d6-10fdd"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1686307882.dop219.sk1.t,1686307882.cds214.sk1.hn,1686307882.cds235.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash df893f12f5cf31daedf4910ffcc872c8
bbd271b0e76cd11d6a00327914b74882c95655fb
134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 10:51:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
142.250.74.106200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js
IP 142.250.74.106:443
Requested by https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type ASCII text, with very long lines (32065)
Hash 2f6b11a7e914718e0290410e85366fe9
69bb69e25ca7d5ef0935317584e6153f3fd9a88c
05b85d96f41fff14d8f608dad03ab71e2c1017c2da0914d7c59291bad7a54f8e
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Jun 2023 12:31:43 GMT
expires: Fri, 07 Jun 2024 12:31:43 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 80379
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash df893f12f5cf31daedf4910ffcc872c8
bbd271b0e76cd11d6a00327914b74882c95655fb
134d16adfc51baecc40c9fba86cc6c2d37b489435c99878912d1948543a0337b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Jun 2023 10:51:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp2.globalsign.com/gsorganizationvalsha2g3
104.18.21.226 1.5 kB URL ocsp2.globalsign.com/gsorganizationvalsha2g3
IP 104.18.21.226:0
Hash 40209a7438c9c599b5c5b97ca87a2218
70d15aafe45eb7cecc8c931ab3b90adc537aa903
a77e4b090bfeb6beca739ba2488e74418f2636cfd2738418c0e50007f8f57e2d
POST /gsorganizationvalsha2g3 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:24 GMT
Content-Type: application/ocsp-response
Content-Length: 1461
Connection: keep-alive
Expires: Tue, 13 Jun 2023 08:59:07 GMT
ETag: "70d15aafe45eb7cecc8c931ab3b90adc537aa903"
Last-Modified: Fri, 09 Jun 2023 08:59:08 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7d48d1b0ab980b55-OSL
stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
104.18.10.207200 OK 15 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/js/bootstrap.min.js
IP 104.18.10.207:443
Requested by https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (50758)
Hash 67176c242e1bdc20603c878dee836df3
27a71b00383d61ef3c489326b3564d698fc1227c
56c12a125b021d21a69e61d7190cefa168d6c28ce715265cea1b3b0112d169c4
GET /bootstrap/4.1.3/js/bootstrap.min.js HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:22 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 11/15/2021 23:30:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: a35b0179a28ed953258d0fb41376a09c
cdn-cache: HIT
cf-cache-status: HIT
age: 29351730
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d48d1aaed5ab50b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
mineseasonyear-1318233580.cos.na-ashburn.myqcloud.com/bootstrap.min.js
49.51.77.119200 OK 562 kB URL GET HTTP/1.1 mineseasonyear-1318233580.cos.na-ashburn.myqcloud.com/bootstrap.min.js
IP 49.51.77.119:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Certificate IssuerGlobalSign nv-sa
Subject*.cos.na-ashburn.myqcloud.com
Fingerprint5E:C8:27:CC:24:D0:F7:7C:A0:4D:7E:B6:0C:65:6F:BE:08:34:1E:66
ValidityWed, 01 Mar 2023 07:36:04 GMT - Mon, 01 Apr 2024 07:36:03 GMT
File type ASCII text, with very long lines (65470), with CRLF line terminators
Size 562 kB (562069 bytes)
Hash 5280ce6d8eeee5b836babd07f555d7e5
16437be3734d386457c7e2e907c5aa7edb81b6fb
5e3d9f8bd23e9105639a4325b18d8d8b6b57215bc730ff0f53fec01b72943f14
GET /bootstrap.min.js HTTP/1.1
Host: mineseasonyear-1318233580.cos.na-ashburn.myqcloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 562069
Connection: keep-alive
Accept-Ranges: bytes
Date: Fri, 09 Jun 2023 10:51:24 GMT
ETag: "5280ce6d8eeee5b836babd07f555d7e5"
Last-Modified: Sun, 04 Jun 2023 15:33:15 GMT
Server: tencent-cos
x-cos-hash-crc64ecma: 14782100204884709079
x-cos-request-id: NjQ4MzA0MmNfYjJhYTM1MDlfNjVlZF8xMzc4YTk1
mineseasonyear.site/next.php
4.206.192.77200 OK 16 B URL POST HTTP/1.1 mineseasonyear.site/next.php
IP 4.206.192.77:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Certificate IssuerLet's Encrypt
Subjectmail.mineseasonyear.site
Fingerprint5B:DA:06:40:EE:DB:CC:62:69:66:55:6B:85:3E:E2:DD:B8:09:AA:12
ValiditySat, 03 Jun 2023 18:08:31 GMT - Fri, 01 Sep 2023 18:08:30 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 1f57cbd1f1a1ced8f62d34242408414c
52279c54b16f0a88d43d57b4cbb9813ea3cc39ab
c462d460eab61de19f36cc384c99666e5bf65eaeba0c12b8f594c5410c01f220
POST /next.php HTTP/1.1
Host: mineseasonyear.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/
Content-Type: application/x-www-form-urlencoded
Content-Length: 13
Origin: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:24 GMT
Server: Apache
Access-Control-Allow-Origin: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 86400
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
aadcdn.msauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
13.107.246.53200 OK 17 kB URL GET HTTP/2 aadcdn.msauth.net/ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico
IP 13.107.246.53:443
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Certificate IssuerDigiCert Inc
Subjectaadcdn.msauth.net
Fingerprint53:74:89:61:D2:A4:7B:B7:BC:6E:DA:17:D3:7E:5A:A1:F0:77:AD:84
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type MS Windows icon resource - 6 icons, -128x-128, 16 colors, 72x72, 16 colors\012- data
Hash 12e3dac858061d088023b2bd48e2fa96
e08ce1a144eceae0c3c2ea7a9d6fbc5658f24ce5
90cdaf487716184e4034000935c605d1633926d348116d198f355a98b8c6cd21
GET /ests/2.1/content/images/favicon_a_eupayfgghqiai7k9sol6lg2.ico HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=604800
content-length: 17174
content-type: image/x-icon
content-md5: EuPayFgGHQiAI7K9SOL6lg==
last-modified: Fri, 02 Nov 2018 20:25:25 GMT
etag: 0x8D6410152A9D7E1
x-cache: TCP_HIT
x-ms-request-id: dafd6dbd-101e-0036-428c-99ec6e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0msaCZAAAAAAOKV3ZBhf0SIkt5u0edKlqQU1TMDRFREdFMTkyMQAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0LQSDZAAAAABtf1pOoFRvRaN2aifdTtHRU1ZHMjBFREdFMDYxNAAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Fri, 09 Jun 2023 10:51:24 GMT
X-Firefox-Spdy: h2
aadcdn.msauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg
13.107.246.53200 OK 621 B URL GET HTTP/2 aadcdn.msauth.net/shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg
IP 13.107.246.53:443
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Certificate IssuerDigiCert Inc
Subjectaadcdn.msauth.net
Fingerprint53:74:89:61:D2:A4:7B:B7:BC:6E:DA:17:D3:7E:5A:A1:F0:77:AD:84
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (1592), with no line terminators
Hash 4e48046ce74f4b89d45037c90576bfac
4a41b3b51ed787f7b33294202da72220c7cd2c32
8e6db1634f1812d42516778fc890010aa57f3e39914fb4803df2c38abbf56d93
GET /shared/1.0/content/images/signin-options_4e48046ce74f4b89d45037c90576bfac.svg HTTP/1.1
Host: aadcdn.msauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: public, max-age=31536000
content-length: 621
content-type: image/svg+xml
content-encoding: gzip
content-md5: R2FAVxfpONfnQAuxVxXbHg==
last-modified: Tue, 10 Nov 2020 03:41:24 GMT
etag: 0x8D8852A7FA6B761
x-cache: TCP_HIT
x-ms-request-id: 4db1c12d-b01e-0010-1a27-978751000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
x-azure-ref-originshield: 0Q9CCZAAAAABu7ON45+jxRL01ygD/ZX+EQU1TMDRFREdFMTgxOAAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
x-azure-ref: 0LQSDZAAAAADLY7YENMBOSIu4vKnLFBLaU1ZHMjBFREdFMDYxNAAzOWExMmY3ZS04OTlmLTQ2Y2YtYTZkMC0yNGJiYmEyN2Q5NTY=
date: Fri, 09 Jun 2023 10:51:24 GMT
X-Firefox-Spdy: h2
aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
152.199.23.37200 OK 673 B URL GET HTTP/2 aadcdn.msftauth.net/shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg
IP 152.199.23.37:443
Requested by https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Certificate IssuerDigiCert Inc
Subjectaadcdn.msftauth.net
Fingerprint99:06:D8:1E:EC:BF:DB:78:DF:F4:89:A3:ED:23:07:3D:79:F1:16:D6
ValidityTue, 31 Jan 2023 00:00:00 GMT - Wed, 31 Jan 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1864), with no line terminators
Hash bc3d32a696895f78c19df6c717586a5d
9191cb156a30a3ed79c44c0a16c95159e8ff689d
0e88b6fcbb8591edfd28184fa70a04b6dd3af8a14367c628edd7caba32e58c68
GET /shared/1.0/content/images/backgrounds/2_bc3d32a696895f78c19df6c717586a5d.svg HTTP/1.1
Host: aadcdn.msftauth.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding
age: 25609329
cache-control: public, max-age=31536000
content-md5: DhdidjYrlCeaRJJRG/y9mA==
content-type: image/svg+xml
date: Fri, 09 Jun 2023 10:51:25 GMT
etag: 0x8D7B007297AE131
last-modified: Wed, 12 Feb 2020 22:01:50 GMT
server: ECAcc (ska/F795)
vary: Accept-Encoding
x-cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 82e0eb20-701e-0011-72d5-b19fa0000000
x-ms-version: 2009-09-19
content-length: 673
X-Firefox-Spdy: h2
mineseasonyear.site/next.php
4.206.192.77200 OK 340 B URL POST HTTP/1.1 mineseasonyear.site/next.php
IP 4.206.192.77:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Certificate IssuerLet's Encrypt
Subjectmail.mineseasonyear.site
Fingerprint5B:DA:06:40:EE:DB:CC:62:69:66:55:6B:85:3E:E2:DD:B8:09:AA:12
ValiditySat, 03 Jun 2023 18:08:31 GMT - Fri, 01 Sep 2023 18:08:30 GMT
File type JSON data\012- , ASCII text, with very long lines (340), with no line terminators
Hash 6da15e4f8796bdfac9079ab28ac3ae96
4477e3f7522430ec04ea58ac09389417b2fd9823
9a53d77c6677ba2f8f46d9055d0b3156a2f0b732012d87d9f5d8c56589f478a9
POST /next.php HTTP/1.1
Host: mineseasonyear.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 35
Origin: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com
DNT: 1
Connection: keep-alive
Referer: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 09 Jun 2023 10:51:25 GMT
Server: Apache
Access-Control-Allow-Origin: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com
Access-Control-Allow-Credentials: true
Access-Control-Max-Age: 86400
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/favicon.ico
162.62.150.176404 Not Found 433 B URL GET HTTP/1.1 burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/favicon.ico
IP 162.62.150.176:443
ASN #132203 Tencent Building, Kejizhongyi Avenue
Requested by https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Certificate IssuerGlobalSign nv-sa
Subject*.cos.eu-frankfurt.myqcloud.com
FingerprintC3:6C:C0:F6:49:39:82:9E:6C:DD:EB:8A:6F:02:7A:2F:A9:4B:0B:53
ValidityMon, 27 Feb 2023 06:46:03 GMT - Sat, 30 Mar 2024 06:46:02 GMT
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (447), with no line terminators
Hash f0003befb45040f9e65cc0a613229d14
7e051f2d3cfe8344b8d5304f88c327302ff36b47
5b17ba3a035ddaac234e860cc530967926d9c48cbf411724d81210cd0f8f4ff0
GET /favicon.ico HTTP/1.1
Host: burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Type: application/xml
Content-Length: 433
Connection: keep-alive
Date: Fri, 09 Jun 2023 10:51:24 GMT
Server: tencent-cos
x-cos-request-id: NjQ4MzA0MmNfZjdhZDM0MGJfMjQyZjhfMzk3MDIwMA==
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
104.18.11.207200 OK 49 kB URL GET HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
IP 104.18.11.207:443
Requested by https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/burgesslaw.html?e=vandana.shaw@msc.com
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (48664)
Hash 14d449eb8876fa55e1ef3c2cc52b0c17
a9545831803b1359cfeed47e3b4d6bae68e40e99
e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com
DNT: 1
Connection: keep-alive
Referer: https://burgesslaw-1318334846.cos.eu-frankfurt.myqcloud.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 09 Jun 2023 10:51:22 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 11/25/2022 23:23:38
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 865
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: c965178c954eb5dc2c4cd9998ba472f9
cdn-cache: HIT
cf-cache-status: HIT
age: 49376
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d48d1aae890b524-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2