| proxy.quickmail.com/click/1/507088021/da194f474622f1d67dcc7110cbc01e72/3d85cbbb4adc1571c02e21b335f93915/next |  54.196.16.164 | 301 Moved Permanently | 0 B |
URL HTTP/1.1proxy.quickmail.com/click/1/507088021/da194f474622f1d67dcc7110cbc01e72/3d85cbbb4adc1571c02e21b335f93915/next IP54.196.16.164:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /click/1/507088021/da194f474622f1d67dcc7110cbc01e72/3d85cbbb4adc1571c02e21b335f93915/next HTTP/1.1
Host: proxy.quickmail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Cowboy
Date: Thu, 15 Dec 2022 19:02:19 GMT
Connection: keep-alive
Content-Type: text/html
Location: https://proxy.quickmail.com/click/1/507088021/da194f474622f1d67dcc7110cbc01e72/3d85cbbb4adc1571c02e21b335f93915/next
Transfer-Encoding: chunked
Via: 1.1 vegur
|
|
| r3.o.lencr.org/ |  23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash381442da2a14cb93770f4c8f6e19d35b 31c48467751e2450a63004c57eea0c7872023eaf 61b0985f47033bd7020ab3b8cdcbc6c17be6ab9b6feba69e006088b78e21c0f0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61B0985F47033BD7020AB3B8CDCBC6C17BE6AB9B6FEBA69E006088B78E21C0F0"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3158
Expires: Thu, 15 Dec 2022 19:54:57 GMT
Date: Thu, 15 Dec 2022 19:02:19 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashae86164fd9297dfdc05d67d69284d70e 5e5f27e3fd492f715baa6820f05c0fafde4040b3 be20f6ae6a51d20611cb4d350b52a5d0a339af6722fe9b2482ef58826c1e9de0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BE20F6AE6A51D20611CB4D350B52A5D0A339AF6722FE9B2482EF58826C1E9DE0"
Last-Modified: Thu, 15 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6567
Expires: Thu, 15 Dec 2022 20:51:46 GMT
Date: Thu, 15 Dec 2022 19:02:19 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbf0c602d32b3c14606f22a86183b5e3c 6eabd8d83475eba731968abe1a05a8bfd272f160 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 15 Dec 2022 18:09:00 GMT
content-type: application/json
age: 3199
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash51bd0cc75ed746fd33c950eb12936b7e 4a1007ea6c6e4f5e8b4a7d1f85f7a3e329dc8f50 188d4a0d544f40048dc7476cb4f5e478f1eb49a8ef1d51699fb155d2ae258655
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "188D4A0D544F40048DC7476CB4F5E478F1EB49A8EF1D51699FB155D2AE258655"
Last-Modified: Tue, 13 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6689
Expires: Thu, 15 Dec 2022 20:53:48 GMT
Date: Thu, 15 Dec 2022 19:02:19 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Lkj93tmTxHix6SaeMw5rq8G4eCRfIipW3CpsMkgikGFSfvQYkT7WzsOfKciRcvnN8L77ekpWTzc=
x-amz-request-id: WZ903A691J6144SZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 15 Dec 2022 18:51:01 GMT
age: 678
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 15 Dec 2022 19:02:20 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash2004e24c053c02fa644f4d643c3ed72a 41bebcc3358c14d15531c5ca45eabf2d67d4e8b7 73447eeae163a5fd1cd23ddc9498ec057d329ad76a2211947ffc853c9a2a04cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73447EEAE163A5FD1CD23DDC9498EC057D329AD76A2211947FFC853C9A2A04CC"
Last-Modified: Thu, 15 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9130
Expires: Thu, 15 Dec 2022 21:34:30 GMT
Date: Thu, 15 Dec 2022 19:02:20 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Last-Modified, ETag, Cache-Control, Alert, Content-Length, Pragma, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 15 Dec 2022 18:08:00 GMT
age: 3260
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| proxy.quickmail.com/click/1/507088021/da194f474622f1d67dcc7110cbc01e72/3d85cbbb4adc1571c02e21b335f93915/next | 54.196.16.164 | 301 Moved Permanently | 94 B |
URL HTTP/1.1proxy.quickmail.com/click/1/507088021/da194f474622f1d67dcc7110cbc01e72/3d85cbbb4adc1571c02e21b335f93915/next IP54.196.16.164:0
File typeHTML document text\012- HTML document, ASCII text, with no line terminators Hash121da4ef7ecd168be629a194de0c1518 db0f8c8443621a2b5b4c96a13346ef70ca1c3008 10e92f31f6894136149ee93f0cb8fc32e3b234ea3517d0db452d4d2a8d56668c
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /click/1/507088021/da194f474622f1d67dcc7110cbc01e72/3d85cbbb4adc1571c02e21b335f93915/next HTTP/1.1
Host: proxy.quickmail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Location: https://www.fusionfirst.com/
Content-Type: text/html; charset=utf-8
Cache-Control: no-cache
X-Request-Id: 04035e07-ca94-4fa9-9b6b-653b74c8edbe
X-Runtime: 0.024598
Server:
Date:
Last-Modified:
Strict-Transport-Security: max-age=63072000; includeSubDomains
Transfer-Encoding: chunked
Via: 1.1 vegur
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashb9f0adeb27a19629aeff6f34de67f3ad 3876d1b871d7da6d18de23c2edb301eb30728066 c5744a90c8f66629aa2331465a32afe0d430b36d16fd98bc821e370f1b24463c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2374
Cache-Control: max-age=139454
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:20 GMT
Etag: "639ae3b4-1d7"
Expires: Sat, 17 Dec 2022 09:46:34 GMT
Last-Modified: Thu, 15 Dec 2022 09:07:00 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
|
|
| push.services.mozilla.com/ | 54.203.75.56 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.203.75.56:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: C7qofGKihzXGuYX6+Ygxyg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: sxXX1Nzuf6kXA03BJK4mp1aOYz8=
|
|
| ocsp.sectigo.com/ | 172.64.155.188 | 200 OK | 471 B |
IP172.64.155.188:0
Hash9edba6b29120e5075dc2ec6dcdee13cc 29e426f7b8125e664005f971400ace349bb38cd3 41ba6f0c20c21f050c8d0e92ba6ab0990998e0d837d6ced4d97cafb5426e69e7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 15 Dec 2022 19:02:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 13 Dec 2022 17:39:39 GMT
Expires: Tue, 20 Dec 2022 17:39:38 GMT
Etag: "29e426f7b8125e664005f971400ace349bb38cd3"
Cache-Control: max-age=426436,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 77a16eddcf841c06-OSL
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash0e5a8cf5962c05bf28a3b45f5c8745e2 9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14177
Expires: Thu, 15 Dec 2022 22:58:38 GMT
Date: Thu, 15 Dec 2022 19:02:21 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash0e5a8cf5962c05bf28a3b45f5c8745e2 9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14177
Expires: Thu, 15 Dec 2022 22:58:38 GMT
Date: Thu, 15 Dec 2022 19:02:21 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash0e5a8cf5962c05bf28a3b45f5c8745e2 9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14177
Expires: Thu, 15 Dec 2022 22:58:38 GMT
Date: Thu, 15 Dec 2022 19:02:21 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash0e5a8cf5962c05bf28a3b45f5c8745e2 9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14177
Expires: Thu, 15 Dec 2022 22:58:38 GMT
Date: Thu, 15 Dec 2022 19:02:21 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hash0e5a8cf5962c05bf28a3b45f5c8745e2 9c5d7e8aeab26f9fd2e753ab4dc65d6fa8ea955f f614642045fcd0ee373ed6cabe67514f4bb54c7fb4f1181b52eaec12d7e0479e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F614642045FCD0EE373ED6CABE67514F4BB54C7FB4F1181B52EAEC12D7E0479E"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14177
Expires: Thu, 15 Dec 2022 22:58:38 GMT
Date: Thu, 15 Dec 2022 19:02:21 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4368d88-830e-4776-bbdb-c2457233983a.jpeg | 34.120.237.76 | 200 OK | 9.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4368d88-830e-4776-bbdb-c2457233983a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8b031e56b256ee8ed21093f8c5398815 ef4ac091b1804b68c1d8e073d73f7a57e08739a6 f332c68ba6b31d67c02d16412c85e760cbc2e7a67073876c8799365e80b6dbab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd4368d88-830e-4776-bbdb-c2457233983a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9851
x-amzn-requestid: 38f12682-d3c4-4e4f-9b24-afe81ca85dde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c-FX9FsVoAMF5AQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63958299-3d25cec26bcb2ccf73e3526f;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 07:11:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dBS9TPBeVScdBuJSzheNE2lvUb3RqZTfZjJkWcbyuwkyhu0HrFmkIQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 14:33:16 GMT
age: 16145
etag: "ef4ac091b1804b68c1d8e073d73f7a57e08739a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed92d0a5-f6ed-4382-aa56-39c7021a6b76.png | 34.120.237.76 | 200 OK | 7.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed92d0a5-f6ed-4382-aa56-39c7021a6b76.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash1e1fb0ddf6ac86d38423a55841c78c6c d31310f2441c9f7584f3c1605dd3fb38d5af41a6 8e91e724a42f8b0cf953570937c33465903c979297e439438d86c45b3d242d4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed92d0a5-f6ed-4382-aa56-39c7021a6b76.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7163
x-amzn-requestid: 3c24d190-0c16-4aab-8da4-ab11a91c8e5c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dE_HIEdEIAMFV8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63984560-4956b65205477bfe244bd4c3;Sampled=0
x-amzn-remapped-date: Tue, 13 Dec 2022 09:26:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: c4v50kU254dC1EM2QEk8Z6dwH-th3wdnHc4XokHHUaNB-Vfe2AOsDw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 06:28:25 GMT
age: 45236
etag: "d31310f2441c9f7584f3c1605dd3fb38d5af41a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f56798-4039-4a1a-9490-f61d1b1e77da.jpeg | 34.120.237.76 | 200 OK | 5.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f56798-4039-4a1a-9490-f61d1b1e77da.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash672ae812012d060ba75fbb8cb9d6038c 2ab1016451432b6cd1d6b9756c6cc6a926ffa7ce cd9c002af775a6ba6ff8902a67e19c2ed2663d23bf8a1c3fe763598a60ba8d69
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f56798-4039-4a1a-9490-f61d1b1e77da.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5259
x-amzn-requestid: 21c0e355-e696-4785-a162-5f96e02836f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c3fV1HHKIAMFsjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6392df58-608335604793d9f46939a81a;Sampled=0
x-amzn-remapped-date: Fri, 09 Dec 2022 07:10:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BYwjCf0sQ3F2gNE6x5Q5K6D_PhMXV-T8kPGRpVHIdouM_I9sU7bMOw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 02:09:49 GMT
age: 60752
etag: "2ab1016451432b6cd1d6b9756c6cc6a926ffa7ce"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F874ce85e-7786-4e92-aea7-1c22181143e6.jpeg | 34.120.237.76 | 200 OK | 9.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F874ce85e-7786-4e92-aea7-1c22181143e6.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash389fe7dd5f3f80351a97fe4106be49b5 a91f474e6d320797c2ea32ecaf7a341f5f77fe82 11957edbfb3dc06abbe8ee6aa9dac0a25f84ba909a6404030c9f081343384513
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F874ce85e-7786-4e92-aea7-1c22181143e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9108
x-amzn-requestid: ce72b199-1b81-4257-bcf0-3c9dc144b5d7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c6s3rHhDoAMFZxQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63942830-0751237e7103e2b9615db079;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 06:33:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3p17v7Bynhh_3E58b5uEpjmNfZ-bSee-_jhauzs3LtWRV9GJoT0Evg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 09:02:49 GMT
age: 35972
etag: "a91f474e6d320797c2ea32ecaf7a341f5f77fe82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f949bdd-b2f9-4eba-91cf-0c0588f819de.jpeg | 34.120.237.76 | 200 OK | 5.2 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f949bdd-b2f9-4eba-91cf-0c0588f819de.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash860298771622d100fe1feafb0a1aac50 e5d9b7454c471d5e5dea8b4352ba7595a8a04ce3 93ea9f1b9a0276075ff9752dc31a5a19e4378ca481895a3cd22f461a8ca6040a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f949bdd-b2f9-4eba-91cf-0c0588f819de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5166
x-amzn-requestid: fa8e9bd0-e5ee-48e9-86b6-0330ccac7d69
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: c6xc4GQYIAMFriA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63942f85-5f7472d631c1c9f560d88378;Sampled=0
x-amzn-remapped-date: Sat, 10 Dec 2022 07:04:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xLdYmAD22dAMhCBqu5X65V9G-JzAEOWNNmHOG_Dcp1zgMzY8Tj80Jw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 07:53:14 GMT
age: 40147
etag: "e5d9b7454c471d5e5dea8b4352ba7595a8a04ce3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F886cc6e3-a038-4e4d-8da0-caf399786ff4.jpeg | 34.120.237.76 | 200 OK | 4.5 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F886cc6e3-a038-4e4d-8da0-caf399786ff4.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb76e8c43482cb1f6e9d3f5dd55185382 364236e338c799f7d7a604882451428d12cdc7c7 375600e8bedfec8fa85da9298fc3322b91e97261dee7fd94b1dad8e6f4faed67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F886cc6e3-a038-4e4d-8da0-caf399786ff4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4523
x-amzn-requestid: 5404595d-f42f-49a0-9438-093b2fb1b852
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dBXWTGEcIAMFdnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6396d28e-17f927945ee836a91a3148e0;Sampled=0
x-amzn-remapped-date: Mon, 12 Dec 2022 07:04:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JBIoHXeeJIsyl_wj57ZEP_f1mg3eq0WJjgKveuc_DslNZzSiVf62Og==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 07:11:31 GMT
age: 42650
etag: "364236e338c799f7d7a604882451428d12cdc7c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/simple-google-recaptcha/sgr.css?ver=1659425843 | 162.0.235.57 | 200 OK | 228 B |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/simple-google-recaptcha/sgr.css?ver=1659425843 IP162.0.235.57:0
Hash87919152e480d34bc2ab66090bb82746 13fa0e22062206ec9e2b02397f13462335eaed63 39a95abda660ba5b3d0465459168d211ca3fc375430d0ae0b1440b27625a37f8
GET /wp-content/plugins/simple-google-recaptcha/sgr.css?ver=1659425843 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: text/css
last-modified: Tue, 02 Aug 2022 07:37:23 GMT
etag: "e4-62e8d433-0;;;"
accept-ranges: bytes
content-length: 228
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6 | 162.0.235.57 | 200 OK | 10 kB |
URL HTTP/2www.fusionfirst.com/wp-includes/css/dist/block-library/style.min.css?ver=5.8.6 IP162.0.235.57:0
File typeUnicode text, UTF-8 text, with very long lines (33376) Hashcf64bd69df964ad7baacebb5f165288e 3b43b33729294f0378142606559dac91d56919f8 f8d581c3f1abb40a8a24d79f47abe7b7b4ea24207160d0e260d06ca0cdebcb19
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: text/css
last-modified: Wed, 01 Sep 2021 13:35:58 GMT
etag: "13abe-612f81be-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 9960
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash7554f75e4959d216038e95962579e741 10f237248a234544391eb351e97515d385a372b3 cb2bc78887ed330dee49076c04ba87723fdc2a869a124dba2a475cac174480da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| static.zdassets.com/ekr/snippet.js?key=918395f4-b2e2-4a55-b794-aecfc2b92782 |  104.18.70.113 | 200 OK | 6.7 kB |
URL HTTP/2static.zdassets.com/ekr/snippet.js?key=918395f4-b2e2-4a55-b794-aecfc2b92782 IP104.18.70.113:0
File typeASCII text, with very long lines (23416), with no line terminators Hashdb76b28fc1c71f937f63e92a576d874f 7e0f649412b34f9f8b548d175c77975e553b0069 a7a83f6d286d4cde85b10da53d568895507227634c1910218cc13c498619cf01
GET /ekr/snippet.js?key=918395f4-b2e2-4a55-b794-aecfc2b92782 HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Dec 2022 19:02:21 GMT
content-type: application/javascript
x-amz-id-2: 2vczt6VEQAujZh2Sn1saK7Q0yPHQMRKRQuuC+kOwLnJ40itjD1HXfy2Id85tVz8wD4O1ArN10VQ=
x-amz-request-id: 4MARQ9YY8PDZ70A8
x-amz-replication-status: PENDING
last-modified: Thu, 28 Jul 2022 23:44:02 GMT
etag: W/"5cae6ce528dce0c327b2bcbaad459fdb"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=3600, s-maxage=60
x-amz-version-id: TCAqq4sghBBBAAXd3MLZ8Fy8XIds..vO
cf-cache-status: HIT
age: 35
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GjelhwMsGRERQY6Rq6%2BZhvwnAGaEu4SAfwrVcyBp4DJtRRJyR5BPZkOEzq5JaVZjWcwGsJJS6iMWsmA6Amcv%2BSWQQgvR%2Bb4YOW%2Beu6qrcYKlSidZZEKrMJu4RaarPz6BD9NsIdc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77a16ee2fb75b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/bold-page-builder/css/front_end/content_elements.crush.css?ver=4.4.0 | 162.0.235.57 | 200 OK | 51 kB |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/bold-page-builder/css/front_end/content_elements.crush.css?ver=4.4.0 IP162.0.235.57:0
File typeASCII text, with very long lines (375) Hash736328a92f313f635eda27e51e56d288 9f71cf352e6f0cfd47a7b258c1e9faa43cad0799 5adb90920f87ac5512af00d32b30ab3c23237ff0c01fada166ee490d1df78e3d
GET /wp-content/plugins/bold-page-builder/css/front_end/content_elements.crush.css?ver=4.4.0 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: text/css
last-modified: Wed, 24 Aug 2022 11:09:35 GMT
etag: "1458db-630606ef-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 51311
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/bold-page-builder/slick/slick.css?ver=4.4.0 | 162.0.235.57 | 200 OK | 483 B |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/bold-page-builder/slick/slick.css?ver=4.4.0 IP162.0.235.57:0
Hash1e4f6b1a5456c5cefdd025118bf4e6b5 5713171df86af73933ccb408bd352ae4267fd196 80a0639fa558bbfef356bcdbf900c4586b7b51834efcec690384317ec52c7676
GET /wp-content/plugins/bold-page-builder/slick/slick.css?ver=4.4.0 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: text/css
last-modified: Wed, 24 Aug 2022 11:09:34 GMT
etag: "6f0-630606ee-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 483
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/bold-timeline/style.css?ver=5.8.6 | 162.0.235.57 | 200 OK | 11 kB |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/bold-timeline/style.css?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with very long lines (380) Hashf304a970779f7093d774c809cd588494 12c88a9d0706c511f0870180a6ec4fc96cc50ec3 7699f9cf95d4ec90ff192b93c4dccb7307391f81eebe29e0d098f796a781a29d
GET /wp-content/plugins/bold-timeline/style.css?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: text/css
last-modified: Wed, 15 Jan 2020 17:37:22 GMT
etag: "28bc3-5e1f4dd2-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10553
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/wp-user-profile-avatar/assets/css/frontend.min.css?ver=5.8.6 | 162.0.235.57 | 200 OK | 440 B |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/wp-user-profile-avatar/assets/css/frontend.min.css?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with very long lines (2382), with no line terminators Hash5a52395da7f529636b68f23a5d438369 44eb2eda63443f5daa952920cdf45c3cd1b53fec 435a3875a50be1c793028b228731f3240dcb700700aa1c0afa784920eec911cf
GET /wp-content/plugins/wp-user-profile-avatar/assets/css/frontend.min.css?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: text/css
last-modified: Wed, 23 Feb 2022 11:46:20 GMT
etag: "94e-62161e8c-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 440
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/wp-popups-lite/src/assets/css/wppopups-base.css?ver=2.1.4.5 | 162.0.235.57 | 200 OK | 1.5 kB |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/wp-popups-lite/src/assets/css/wppopups-base.css?ver=2.1.4.5 IP162.0.235.57:0
Hash78a24b1a5e1df147c976d94972c7e5f5 0ce4b8b128d244f818b45744a95e32afc7b0d617 7c500eb4daf462611be0b02751badf87074b83ed195a2cc459c9746eb87ccf8d
GET /wp-content/plugins/wp-popups-lite/src/assets/css/wppopups-base.css?ver=2.1.4.5 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: text/css
last-modified: Wed, 24 Aug 2022 11:09:31 GMT
etag: "21ca-630606eb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1540
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/style.css?ver=5.8.6 | 162.0.235.57 | 200 OK | 63 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/style.css?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with very long lines (65536), with no line terminators Hash56010de40ba2b1ecf21b50584a999cdd 88bbd47fae7c5ad3e7326573d38f69d0d82bf5fb 251709de8ce991bbace078f51838413f7a9ed0ee8e1147fce120ef286d47c24b
GET /wp-content/themes/avantage/style.css?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: text/css
last-modified: Fri, 25 Sep 2020 06:37:55 GMT
etag: "acfe8-5f6d9043-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 63165
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6 | 162.0.235.57 | 200 OK | 4.5 kB |
URL HTTP/2www.fusionfirst.com/wp-includes/js/wp-emoji-release.min.js?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with very long lines (15224) Hash3c05cdbb96f694e86b05c7a3e5c6703f 615a7094f3210830bd5e6f08f845c101be2eefeb 371bb131cc739b177f4c90f67535f020d0bbee092e2ff1bad6ac38e978da3092
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Wed, 09 Jun 2021 07:45:12 GMT
etag: "4705-60c07188-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4539
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/framework/css/style.css?ver=5.8.6 | 162.0.235.57 | 200 OK | 226 B |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/framework/css/style.css?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with CRLF line terminators Hash613a5cc4f935a09e880c3b9516203771 17642b2f2d54d1b5fc549c4aab8cd9972540622a 179ab114da6ef05feb82efbc27657d4998a416a5d53d1a484d6e85ff67449bab
GET /wp-content/themes/avantage/framework/css/style.css?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: text/css
last-modified: Mon, 11 Mar 2019 22:06:34 GMT
etag: "e2-5c86dbea-0;;;"
accept-ranges: bytes
content-length: 226
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/simple-google-recaptcha/sgr.js?ver=1659425843 | 162.0.235.57 | 200 OK | 424 B |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/simple-google-recaptcha/sgr.js?ver=1659425843 IP162.0.235.57:0
Hashd87fd8d4a3cac5dfb97849b18ce499e4 dbdb0bf601d0dad795c96fdcd1ceb606f7ef734e 1de93ffed5e3a3565590535152d410497c8fc1fe15739db4bbcfb4f5bb6626ec
GET /wp-content/plugins/simple-google-recaptcha/sgr.js?ver=1659425843 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Tue, 02 Aug 2022 07:37:23 GMT
etag: "54b-62e8d433-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 424
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 | 162.0.235.57 | 200 OK | 30 kB |
URL HTTP/2www.fusionfirst.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP162.0.235.57:0
File typeASCII text, with very long lines (65447) Hash34f918ada1fe4f01c5a4b90065bbc37a a731f6ce2d413805e39ae45994012b1bd5ea1e2b eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Thu, 11 Mar 2021 01:37:24 GMT
etag: "15db1-60497454-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 | 162.0.235.57 | 200 OK | 4.0 kB |
URL HTTP/2www.fusionfirst.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP162.0.235.57:0
File typeASCII text, with very long lines (11126) Hash7e058b51f939eacfa31cdface14dded5 9d732e5afdeb42edef9e1b9631b7e95e054787cc 4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Wed, 18 Nov 2020 19:36:06 GMT
etag: "2bd8-5fb577a6-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3995
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/cookie-law-info/lite/frontend/js/script.min.js?ver=3.0.4 | 162.0.235.57 | 200 OK | 5.5 kB |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/cookie-law-info/lite/frontend/js/script.min.js?ver=3.0.4 IP162.0.235.57:0
File typeHTML document, ASCII text, with very long lines (16711), with no line terminators Hashf4fdad9baa55e2db7d99a5c1f3f64767 fb65d0597592bdf844f1aed65f52fa12335f06cc c700d50d4b3c3a88b04f522401ba413e88f884f879ba8dd4c993f6b2a9b54b09
GET /wp-content/plugins/cookie-law-info/lite/frontend/js/script.min.js?ver=3.0.4 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Thu, 27 Oct 2022 06:37:41 GMT
etag: "4147-635a2735-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5544
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/bold-page-builder/slick/slick.min.js?ver=4.4.0 | 162.0.235.57 | 200 OK | 10 kB |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/bold-page-builder/slick/slick.min.js?ver=4.4.0 IP162.0.235.57:0
File typeASCII text, with very long lines (42862) Hash09ed72c756aef05979d1c10d176eeb7a 1f3c35043f1aae481a38b40327fefb959ff63885 8638bee02f96fc15e4a3dae0ae220e31f020ee0b10c8eb5f829d9986b3fc53c4
GET /wp-content/plugins/bold-page-builder/slick/slick.min.js?ver=4.4.0 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Wed, 24 Aug 2022 11:09:34 GMT
etag: "a76f-630606ee-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10097
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/bold-page-builder/content_elements_misc/js/jquery.magnific-popup.min.js?ver=4.4.0 | 162.0.235.57 | 200 OK | 7.0 kB |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/bold-page-builder/content_elements_misc/js/jquery.magnific-popup.min.js?ver=4.4.0 IP162.0.235.57:0
File typeASCII text, with very long lines (20087) Hashf5e275bd34668dca4972a4cceccd7907 cba188e35681cd77cfcbd026aac16315747fab12 7874f3927ffd30d189723404d3fb9699e728955b083abeccc9a988890b4b2ede
GET /wp-content/plugins/bold-page-builder/content_elements_misc/js/jquery.magnific-popup.min.js?ver=4.4.0 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Wed, 24 Aug 2022 11:09:35 GMT
etag: "4ef8-630606ef-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7043
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/bold-page-builder/content_elements_misc/js/content_elements.js?ver=4.4.0 | 162.0.235.57 | 200 OK | 6.9 kB |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/bold-page-builder/content_elements_misc/js/content_elements.js?ver=4.4.0 IP162.0.235.57:0
File typeASCII text, with CRLF line terminators Hasha7a8fef1c8ecf57b68d9c6efabca1111 7d99cc04de208fdc24fd39ebdd98a1b59ecf9d70 1a6fae1cc18a8bf0a91a895bce4138c88856019548877a3b53068bcf7e15ace2
GET /wp-content/plugins/bold-page-builder/content_elements_misc/js/content_elements.js?ver=4.4.0 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Wed, 24 Aug 2022 11:09:35 GMT
etag: "741d-630606ef-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6929
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/bold-timeline/assets/js/bold-timeline.js?ver=5.8.6 | 162.0.235.57 | 200 OK | 1.7 kB |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/bold-timeline/assets/js/bold-timeline.js?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with CRLF line terminators Hash488b5f70a41fb48425e4290a0915df89 1f8d75b3f290ad9ba67f2d959a8fb9d9210cef8d 423d52cb487b8841db1502a454e6ab61a146e59f6a42a0da51988db0ef3937af
GET /wp-content/plugins/bold-timeline/assets/js/bold-timeline.js?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Wed, 15 Jan 2020 17:37:20 GMT
etag: "1adc-5e1f4dd0-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1669
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/uploads/2022/08/MicrosoftTeams-image-e1661526207765.png | 162.0.235.57 | 200 OK | 23 kB |
URL HTTP/2www.fusionfirst.com/wp-content/uploads/2022/08/MicrosoftTeams-image-e1661526207765.png IP162.0.235.57:0
File typePNG image data, 117 x 200, 8-bit/color RGBA, non-interlaced\012- data Hashd12ee6c30c5dfbe14f439afa7828a99a e63bf3bd48744eab378d480e481feb52c4b8c07e f794c487bfefd7f67471305b6c107f87d7132473cf3b999187457cd1b21a64bd
GET /wp-content/uploads/2022/08/MicrosoftTeams-image-e1661526207765.png HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: image/png
last-modified: Fri, 26 Aug 2022 15:03:27 GMT
etag: "58f2-6308e0bf-0;;;"
accept-ranges: bytes
content-length: 22770
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash0fbe3d80eaa6623da753aece08c3a818 d3c6fe97e3154f00f681647a3c74800008ac2d2f cab890482eacc4298414a2aa0e41ea5bce399eccd4d5e50c9cdc55c735c83b1e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.fusionfirst.com/wp-content/uploads/2019/04/bgn-quotes-top.png | 162.0.235.57 | 200 OK | 2.4 kB |
URL HTTP/2www.fusionfirst.com/wp-content/uploads/2019/04/bgn-quotes-top.png IP162.0.235.57:0
File typePNG image data, 2500 x 254, 8-bit colormap, non-interlaced\012- data Hash7986e91d1a50b2102816d35dcd2824d2 49d5d2ec7adbb9504b758c2ce8643bd3283908b4 1dc17e2ebe19d4e117a6ba95c282784b29072cc2d0d03d8d9c70bd01bc0fb763
GET /wp-content/uploads/2019/04/bgn-quotes-top.png HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: image/png
last-modified: Thu, 25 Aug 2022 02:01:30 GMT
etag: "968-6306d7fa-0;;;"
accept-ranges: bytes
content-length: 2408
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/ | 162.0.235.57 | 200 OK | 48 kB |
IP162.0.235.57:0
Hashc5f06124e102e7d65cfc2244ee9cbe6d c46f4801771887c6427e3a08d7492c0a55d0ee69 d24cec9e365cfe2cc386bd8a21b343f1742b4846bcea6845c3548df67cdacfb9
GET / HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
cache-control: no-cache
wpo-cache-status: cached
last-modified: Wed, 14 Dec 2022 20:26:40 GMT
content-type: text/html; charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/uploads/2019/04/bgn-triangle-top.png | 162.0.235.57 | 200 OK | 1.1 kB |
URL HTTP/2www.fusionfirst.com/wp-content/uploads/2019/04/bgn-triangle-top.png IP162.0.235.57:0
File typePNG image data, 2500 x 98, 8-bit colormap, non-interlaced\012- data Hash997a0f3e88d355e09fd20b47421357fb f6ffb267522f47aaf33f87528bb0513c5d29e556 83f04534ff4393d569f42f6d5448a0771d355678a5d849c84f0f6b36f731c767
GET /wp-content/uploads/2019/04/bgn-triangle-top.png HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: image/png
last-modified: Thu, 25 Aug 2022 02:01:30 GMT
etag: "44d-6306d7fa-0;;;"
accept-ranges: bytes
content-length: 1101
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/uploads/2021/07/FBSPL_logo-e1626778596200.png | 162.0.235.57 | 200 OK | 58 kB |
URL HTTP/2www.fusionfirst.com/wp-content/uploads/2021/07/FBSPL_logo-e1626778596200.png IP162.0.235.57:0
File typePNG image data, 961 x 362, 8-bit/color RGBA, non-interlaced\012- data Hash9cf883b8f0046a915bc5dac7f787eafc a3dcc79c64370556033faac8770f67dcfcde7b34 0387be2dab8948a797f65473e8798ca34e2fb42e54384c2f9d19ca2c50b0ab82
GET /wp-content/uploads/2021/07/FBSPL_logo-e1626778596200.png HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: image/png
last-modified: Thu, 25 Aug 2022 02:01:27 GMT
etag: "e424-6306d7f7-0;;;"
accept-ranges: bytes
content-length: 58404
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/bold-page-builder/img/blank.gif | 162.0.235.57 | 200 OK | 1.1 kB |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/bold-page-builder/img/blank.gif IP162.0.235.57:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash6b4bcedd71e8f0eeda27a48ff9147d1a f39382fc0c3aaa173fc29c0b82dd733c3e9517e0 73a68348f3b0ab872434da99eebeaa0d477d2571fb81c1961292b0335f242e10
GET /wp-content/plugins/bold-page-builder/img/blank.gif HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: image/gif
last-modified: Wed, 24 Aug 2022 11:09:35 GMT
etag: "447-630606ef-0;;;"
accept-ranges: bytes
content-length: 1095
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/bold-page-builder/content_elements_misc/css/bt_bb_progress_bar_advanced.css?ver=5.8.6 | 162.0.235.57 | 200 OK | 240 B |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/bold-page-builder/content_elements_misc/css/bt_bb_progress_bar_advanced.css?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with CRLF line terminators Hashafdfefb69c2f04e482856f5760b86dab 1fac0a9011f8d44a11a1f9c17d389d585fc638ea 5f7f3fe16c12f3e27cc1b268f924d64156cfb1e8c68e4fa3342463bdc310849c
GET /wp-content/themes/avantage/bold-page-builder/content_elements_misc/css/bt_bb_progress_bar_advanced.css?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: text/css
last-modified: Sun, 21 Apr 2019 01:25:56 GMT
etag: "312-5cbbc6a4-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 240
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 | 162.0.235.57 | 200 OK | 2.4 kB |
URL HTTP/2www.fusionfirst.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 IP162.0.235.57:0
File typeASCII text, with very long lines (11256), with no line terminators Hashce94f62588d05264ac0148712111cb11 518bcd922f54169aeb199c0ccbc5877165ac218e 84ab658a69c39f424be0b27f61d612447d01606fce33beb962cbea53627d8c81
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: text/css
last-modified: Wed, 30 Sep 2020 01:23:06 GMT
etag: "2bf8-5f73ddfa-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2394
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.8.6 | 162.0.235.57 | 200 OK | 982 B |
URL HTTP/2www.fusionfirst.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with very long lines (4186), with no line terminators Hash24f4d7f425e792ab35adaab50816e54a 9e25bf79b674ddb7ba09ad7f118c50ec473c02c8 1c78bfb4d523785a4ebd37bb1f79f214f9bdb16673f7cc50805f7f1a26ad7f83
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: text/css
last-modified: Sat, 08 Jun 2019 06:15:02 GMT
etag: "105a-5cfb5266-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 982
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-K7JK6GL | 142.250.74.168 | 200 OK | 84 kB |
URL HTTP/2www.googletagmanager.com/gtm.js?id=GTM-K7JK6GL IP142.250.74.168:0
File typeUnicode text, UTF-8 text, with very long lines (31143) Hashd646ac9f5d52ca489912b7f6deb8549f 18b9ad8c6825b220216ee01850911ccab3d43747 da9cca44e87c4fdbef0dd11d957baabb3f79077992ce83e31f094c2042c0aecf
GET /gtm.js?id=GTM-K7JK6GL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 15 Dec 2022 19:02:22 GMT
expires: Thu, 15 Dec 2022 19:02:22 GMT
cache-control: private, max-age=900
last-modified: Thu, 15 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83524
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash0fbe3d80eaa6623da753aece08c3a818 d3c6fe97e3154f00f681647a3c74800008ac2d2f cab890482eacc4298414a2aa0e41ea5bce399eccd4d5e50c9cdc55c735c83b1e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.fusionfirst.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 | 162.0.235.57 | 200 OK | 2.3 kB |
URL HTTP/2www.fusionfirst.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 IP162.0.235.57:0
File typeASCII text, with very long lines (6406), with no line terminators Hash0a5d2d9461ad0dc29cdb0fbab916277d 2705d5ae926519a3bd371ceb07d2851236331a76 46cc96bf94441771fa1b64edd72c60408c5fc863142234f1906238b363dc4325
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.7 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Wed, 23 Jun 2021 09:36:14 GMT
etag: "1906-60d3008e-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2308
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 | 162.0.235.57 | 200 OK | 5.8 kB |
URL HTTP/2www.fusionfirst.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 IP162.0.235.57:0
File typeUnicode text, UTF-8 text, with very long lines (16323) Hash54751d4cd4f7fd32b25850ef8ad71fc6 47e74afa81675e761838a6eb5bc70ad9c7d47528 8f3249357e3247b7f0efc468ee2f421f5fd2ee1856af1e37f9e8dd1867753eba
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Tue, 15 Jun 2021 08:48:12 GMT
etag: "4056-60c8694c-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5805
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de | 162.0.235.57 | 200 OK | 1.7 kB |
URL HTTP/2www.fusionfirst.com/wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de IP162.0.235.57:0
File typeASCII text, with very long lines (5405) Hash3542d5a59cc8f715917094ef5195c984 9748b5fd456ca74067bd23b33512c5ffe1b7afa5 64d15e1842d5583a8b53802ffcce06997baa35eab6ee11be33ff53d25610be25
GET /wp-includes/js/dist/hooks.min.js?ver=a7edae857aab69d69fa10d5aef23a5de HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Thu, 27 May 2021 09:47:06 GMT
etag: "1540-60af6a9a-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1712
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/wp-popups-lite/src/assets/js/wppopups.js?ver=2.1.4.5 | 162.0.235.57 | 200 OK | 11 kB |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/wp-popups-lite/src/assets/js/wppopups.js?ver=2.1.4.5 IP162.0.235.57:0
Hash444436dd3b5d56a90b12bcfd6393f1db 484b2d333f568a11a04c76df37b8d06a683bb8a3 f8e968617eb4a097528c7018f720438398aa43103cb6ab3d8706b9182d1a9e99
GET /wp-content/plugins/wp-popups-lite/src/assets/js/wppopups.js?ver=2.1.4.5 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Wed, 24 Aug 2022 11:09:31 GMT
etag: "bada-630606eb-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10828
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/framework/js/fancySelect.js?ver=5.8.6 | 162.0.235.57 | 200 OK | 1.6 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/framework/js/fancySelect.js?ver=5.8.6 IP162.0.235.57:0
Hash7b6aa1e1dde65eab93681304f6f5be2f 6f91e7acd73ef9dd52932f9c684be991c5b22b01 5c8a49308cec117310b8ea5a5d7c839ae9b6292cf03a87c83b028f421822dbe0
GET /wp-content/themes/avantage/framework/js/fancySelect.js?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Sat, 25 May 2019 02:16:18 GMT
etag: "1b37-5ce8a572-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1564
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/framework/js/header.misc.js?ver=5.8.6 | 162.0.235.57 | 200 OK | 2.4 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/framework/js/header.misc.js?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with CRLF line terminators Hashf39561dc38eddec06fa5560a34b07de6 628923416c72e64f58e2cd3323e46c279b6c6336 2324be7ba5e54fad433702318ee1f8318c7f247e0f269ef6b01ecbcfa6a838f2
GET /wp-content/themes/avantage/framework/js/header.misc.js?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Mon, 02 Dec 2019 15:26:08 GMT
etag: "2885-5de52d10-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2441
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/framework/js/misc.js?ver=5.8.6 | 162.0.235.57 | 200 OK | 1.5 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/framework/js/misc.js?ver=5.8.6 IP162.0.235.57:0
Hashbc206b5e83bc6f9a452c1eb6b1a0e509 0cab19af96e5c3e07ca513e00505034205e9d879 dfcdeef9220b74b324637a017aa462c45fef8b164e9434fa3122c93d024bfd52
GET /wp-content/themes/avantage/framework/js/misc.js?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Sat, 01 Jun 2019 13:28:16 GMT
etag: "1336-5cf27d70-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1511
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/framework/js/framework_misc.js?ver=5.8.6 | 162.0.235.57 | 200 OK | 236 B |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/framework/js/framework_misc.js?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with CRLF line terminators Hashaa3c64ce82a671e7987471aa044e7a25 3bb9f9b549fe60a43aef99ced3c0236425469e68 aa19fb8e4562cb359e286603cbcfc6626105c517c6362b1d0a0bfa1b6b4228c2
GET /wp-content/themes/avantage/framework/js/framework_misc.js?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Mon, 11 Mar 2019 22:06:34 GMT
etag: "ec-5c86dbea-0;;;"
accept-ranges: bytes
content-length: 236
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-includes/js/wp-embed.min.js?ver=5.8.6 | 162.0.235.57 | 200 OK | 663 B |
URL HTTP/2www.fusionfirst.com/wp-includes/js/wp-embed.min.js?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with very long lines (1391) Hash992198ff853eb696f88bb0ec8586d015 a6262428de1b6c68cccf617d2a503f5a3bd3aecd ae0480bd571a7f57cccdbd08f77706edca84029f95bd90bc325224169528d21c
GET /wp-includes/js/wp-embed.min.js?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Thu, 07 Jan 2021 01:59:24 GMT
etag: "592-5ff66afc-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 663
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/bold-page-builder/content_elements/bt_bb_section/bt_bb_elements.js?ver=5.8.6 | 162.0.235.57 | 200 OK | 608 B |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/bold-page-builder/content_elements/bt_bb_section/bt_bb_elements.js?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with CRLF line terminators Hashb0f178fe6bb33f40baa71751b1afdc51 39ccab39f51885f68b5b95caf3a2c657aa6fdfa4 1802a9cb7d7c7e988a255edb38de82a189605bd4860a982e36395388b895d1e3
GET /wp-content/plugins/bold-page-builder/content_elements/bt_bb_section/bt_bb_elements.js?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Wed, 24 Aug 2022 11:09:35 GMT
etag: "60d-630606ef-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 608
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/bold-page-builder/content_elements_misc/js/bt_bb_progress_bar_advanced.js?ver=5.8.6 | 162.0.235.57 | 200 OK | 1.7 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/bold-page-builder/content_elements_misc/js/bt_bb_progress_bar_advanced.js?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with CRLF line terminators Hash544b0fcde15f0fc048dee97c649f294c 62e5ee7c47d7251cb13ca103d7277d8dd000c93d 7335a2fa4163e2cf883f65a69188e5ed655cb42444bc0b551f125e942ae2d066
GET /wp-content/themes/avantage/bold-page-builder/content_elements_misc/js/bt_bb_progress_bar_advanced.js?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Thu, 12 Dec 2019 20:03:54 GMT
etag: "22cc-5df29d2a-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1666
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash2e709a04ea80113c435ca4f9d37e93e7 053f34d74eded192d698bb20956897ec3e3ad23b 2535554bd9d9004c7888cde496278d847002218fb1d35a3d4bacdd98c8a92ff9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.35 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fusionfirst.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 19:33:54 GMT
expires: Thu, 14 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 84508
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash2e709a04ea80113c435ca4f9d37e93e7 053f34d74eded192d698bb20956897ec3e3ad23b 2535554bd9d9004c7888cde496278d847002218fb1d35a3d4bacdd98c8a92ff9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash2e709a04ea80113c435ca4f9d37e93e7 053f34d74eded192d698bb20956897ec3e3ad23b 2535554bd9d9004c7888cde496278d847002218fb1d35a3d4bacdd98c8a92ff9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 | 142.250.74.35 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data Hashb20371a6daf29d4a1f2e85dbbf40fb20 0355a01c1ccb45cb728e7e07c41c8ebf456f70bb 7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fusionfirst.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 19:42:34 GMT
expires: Thu, 14 Dec 2023 19:42:34 GMT
cache-control: public, max-age=31536000
age: 83988
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSarabun%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSarabun%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CRoboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CRoboto+Condensed%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSarabun%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0 | 142.250.74.106 | 200 OK | 13 kB |
URL HTTP/2fonts.googleapis.com/css?family=Roboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSarabun%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSarabun%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CRoboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CRoboto+Condensed%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSarabun%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0 IP142.250.74.106:0
Hash23e7b4ff1c39662cb394554f3cbf3af3 d9418f913392d1526e78e4b1c4e2889a0e120ea6 82e4a5bdc43980e98374602026c25f16546fa0dd52039d3bbe3444b86fed5834
GET /css?family=Roboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSarabun%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSarabun%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CRoboto%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CRoboto+Condensed%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic%7CSarabun%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900%2C100italic%2C200italic%2C300italic%2C400italic%2C500italic%2C600italic%2C700italic%2C800italic%2C900italic&subset=latin%2Clatin-ext&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 15 Dec 2022 19:02:21 GMT
date: Thu, 15 Dec 2022 19:02:21 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash2e709a04ea80113c435ca4f9d37e93e7 053f34d74eded192d698bb20956897ec3e3ad23b 2535554bd9d9004c7888cde496278d847002218fb1d35a3d4bacdd98c8a92ff9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.fusionfirst.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.8.6 | 162.0.235.57 | 200 OK | 480 B |
URL HTTP/2www.fusionfirst.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with very long lines (1193), with no line terminators Hashd59ffa27c14ca826b1b5915341d754ba 6ef3b5e24dc5355edeccd68fa3ba4e1f2345985e 03e70c6408cff95603bf9ce421312562c5fb98cf66d454252734a13c0d5e2c99
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Thu, 07 Jan 2021 01:59:24 GMT
etag: "4a9-5ff66afc-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 480
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/framework/js/video_shortcode.js?ver=5.8.6 | 162.0.235.57 | 200 OK | 396 B |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/framework/js/video_shortcode.js?ver=5.8.6 IP162.0.235.57:0
Hash3c954593a8ccc875a7f093a9b7190fd3 0b8e0cc29b3aab7397a6b7323876c8aec0952688 ded8f86bd0cb8eed662a4fe06e71eff56ffb9277fac836530bc8edf2719cdaae
GET /wp-content/themes/avantage/framework/js/video_shortcode.js?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Mon, 11 Mar 2019 22:06:34 GMT
etag: "359-5c86dbea-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 396
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/bold-page-builder/content_elements/bt_bb_progress_bar_advanced/bb_progressbar_advanced.js?ver=5.8.6 | 162.0.235.57 | 200 OK | 18 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/bold-page-builder/content_elements/bt_bb_progress_bar_advanced/bb_progressbar_advanced.js?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with very long lines (851), with CRLF, CR line terminators Hash4916d5c081a66871f8c57be8619adc92 7d83bcc9128371065a33379e1f499a0018753f3d 72245872aaac481c2a2452027866655b0d549a677d8d7d9313f90b99e251081a
GET /wp-content/themes/avantage/bold-page-builder/content_elements/bt_bb_progress_bar_advanced/bb_progressbar_advanced.js?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Mon, 28 Sep 2020 09:51:12 GMT
etag: "125ce-5f71b210-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 18345
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/sarabun/v13/DtVmJx26TKEr37c9YLJvilss6w.woff2 | 142.250.74.35 | 200 OK | 10 kB |
URL HTTP/2fonts.gstatic.com/s/sarabun/v13/DtVmJx26TKEr37c9YLJvilss6w.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 10300, version 1.0\012- data Hashdf74b4d70ab050af5e8fc0b20b3b7a0a c349c3b78342fe702b07f8cf9fb4992fa7fa640f 4509f48e0d6725e5c212d29dfde2540d8828426e452f186f80cbb8343adfe935
GET /s/sarabun/v13/DtVmJx26TKEr37c9YLJvilss6w.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fusionfirst.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 17:24:42 GMT
expires: Wed, 13 Dec 2023 17:24:42 GMT
cache-control: public, max-age=31536000
age: 178660
last-modified: Wed, 27 Apr 2022 16:03:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 | 162.0.235.57 | 200 OK | 36 kB |
URL HTTP/2www.fusionfirst.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 IP162.0.235.57:0
File typeASCII text, with very long lines (65266) Hashae9e4d6bef6e24982560a13d7a057326 32623cea274c7118492a696e18301b86363d7b06 e2b697029e72758669d8adc08d9bdb06ca5a0e5130df6f7b6de176c156f90237
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: application/x-javascript
last-modified: Wed, 30 Sep 2020 01:23:06 GMT
etag: "267aa-5f73ddfa-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 36311
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 | 142.250.74.35 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 15700, version 1.0\012- data Hash3d7f7413fca69bff4d231ebdc50aaab0 cb18e7943b6a8a0e3672d7242197c19a226b92e8 6b4fac99c39b9ee2693d87a2508d0c7d4b4859072966616bd1f6e18c5b2f9d36
GET /s/robotocondensed/v25/ieVl2ZhZI2eCN5jzbjEETS9weq8-19K7DQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fusionfirst.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15700
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 13 Dec 2022 15:42:33 GMT
expires: Wed, 13 Dec 2023 15:42:33 GMT
cache-control: public, max-age=31536000
age: 184789
last-modified: Tue, 19 Apr 2022 18:51:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/sarabun/v13/DtVmJx26TKEr37c9YK5silss6w.woff2 | 142.250.74.35 | 200 OK | 11 kB |
URL HTTP/2fonts.gstatic.com/s/sarabun/v13/DtVmJx26TKEr37c9YK5silss6w.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 10660, version 1.0\012- data Hashc0134d9b6360883ca2b05f809b66c34c 9693fb33c2adf0698480b0b66a485f06eb2a1169 7ac242ca01033f140f43a397a96e72c8ce6d3c241bd58353aba0dc9d0822f59d
GET /s/sarabun/v13/DtVmJx26TKEr37c9YK5silss6w.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fusionfirst.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 10660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 09 Dec 2022 13:33:27 GMT
expires: Sat, 09 Dec 2023 13:33:27 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:30:23 GMT
content-type: font/woff2
age: 538135
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/bold-page-builder/content_elements/bt_bb_accordion/bt_bb_accordion.js?ver=4.4.0 | 162.0.235.57 | 200 OK | 428 B |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/bold-page-builder/content_elements/bt_bb_accordion/bt_bb_accordion.js?ver=4.4.0 IP162.0.235.57:0
File typeASCII text, with CRLF line terminators Hash9e1472cd1a7922616d3181b2d7cacc66 29ef66e742430e80d8c32cd87ff9a62282dda908 7aa1e2855f5b6bbb1ee98870fab2456f963ae890786edd158d4ba56e96694856
GET /wp-content/plugins/bold-page-builder/content_elements/bt_bb_accordion/bt_bb_accordion.js?ver=4.4.0 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: application/x-javascript
last-modified: Wed, 24 Aug 2022 11:09:35 GMT
etag: "582-630606ef-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 428
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 | 142.250.74.35 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data Hashb9c29351c46f3e8c8631c4002457f48a e57e59c5780995ff2937ab2b511a769212974a87 f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fusionfirst.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Dec 2022 19:34:15 GMT
expires: Thu, 14 Dec 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 84488
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/uploads/2021/03/img-slider-01.jpg | 162.0.235.57 | 200 OK | 145 kB |
URL HTTP/2www.fusionfirst.com/wp-content/uploads/2021/03/img-slider-01.jpg IP162.0.235.57:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2500x1088, components 3\012- data Size145 kB (145148 bytes) Hashf7f416f138ab5be52db1839807c397dd 2e2106d7108dd9c6fe9cd2f36ed3d65eed65087f 59d5ad5caee99cd6a35474b6df4bcef7c4f31a46502f67bcb6a5d5a0bb9c6433
GET /wp-content/uploads/2021/03/img-slider-01.jpg HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: image/jpeg
last-modified: Thu, 25 Aug 2022 02:01:27 GMT
etag: "236fc-6306d7f7-0;;;"
accept-ranges: bytes
content-length: 145148
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| u.heatmap.it/log.js |  46.105.202.39 | 200 OK | 10 kB |
IP46.105.202.39:0
File typeUnicode text, UTF-8 text, with very long lines (27372) Hashed207286dd79ed2b7af3d5517760919c f72e58e52b9227a81643259bf203a12e15cc59cc 4aa7c11c47a8361882eebb4c8b32e1f599d9d4ee173c68cfe874e1bda29b3a69
GET /log.js HTTP/1.1
Host: u.heatmap.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 10 Dec 2022 08:37:11 GMT
last-modified: Sat, 19 Nov 2022 08:38:34 GMT
etag: "6378960a-6b2b"
expires: Sat, 10 Dec 2022 09:37:11 GMT
cache-control: max-age=3600
x-request-id: 520685767
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: br
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Matched cache
accept-ranges: bytes
content-length: 10532
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/fonts/HumanResources/HumanResources.woff | 162.0.235.57 | 200 OK | 90 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/fonts/HumanResources/HumanResources.woff IP162.0.235.57:0
File typeWeb Open Font Format, TrueType, length 90456, version 1.0\012- data Hash5cdeaa9ea9b76104ff3d1948e07d5c28 2365edcc963426f780f72220a3293a7b58373478 81c578246b9dadc26ea24dadcfef38fdb19bb83e0d11b945d18210552dfda2a8
GET /wp-content/themes/avantage/fonts/HumanResources/HumanResources.woff HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: application/font-woff
etag: "16158-5c86dbe0-0;;;"
accept-ranges: bytes
content-length: 90456
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/fonts/CustomerRelationshipManagement/CustomerRelationshipManagement.woff | 162.0.235.57 | 200 OK | 25 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/fonts/CustomerRelationshipManagement/CustomerRelationshipManagement.woff IP162.0.235.57:0
File typeWeb Open Font Format, TrueType, length 24900, version 1.0\012- data Hash8347866ed567bf6cb597e71b7658a3bd 870a682e7547915b2bb258ff62efc4bb04dc84fb 0a67682b90a390a617ab84b4db187da0ad43529c98c7428e850a48e7fde69a79
GET /wp-content/themes/avantage/fonts/CustomerRelationshipManagement/CustomerRelationshipManagement.woff HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: application/font-woff
etag: "6144-5c86dbe0-0;;;"
accept-ranges: bytes
content-length: 24900
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/fonts/JobResume/JobResume.woff | 162.0.235.57 | 200 OK | 33 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/fonts/JobResume/JobResume.woff IP162.0.235.57:0
File typeWeb Open Font Format, TrueType, length 32808, version 1.0\012- data Hashfa9d6df0576a27810fcdbcb0daf188f3 228a2d5d48a92a09166089eb2726dfea4a6080a3 ba6e488e7787af9ea563c660bb6b2a5688447aa065c275adc458170659f0f92a
GET /wp-content/themes/avantage/fonts/JobResume/JobResume.woff HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: application/font-woff
etag: "8028-5c86dbe0-0;;;"
accept-ranges: bytes
content-length: 32808
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/fonts/CorporateManagement/CorporateManagement.woff | 162.0.235.57 | 200 OK | 25 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/fonts/CorporateManagement/CorporateManagement.woff IP162.0.235.57:0
File typeWeb Open Font Format, TrueType, length 24964, version 1.0\012- data Hash6fb2e3ff01336c9f6b7fa656f472b664 b1beca98021953ecd29ea84b23ab2124035d1ea4 0061f3f2f7f44d4e0349e5854d14cb697fcbd7f1cb5586f2c91db12c2163e2b2
GET /wp-content/themes/avantage/fonts/CorporateManagement/CorporateManagement.woff HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: application/font-woff
etag: "6184-5c86dbe0-0;;;"
accept-ranges: bytes
content-length: 24964
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/uploads/2021/03/bgimg_2-min.png | 162.0.235.57 | 200 OK | 337 kB |
URL HTTP/2www.fusionfirst.com/wp-content/uploads/2021/03/bgimg_2-min.png IP162.0.235.57:0
File typePNG image data, 1237 x 1469, 8-bit colormap, non-interlaced\012- data Size337 kB (336873 bytes) Hashb4263dffdd6c5ef7c3a3b4be04c424d2 b39ccabc8fddb58a674a662844f6dd4fbdf6965e 8ade49ab702606a1a36e42aeee137791fd30139644bb41f06540e6ed018f76e2
GET /wp-content/uploads/2021/03/bgimg_2-min.png HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: image/png
last-modified: Thu, 25 Aug 2022 02:01:27 GMT
etag: "523e9-6306d7f7-0;;;"
accept-ranges: bytes
content-length: 336873
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/uploads/2021/03/img-slider-02.jpg | 162.0.235.57 | 200 OK | 132 kB |
URL HTTP/2www.fusionfirst.com/wp-content/uploads/2021/03/img-slider-02.jpg IP162.0.235.57:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2500x1088, components 3\012- data Size132 kB (131980 bytes) Hash709efa694cdb4530c208efb95220a190 2bf4883daef03205d41b2e795714f270391b00d3 e318955de50fa495e20e1c832726f7103a6af974446430ab0555dd3c7c4bcc02
GET /wp-content/uploads/2021/03/img-slider-02.jpg HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: image/jpeg
last-modified: Thu, 25 Aug 2022 02:01:27 GMT
etag: "2038c-6306d7f7-0;;;"
accept-ranges: bytes
content-length: 131980
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/fonts/Business/Business.woff | 162.0.235.57 | 200 OK | 54 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/fonts/Business/Business.woff IP162.0.235.57:0
File typeWeb Open Font Format, TrueType, length 54264, version 0.0\012- data Hash06cfc367dc75220b432c81b63880c017 812ef6c2a01406e3436e513c9f4a25bfad07567e ce70864d617df7526d9d2ae9bab27c5ab2199479b90beaff3c3e54786d901e26
GET /wp-content/themes/avantage/fonts/Business/Business.woff HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: application/font-woff
etag: "d3f8-5c86dbe2-0;;;"
accept-ranges: bytes
content-length: 54264
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.33.119.27 | 200 OK | 503 B |
IP23.33.119.27:0 ASN#20940 Akamai International B.V.
Hashfaf477897fee9c862129887ad0bf3cca 3fdec331ea4c3d58beebc2deed52c8dd43ac0b3a e59fe1598c685025ab9737ddb4755e1b60af0117f3620cf87230806edd1bbce3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E59FE1598C685025AB9737DDB4755E1B60AF0117F3620CF87230806EDD1BBCE3"
Last-Modified: Thu, 15 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13399
Expires: Thu, 15 Dec 2022 22:45:42 GMT
Date: Thu, 15 Dec 2022 19:02:23 GMT
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash500d7838b7582b456b8025ffe03ac9a8 ba64ec0d9ae36361848bc1be73a99e7c38575271 0da1844c4988d6497821f944b47dd19158be73f10deac19945ebdd9c18927485
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash500d7838b7582b456b8025ffe03ac9a8 ba64ec0d9ae36361848bc1be73a99e7c38575271 0da1844c4988d6497821f944b47dd19158be73f10deac19945ebdd9c18927485
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash500d7838b7582b456b8025ffe03ac9a8 ba64ec0d9ae36361848bc1be73a99e7c38575271 0da1844c4988d6497821f944b47dd19158be73f10deac19945ebdd9c18927485
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash500d7838b7582b456b8025ffe03ac9a8 ba64ec0d9ae36361848bc1be73a99e7c38575271 0da1844c4988d6497821f944b47dd19158be73f10deac19945ebdd9c18927485
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| u.heatmap.it/conf/www.fusionfirst.com.js | 46.105.202.39 | 200 OK | 48 B |
URL HTTP/2u.heatmap.it/conf/www.fusionfirst.com.js IP46.105.202.39:0
Hashb5570444e3637a75444e9461ab768c6c 6b9bc6009ff7312b2de5fb3c61a96a86842252ec adb18c1455b0ee2623b513e2242cf9e3f1c9a10c4ed20ebdf5804dd903ef61e4
GET /conf/www.fusionfirst.com.js HTTP/1.1
Host: u.heatmap.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 19:02:23 GMT
content-type: text/javascript;charset=UTF-8
expires: Thu, 15 Dec 2022 19:07:23 GMT
x-request-id: 65177071
content-encoding: br
cache-control: max-age=60
x-cdn-pop: sbg
x-cdn-pop-ip: 137.74.120.0/27
x-cacheable: Cacheable
accept-ranges: bytes
content-length: 48
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/fonts/Economy/Economy.woff | 162.0.235.57 | 200 OK | 55 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/fonts/Economy/Economy.woff IP162.0.235.57:0
File typeWeb Open Font Format, TrueType, length 55068, version 1.0\012- data Hashcbee2fc4eb444ed5d0dea99d4d36bfd9 3b03918e2ce6b896c2604af462b4bd03b45e84ce 0eab940ddcb84ad6dd49adbe8c7f1d159b09b6ef32c027dc8211777410b536e1
GET /wp-content/themes/avantage/fonts/Economy/Economy.woff HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: application/font-woff
etag: "d71c-5c86dbe0-0;;;"
accept-ranges: bytes
content-length: 55068
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/uploads/2019/04/img-experience.png | 162.0.235.57 | 200 OK | 338 kB |
URL HTTP/2www.fusionfirst.com/wp-content/uploads/2019/04/img-experience.png IP162.0.235.57:0
File typePNG image data, 1237 x 1469, 8-bit colormap, non-interlaced\012- data Size338 kB (338378 bytes) Hashaa9ba7cab41220254193e98b362c4257 66b1c333b607546ff3bb9e6f8d9e10772bf3773e af59a052fe2e1ceafe67f68ce9852f4da8a90d85f7c13563b655115bd9fdc814
GET /wp-content/uploads/2019/04/img-experience.png HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:21 GMT
content-type: image/png
last-modified: Thu, 25 Aug 2022 02:01:30 GMT
etag: "529ca-6306d7fa-0;;;"
accept-ranges: bytes
content-length: 338378
date: Thu, 15 Dec 2022 19:02:21 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| youtu.be/4_mO7V5tIoA?_=3 | 142.250.74.78 | 303 See Other | 0 B |
IP142.250.74.78:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /4_mO7V5tIoA?_=3 HTTP/1.1
Host: youtu.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
content-type: application/binary
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 15 Dec 2022 19:02:23 GMT
location: https://www.youtube.com/watch?_=3&v=4_mO7V5tIoA&feature=youtu.be
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
report-to: {"group":"SHORT_URL","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SHORT_URL"}]}
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="SHORT_URL"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: YSC=ZVrE3YPFTEA; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+450; expires=Sat, 14-Dec-2024 19:02:23 GMT; path=/; domain=.youtu.be; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| youtu.be/aQXYtLrh2fE?_=2 | 142.250.74.78 | 303 See Other | 0 B |
IP142.250.74.78:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aQXYtLrh2fE?_=2 HTTP/1.1
Host: youtu.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
content-type: application/binary
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 15 Dec 2022 19:02:23 GMT
location: https://www.youtube.com/watch?_=2&v=aQXYtLrh2fE&feature=youtu.be
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"SHORT_URL","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SHORT_URL"}]}
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="SHORT_URL"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: YSC=IuLjZJbG86A; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+283; expires=Sat, 14-Dec-2024 19:02:23 GMT; path=/; domain=.youtu.be; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| youtu.be/_7r8UAGscX0?_=4 | 142.250.74.78 | 303 See Other | 0 B |
IP142.250.74.78:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_7r8UAGscX0?_=4 HTTP/1.1
Host: youtu.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
content-type: application/binary
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 15 Dec 2022 19:02:23 GMT
location: https://www.youtube.com/watch?_=4&v=_7r8UAGscX0&feature=youtu.be
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"SHORT_URL","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SHORT_URL"}]}
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="SHORT_URL"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: YSC=KyQt_LZEfC0; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+192; expires=Sat, 14-Dec-2024 19:02:23 GMT; path=/; domain=.youtu.be; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| youtu.be/WCmDv5Hc_sc?_=1 | 142.250.74.78 | 303 See Other | 0 B |
IP142.250.74.78:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /WCmDv5Hc_sc?_=1 HTTP/1.1
Host: youtu.be
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 303 See Other
content-type: application/binary
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 15 Dec 2022 19:02:23 GMT
location: https://www.youtube.com/watch?_=1&v=WCmDv5Hc_sc&feature=youtu.be
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-opener-policy-report-only: same-origin-allow-popups; report-to="SHORT_URL"
report-to: {"group":"SHORT_URL","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SHORT_URL"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: YSC=HvKWdnMTZxA; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+594; expires=Sat, 14-Dec-2024 19:02:23 GMT; path=/; domain=.youtu.be; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| q.quora.com/_/ad/3656a153a8f04b7ab32f9bcd16e2d8b4/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.fusionfirst.com%2F | 52.72.186.224 | 200 OK | 43 B |
URL HTTP/1.1q.quora.com/_/ad/3656a153a8f04b7ab32f9bcd16e2d8b4/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.fusionfirst.com%2F IP52.72.186.224:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashdf3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /_/ad/3656a153a8f04b7ab32f9bcd16e2d8b4/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.fusionfirst.com%2F HTTP/1.1
Host: q.quora.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Thu, 15 Dec 2022 19:02:23 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,336237be48a4843ec7b33d01ecf47ac7,10.0.0.120,1738,91.90.42.154,,86149405784,1,1671130943.919,0.001,,.,0,0,0.004,0.004,-,0,0,197,230,115,10,35796,,,,,,-,
Content-Length: 43
Connection: keep-alive
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash500d7838b7582b456b8025ffe03ac9a8 ba64ec0d9ae36361848bc1be73a99e7c38575271 0da1844c4988d6497821f944b47dd19158be73f10deac19945ebdd9c18927485
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.fusionfirst.com/wp-content/uploads/2021/03/img-slider-03.jpg | 162.0.235.57 | 200 OK | 180 kB |
URL HTTP/2www.fusionfirst.com/wp-content/uploads/2021/03/img-slider-03.jpg IP162.0.235.57:0
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2500x1088, components 3\012- data Size180 kB (179497 bytes) Hash50ebdd1cc0d02e8e535f0f4fe9c83754 ccb63f22d6f26abb3c000aecf53c5fc31c022546 4c8bf143c4916e404b3530b072bf96ee0cbae9b3fcd1537a21ad751507c41658
GET /wp-content/uploads/2021/03/img-slider-03.jpg HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: image/jpeg
last-modified: Thu, 25 Aug 2022 02:01:27 GMT
etag: "2bd29-6306d7f7-0;;;"
accept-ranges: bytes
content-length: 179497
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/fonts/BusinessManagement/BusinessManagement.woff | 162.0.235.57 | 200 OK | 27 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/fonts/BusinessManagement/BusinessManagement.woff IP162.0.235.57:0
File typeWeb Open Font Format, TrueType, length 27136, version 1.0\012- data Hash9d4c94cf6c3b927e5c2d801121c85f85 9f5d4d7f218895b9be97d37ee093fd8a97557a88 5cd83b128b95f88f26227db6ce1c2284962f520ba88ea214e1d24489cd028573
GET /wp-content/themes/avantage/fonts/BusinessManagement/BusinessManagement.woff HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: application/font-woff
etag: "6a00-5c86dbe0-0;;;"
accept-ranges: bytes
content-length: 27136
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/fonts/BusinessOffice/BusinessOffice.woff | 162.0.235.57 | 200 OK | 57 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/fonts/BusinessOffice/BusinessOffice.woff IP162.0.235.57:0
File typeWeb Open Font Format, TrueType, length 57132, version 1.0\012- data Hash54cb185b1abf788a51b8ca76f76bf552 536c549918a2d54edae751da744cf4c2da0eb8ac a29138b87b3be4df47ded42812f1ceb19b8b398127360f02d97e8e40ff98867e
GET /wp-content/themes/avantage/fonts/BusinessOffice/BusinessOffice.woff HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: application/font-woff
etag: "df2c-5c86dbe0-0;;;"
accept-ranges: bytes
content-length: 57132
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/fonts/FontAwesome/FontAwesome.woff | 162.0.235.57 | 200 OK | 98 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/fonts/FontAwesome/FontAwesome.woff IP162.0.235.57:0
File typeWeb Open Font Format, TrueType, length 98024, version 4.7\012- data Hashfee66e712a8a08eef5805a46892932ad 28b782240b3e76db824e12c02754a9731a167527 ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
GET /wp-content/themes/avantage/fonts/FontAwesome/FontAwesome.woff HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: application/font-woff
etag: "17ee8-5c86dbe2-0;;;"
accept-ranges: bytes
content-length: 98024
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/fonts/Icon7Stroke/Icon7Stroke.woff | 162.0.235.57 | 200 OK | 28 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/fonts/Icon7Stroke/Icon7Stroke.woff IP162.0.235.57:0
File typeWeb Open Font Format, TrueType, length 28532, version 0.0\012- data Hash32201a1316f8a01e7be354d0028cee5e 1d3b933f277aea53978a9b31969d89faa87794e7 383ad31116f450185a6c793ae20e02d176466e80873e254361a496b503c2f0ec
GET /wp-content/themes/avantage/fonts/Icon7Stroke/Icon7Stroke.woff HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: application/font-woff
etag: "6f74-5c86dbe2-0;;;"
accept-ranges: bytes
content-length: 28532
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/print.css?ver=5.8.6 | 162.0.235.57 | 200 OK | 360 B |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/print.css?ver=5.8.6 IP162.0.235.57:0
File typeASCII text, with CRLF line terminators Hash40a937cf137453e173d704128abdb648 564e5aa06ecce19558489541363305a12518c697 577ab904a152649c733fb47b2007b01b9a2a3b6d31c0d41e019dbdfa821103fb
GET /wp-content/themes/avantage/print.css?ver=5.8.6 HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:23 GMT
content-type: text/css
last-modified: Mon, 11 Mar 2019 22:06:32 GMT
etag: "42a-5c86dbe8-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 360
date: Thu, 15 Dec 2022 19:02:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/fonts/FontAwesome5Solid/FontAwesome5Solid.woff | 162.0.235.57 | 200 OK | 98 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/fonts/FontAwesome5Solid/FontAwesome5Solid.woff IP162.0.235.57:0
File typeWeb Open Font Format, TrueType, length 98384, version 330.32636\012- data Hash333bae208dc363746961b234ff6c2500 43dae5c2482bfb5d04d896529600eb621181103a 7dd5fcdf6f4b330bf82965887ef6b9196b8d27855eddee99ac04fb63de0e351e
GET /wp-content/themes/avantage/fonts/FontAwesome5Solid/FontAwesome5Solid.woff HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:22 GMT
content-type: application/font-woff
etag: "18050-5de52d10-0;;;"
accept-ranges: bytes
content-length: 98384
date: Thu, 15 Dec 2022 19:02:22 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| eu5.heatmap.it/log/pv?pid=83381&u=https%3A%2F%2Fwww.fusionfirst.com%2F&tpl=.&pt=Fusion%20-%20Business%20Solutions%2C%20IT%20Services%20%7C%20Keeping%20U%20First&t=671605 | 149.202.82.129 | 204 No Content | 0 B |
URL HTTP/1.1eu5.heatmap.it/log/pv?pid=83381&u=https%3A%2F%2Fwww.fusionfirst.com%2F&tpl=.&pt=Fusion%20-%20Business%20Solutions%2C%20IT%20Services%20%7C%20Keeping%20U%20First&t=671605 IP149.202.82.129:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /log/pv?pid=83381&u=https%3A%2F%2Fwww.fusionfirst.com%2F&tpl=.&pt=Fusion%20-%20Business%20Solutions%2C%20IT%20Services%20%7C%20Keeping%20U%20First&t=671605 HTTP/1.1
Host: eu5.heatmap.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Server: nginx
Date: Thu, 15 Dec 2022 19:02:24 GMT
Content-Type: image/gif
Content-Length: 0
Connection: keep-alive
Expires: Thu, 15 Dec 2022 19:02:23 GMT
Cache-Control: no-cache
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash4361d48319cfb7297cf239236410e03b 4e5190e551554ba7c4e611f4edf8895e6326da3c 2be78899913cdc3364d3bc71d86161db2689b80f8282e6aa5c2c8d335bef5d1f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6332
Cache-Control: max-age=156397
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:24 GMT
Etag: "639b1671-116"
Expires: Sat, 17 Dec 2022 14:29:01 GMT
Last-Modified: Thu, 15 Dec 2022 12:43:29 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 278
|
|
| www.fusionfirst.com/wp-content/uploads/2020/01/bgn-boxes-2.jpg | 162.0.235.57 | 200 OK | 52 kB |
URL HTTP/2www.fusionfirst.com/wp-content/uploads/2020/01/bgn-boxes-2.jpg IP162.0.235.57:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1200x1200, components 3\012- data Hash8c7547244c7de2ddd19a20a428bb6142 f21c04848341512fbf4d5f63a7e02f95733de923 625f953d8d2efd5ac115069148c9117e17b861668f9c9277338d945ae294a3b5
GET /wp-content/uploads/2020/01/bgn-boxes-2.jpg HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:23 GMT
content-type: image/jpeg
last-modified: Thu, 25 Aug 2022 02:01:31 GMT
etag: "cc52-6306d7fb-0;;;"
accept-ranges: bytes
content-length: 52306
date: Thu, 15 Dec 2022 19:02:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/themes/avantage/fonts/Essential/Essential.woff | 162.0.235.57 | 200 OK | 86 kB |
URL HTTP/2www.fusionfirst.com/wp-content/themes/avantage/fonts/Essential/Essential.woff IP162.0.235.57:0
File typeWeb Open Font Format, TrueType, length 85584, version 0.0\012- data Hasha453ffdff2b13b73533eea61a680fa3e d49bf979c8c70b8f41266797c680258b320c384f 9b5d0ee8987108184ce37230bf1ec6b132e31ff6aea5f1d572848cc059626380
GET /wp-content/themes/avantage/fonts/Essential/Essential.woff HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:23 GMT
content-type: application/font-woff
etag: "14e50-5c86dbe2-0;;;"
accept-ranges: bytes
content-length: 85584
date: Thu, 15 Dec 2022 19:02:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/cookie-law-info/lite/frontend/images/close.svg | 162.0.235.57 | 200 OK | 632 B |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/cookie-law-info/lite/frontend/images/close.svg IP162.0.235.57:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1241) Hashac9251b8b6f2911a46fad46d8aa28194 79e9f81005012256046785809ebc35b91fe91a66 cfafb7c01984ea9abc29a3f9d99b075668d338aa5ae2faea0552812d81624c6e
GET /wp-content/plugins/cookie-law-info/lite/frontend/images/close.svg HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:23 GMT
content-type: image/svg+xml
etag: "541-635a2735-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 632
date: Thu, 15 Dec 2022 19:02:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/plugins/cookie-law-info/lite/frontend/images/poweredbtcky.svg | 162.0.235.57 | 200 OK | 1.4 kB |
URL HTTP/2www.fusionfirst.com/wp-content/plugins/cookie-law-info/lite/frontend/images/poweredbtcky.svg IP162.0.235.57:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (533) Hash4a3d6727217c8846b16fa86d4734ddb4 9a688300af833f350218aebd0f15057f39a85510 d5a760a5bb9bf837c41d08fefb70b105a10b64319b431d6e4c8559883a14bcaa
GET /wp-content/plugins/cookie-law-info/lite/frontend/images/poweredbtcky.svg HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:23 GMT
content-type: image/svg+xml
etag: "eb2-635a2735-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1354
date: Thu, 15 Dec 2022 19:02:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| tr-rc.lfeeder.com/?sid=JMvZ8g1gmrM42pOd&data=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 | 143.204.55.34 | 200 OK | 43 B |
URL HTTP/2tr-rc.lfeeder.com/?sid=JMvZ8g1gmrM42pOd&data=eyJnYVRyYWNraW5nSWRzIjpbXSwiZ2FNZWFzdXJlbWVudElkcyI6W10sImdhQ2xpZW50SWRzIjpbXSwiY29udGV4dCI6eyJsaWJyYXJ5Ijp7Im5hbWUiOiJsZnRyYWNrZXIiLCJ2ZXJzaW9uIjoiMi41OC4wIn0sInBhZ2VVcmwiOiJodHRwczovL3d3dy5mdXNpb25maXJzdC5jb20vIiwicGFnZVRpdGxlIjoiRnVzaW9uIC0gQnVzaW5lc3MgU29sdXRpb25zLCBJVCBTZXJ2aWNlcyB8IEtlZXBpbmcgVSBGaXJzdCIsInJlZmVycmVyIjoiIn0sImV2ZW50IjoidHJhY2tpbmctZXZlbnQiLCJjbGllbnRFdmVudElkIjoiYWI1NDRkOTMxZDIxZjc2NCIsInNjcmlwdElkIjoiSk12WjhnMWdtck00MnBPZCIsImNvb2tpZXNFbmFibGVkIjp0cnVlLCJjb25zZW50TGV2ZWwiOiJub25lIiwiYW5vbnltaXplSXAiOmZhbHNlLCJsZkNsaWVudElkIjoiTEYxLjEuZDkxODczMDM3OTMwZTFhNi4xNjcxMTMwOTQxMzUyIiwiZm9yZWlnbkNvb2tpZXMiOltdLCJwcm9wZXJ0aWVzIjp7fSwiYXV0b1RyYWNraW5nRW5hYmxlZCI6dHJ1ZSwiYXV0b1RyYWNraW5nTW9kZSI6Im9uX3NjcmlwdF9sb2FkIn0= IP143.204.55.34:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash325472601571f31e1bf00674c368d335 2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /?sid=JMvZ8g1gmrM42pOd&data=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 HTTP/1.1
Host: tr-rc.lfeeder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
server: CloudFront
date: Thu, 15 Dec 2022 19:02:24 GMT
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VunifFsVwYKdFFyTNxvNkQgD5S9bETXGA5rdoL5I3XrscYBQ7w6rLA==
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/uploads/2020/01/bgn-boxes-3.jpg | 162.0.235.57 | 200 OK | 87 kB |
URL HTTP/2www.fusionfirst.com/wp-content/uploads/2020/01/bgn-boxes-3.jpg IP162.0.235.57:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x1200, components 3\012- data Hash6bda3442358a90825fedf34d6ebb8ff5 930078f15897e915b6dddeaf6a7cfdf539887ec4 a724cabb12afc29ca40d88cebd31dc07a3f4e0cb1f6148651c77ae87f906dc73
GET /wp-content/uploads/2020/01/bgn-boxes-3.jpg HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:23 GMT
content-type: image/jpeg
last-modified: Thu, 25 Aug 2022 02:01:31 GMT
etag: "154a6-6306d7fb-0;;;"
accept-ranges: bytes
content-length: 87206
date: Thu, 15 Dec 2022 19:02:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/uploads/2020/01/bgn-boxes-01.jpg | 162.0.235.57 | 200 OK | 98 kB |
URL HTTP/2www.fusionfirst.com/wp-content/uploads/2020/01/bgn-boxes-01.jpg IP162.0.235.57:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x1200, components 3\012- data Hashca4a1d50cee7542e8e68a0d8dc5c53dc d4d3427db77bb5f21013b427f4ad7b320d06b8f1 3e4c80239d419b4eb7ac32d7f6579945a2edee0d285346e729d9ed8d1935956c
GET /wp-content/uploads/2020/01/bgn-boxes-01.jpg HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:23 GMT
content-type: image/jpeg
last-modified: Thu, 25 Aug 2022 02:01:31 GMT
etag: "18083-6306d7fb-0;;;"
accept-ranges: bytes
content-length: 98435
date: Thu, 15 Dec 2022 19:02:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-includes/js/mediaelement/mejs-controls.svg | 162.0.235.57 | 200 OK | 1.3 kB |
URL HTTP/2www.fusionfirst.com/wp-includes/js/mediaelement/mejs-controls.svg IP162.0.235.57:0
File typeSVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4597) Hash523e89523bf2e33352e22272b85ec630 fe6fa07a6ffb32f9d9baaa7b857eea6fbdbf754d acf1ec2ee28483e5d75b0d24180d30b20b8e85f2dcd9151ef7db5b72fa276056
GET /wp-includes/js/mediaelement/mejs-controls.svg HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.16
Connection: keep-alive
Cookie: cookieyes-consent=consentid:aVR2Qm5iSHk3dHRxV2J1QW9Cbk5yRE9tdVBpdXVVWUk,consent:no,action:,necessary:yes,functional:no,analytics:no,performance:no,advertisement:no; _gcl_au=1.1.1670888693.1671130941
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:23 GMT
content-type: image/svg+xml
etag: "11f6-59808ca0-0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1316
date: Thu, 15 Dec 2022 19:02:23 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash265916d2a0593eb24feac5fbc15140ed ab86ab5c1da114c82fabd9752f98fbf65502648d 40da94ba8f4698a6671d41eebb2fb54b1d7ed31b3a7583892f11ee7cea975c5b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4958
Cache-Control: max-age=158228
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:24 GMT
Etag: "639b22f6-1d7"
Expires: Sat, 17 Dec 2022 14:59:32 GMT
Last-Modified: Thu, 15 Dec 2022 13:36:54 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
|
|
| snap.licdn.com/li.lms-analytics/insight.min.js | 23.36.76.121 | 200 OK | 4.7 kB |
URL HTTP/2snap.licdn.com/li.lms-analytics/insight.min.js IP23.36.76.121:0 ASN#20940 Akamai International B.V.
File typeASCII text, with very long lines (13063) Hashbf269a225d9de1d11c6e2747d12ffbfb f3edd2899cced3e0ae6107c6837e954d8b4f1d86 38bcbdd59ce5cac7da632ad8788f5c520aa88d30a53af4cedeb9a989af4d0986
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 15 Dec 2022 18:31:06 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=84591
date: Thu, 15 Dec 2022 19:02:24 GMT
content-length: 4654
x-cdn: AKAM
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash59d4744b8c38f1a993c7948e83df2f66 973cb780e4496e843d53ef60afc79043e6eb568c 58929f8c9b924e272d783ac3c7b09217a4f764b210076efef1559e62f2f49efc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashe30904bd9b57028f7ba1cc8e04ff08fd 9acb88374abef6387243ce8c5cf1149d73879ac1 be1ece2af7858ffc84e916d4554a805760c13a2eab346ac5a09a232b79116225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| connect.facebook.net/en_US/fbevents.js |  31.13.72.12 | 200 OK | 27 kB |
URL HTTP/2connect.facebook.net/en_US/fbevents.js IP31.13.72.12:0
File typeASCII text, with very long lines (64348) Hash8b26cd4609e2025e51e90573a0fbd6f7 efc2006ae5297ad5ae5e064188b9fba73f6b868f e288b6a1e220f5fb781cfbb0b739b36c6acfdceccff8f0278fc151c241b0b50b
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: yJ4/RHiD2eDYSnHLcjctS/JDty7NdUW1r9KhFRyHjVGOWY5rdyuxlcKQlYcY89gVl1DuAlNRKrptRal47hjoPQ==
content-length: 27298
x-fb-trip-id: 1904183273
date: Thu, 15 Dec 2022 19:02:24 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| static.ads-twitter.com/uwt.js |  151.101.244.157 | 200 OK | 15 kB |
URL HTTP/2static.ads-twitter.com/uwt.js IP151.101.244.157:0
File typeASCII text, with very long lines (57596), with no line terminators Hash573e6a7f86f6f3063763360ef0672c01 b12eab3b4ac8872d49ac6e15f9cd17741765c0cf 02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Thu, 15 Dec 2022 19:02:24 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
|
|
| googleads.g.doubleclick.net/pagead/viewthroughconversion/976160556/?random=1671130940781&cv=11&fst=1671130940781&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.fusionfirst.com%2F&tiba=Fusion%20-%20Business%20Solutions%2C%20IT%20Services%20%7C%20Keeping%20U%20First&auid=1670888693.1671130941&rfmt=3&fmt=4 | 142.250.74.130 | 200 OK | 896 B |
URL HTTP/2googleads.g.doubleclick.net/pagead/viewthroughconversion/976160556/?random=1671130940781&cv=11&fst=1671130940781&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.fusionfirst.com%2F&tiba=Fusion%20-%20Business%20Solutions%2C%20IT%20Services%20%7C%20Keeping%20U%20First&auid=1670888693.1671130941&rfmt=3&fmt=4 IP142.250.74.130:0
File typeASCII text, with very long lines (1905), with no line terminators Hash74ea3ff5e3e519e4cecc2c3495afa4b4 4bb4a3f4878984440f38abfd0087bc59b4540107 349ba6c9b9a07de96b4baed6807197e32788aa7e5c742bf6ca97eb6d98fbdf4a
GET /pagead/viewthroughconversion/976160556/?random=1671130940781&cv=11&fst=1671130940781&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.fusionfirst.com%2F&tiba=Fusion%20-%20Business%20Solutions%2C%20IT%20Services%20%7C%20Keeping%20U%20First&auid=1670888693.1671130941&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 15 Dec 2022 19:02:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 896
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 15-Dec-2022 19:17:24 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 142.250.74.46 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP142.250.74.46:0
File typeASCII text, with very long lines (1325) Hash47e6f374ca946fddd5b59871b325736c baa9282efc8785e84d247c3bff518eaa45f101c4 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 15 Dec 2022 17:34:02 GMT
expires: Thu, 15 Dec 2022 19:34:02 GMT
cache-control: public, max-age=7200
age: 5302
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash265916d2a0593eb24feac5fbc15140ed ab86ab5c1da114c82fabd9752f98fbf65502648d 40da94ba8f4698a6671d41eebb2fb54b1d7ed31b3a7583892f11ee7cea975c5b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4958
Cache-Control: max-age=158228
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:24 GMT
Etag: "639b22f6-1d7"
Expires: Sat, 17 Dec 2022 14:59:32 GMT
Last-Modified: Thu, 15 Dec 2022 13:36:54 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
|
|
| ekr.zdassets.com/compose/918395f4-b2e2-4a55-b794-aecfc2b92782 | 104.18.72.113 | 200 OK | 5.5 kB |
URL HTTP/2ekr.zdassets.com/compose/918395f4-b2e2-4a55-b794-aecfc2b92782 IP104.18.72.113:0
File typeJSON data\012- , ASCII text, with very long lines (357), with no line terminators Hash54a4572bbed8ac53967018ff19f14bd5 12b411a4fabb5bd9a7173d9e534e682865531ab2 fa0b94a9392b97af1a3d8919ca0110c5d3f246675e851bd085e7f30250534cd2
GET /compose/918395f4-b2e2-4a55-b794-aecfc2b92782 HTTP/1.1
Host: ekr.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fusionfirst.com
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Dec 2022 19:02:23 GMT
content-type: application/json; charset=utf-8
status: 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
cache-control: max-age=600, public, s-maxage=60, stale-while-revalidate=600, stale-if-error=3600
etag: W/"2dd1bd3da2622ba38bde8704df98db0d"
x-request-id: 7790451ee9729914-SEA, 7790451ee9729914-SEA
x-runtime: 0.004845
vary: Origin, Accept-Encoding
x-zendesk-zorg: yes
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eASYCxLFlDYJsMWAl5gK1UVZ8KGRSix%2BRNKB2Cj8TzI36FJx4X8EwyuvhL7MR8DPPyzSAqlg%2FOA9spSvgsX78FxBSHsrc%2BquKjDOqMzNF9zSBSM1%2FVZzLVD4TbSpC1GnBm8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77a16eec3b72b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.fusionfirst.com/wp-content/uploads/2021/03/cropped-fevicon-2-32x32.png | 162.0.235.57 | 200 OK | 1.1 kB |
URL HTTP/2www.fusionfirst.com/wp-content/uploads/2021/03/cropped-fevicon-2-32x32.png IP162.0.235.57:0
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash3bafdc69ac857d79d41b2bf0cd11a202 7131757b385b45ed98e24e019c69ed9daa4e6a8a b114709c37841212cee7e0f1272db5d2b5e6b5c592e4b2008e0cd6d9a3a4ed8f
GET /wp-content/uploads/2021/03/cropped-fevicon-2-32x32.png HTTP/1.1
Host: www.fusionfirst.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Cookie: cookieyes-consent=consentid:aVR2Qm5iSHk3dHRxV2J1QW9Cbk5yRE9tdVBpdXVVWUk,consent:no,action:,necessary:yes,functional:no,analytics:no,performance:no,advertisement:no; _gcl_au=1.1.1670888693.1671130941; _lfa=LF1.1.d91873037930e1a6.1671130941352
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 15 Dec 2023 19:02:24 GMT
content-type: image/png
last-modified: Wed, 24 Aug 2022 11:18:44 GMT
etag: "465-63060914-0;;;"
accept-ranges: bytes
content-length: 1125
date: Thu, 15 Dec 2022 19:02:24 GMT
server: LiteSpeed
referrer-policy: no-referrer-when-downgrade
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashe30904bd9b57028f7ba1cc8e04ff08fd 9acb88374abef6387243ce8c5cf1149d73879ac1 be1ece2af7858ffc84e916d4554a805760c13a2eab346ac5a09a232b79116225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash59d4744b8c38f1a993c7948e83df2f66 973cb780e4496e843d53ef60afc79043e6eb568c 58929f8c9b924e272d783ac3c7b09217a4f764b210076efef1559e62f2f49efc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashcdc1a50b412710b272aefffe4c1dc6ba ee6fa6c0ad48bb1f8a8ea29f6ab312dd5123f9e4 4ae284a919fe654113056b81092e79791c8757a9e21d72537999df3fd42a99dd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashabadd7d5a404a7814a3d13e7698d0821 6f3dbf5dfcc020dabad7ecfe832fe31d32a046c7 9d56ae6698401d555d5d99c088261a58a3287b8f3ef691e899f10f9e87c5a520
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/pagead/1p-user-list/976160556/?random=1671130940781&cv=11&fst=1671130800000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.fusionfirst.com%2F&tiba=Fusion%20-%20Business%20Solutions%2C%20IT%20Services%20%7C%20Keeping%20U%20First&fmt=3&is_vtc=1&random=2681593930&rmt_tld=0&ipr=y | 216.58.207.228 | 200 OK | 42 B |
URL HTTP/2www.google.com/pagead/1p-user-list/976160556/?random=1671130940781&cv=11&fst=1671130800000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.fusionfirst.com%2F&tiba=Fusion%20-%20Business%20Solutions%2C%20IT%20Services%20%7C%20Keeping%20U%20First&fmt=3&is_vtc=1&random=2681593930&rmt_tld=0&ipr=y IP216.58.207.228:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/976160556/?random=1671130940781&cv=11&fst=1671130800000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.fusionfirst.com%2F&tiba=Fusion%20-%20Business%20Solutions%2C%20IT%20Services%20%7C%20Keeping%20U%20First&fmt=3&is_vtc=1&random=2681593930&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 15 Dec 2022 19:02:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.google.no/pagead/1p-user-list/976160556/?random=1671130940781&cv=11&fst=1671130800000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.fusionfirst.com%2F&tiba=Fusion%20-%20Business%20Solutions%2C%20IT%20Services%20%7C%20Keeping%20U%20First&fmt=3&is_vtc=1&random=2681593930&rmt_tld=1&ipr=y | 142.250.74.131 | 200 OK | 42 B |
URL HTTP/2www.google.no/pagead/1p-user-list/976160556/?random=1671130940781&cv=11&fst=1671130800000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.fusionfirst.com%2F&tiba=Fusion%20-%20Business%20Solutions%2C%20IT%20Services%20%7C%20Keeping%20U%20First&fmt=3&is_vtc=1&random=2681593930&rmt_tld=1&ipr=y IP142.250.74.131:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/976160556/?random=1671130940781&cv=11&fst=1671130800000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.fusionfirst.com%2F&tiba=Fusion%20-%20Business%20Solutions%2C%20IT%20Services%20%7C%20Keeping%20U%20First&fmt=3&is_vtc=1&random=2681593930&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 15 Dec 2022 19:02:24 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 29 kB |
IP93.184.220.29:0
Hashf2537dee227ad959a046d79e14f9f7bc 914afae72389acee6b77c008c2ed1a45b1259f63 4d1be72cfbcc98b49a65b8b7be2a723933e1202b1d6300b68036d9b85f779826
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6237
Cache-Control: max-age=153380
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:24 GMT
Etag: "639b0b07-138"
Expires: Sat, 17 Dec 2022 13:38:44 GMT
Last-Modified: Thu, 15 Dec 2022 11:54:47 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
|
|
| cdn.linkedin.oribi.io/partner/1244962/domain/fusionfirst.com/token | 54.230.111.8 | 200 OK | 0 B |
URL HTTP/2cdn.linkedin.oribi.io/partner/1244962/domain/fusionfirst.com/token IP54.230.111.8:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/1244962/domain/fusionfirst.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.fusionfirst.com/
Origin: https://www.fusionfirst.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Thu, 15 Dec 2022 14:01:31 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xCZsfVjouvEOahd_IrkqM5qdw4NVVSexixz6eIDvHN9igdub8FpzxQ==
age: 18053
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash215b076267525eee2fadb8d889e5f351 28d0a048b68627916191262fee89a8db4b1614b2 44da07142c9aad7201a7ccb38b4bf03c82f1a66b730a953c0306fe09e3025ad5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash06612a702dd3686207e6a4031f79d34e 3a1be9901f9c9271b91a2b00ee7e6abc49086ba5 154da1479719d54b088120f2435ab08c2a44743abe2c2e67ae78db9537ecef40
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| px.ads.linkedin.com/collect?v=2&fmt=js&pid=1244962&time=1671130941590&url=https%3A%2F%2Fwww.fusionfirst.com%2F | 13.107.42.14 | 302 Found | 0 B |
URL HTTP/2px.ads.linkedin.com/collect?v=2&fmt=js&pid=1244962&time=1671130941590&url=https%3A%2F%2Fwww.fusionfirst.com%2F IP13.107.42.14:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=1244962&time=1671130941590&url=https%3A%2F%2Fwww.fusionfirst.com%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1244962%26time%3D1671130941590%26url%3Dhttps%253A%252F%252Fwww.fusionfirst.com%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJgF4UJWmQonAAAAYUXKpQu0PFObcDjbxacWlCUFIFhrO-7qwJU3Fimade-tHNoZ3Rq89iGfjsuoQ; Max-Age=2592000; Expires=Sat, 14 Jan 2023 19:02:24 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQIXZ7ANsn8O1AAAAYUXKpQuJLPAQv6D8kUs87QDf3g6XyLk75y1pJAhrFKtM67fFXSJPaJQCVBTJud8nBfgdQ; Max-Age=2592000; Expires=Sat, 14 Jan 2023 19:02:24 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&9dc30fd3-9d32-4a11-888d-10f8050be0f4"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 15-Dec-2023 19:02:24 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2437:u=1:x=1:i=1671130944:t=1671217344:v=2:sig=AQEQWEHPOZi1VZOvMApRINOeIHOpy2Gz"; Expires=Fri, 16 Dec 2022 19:02:24 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-source-fabric: prod-lva1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXv4n5RZINgwetWqu4v5g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 7D3CBE4765094F2FA103A62FD46EB0A0 Ref B: OSL30EDGE0105 Ref C: 2022-12-15T19:02:24Z
date: Thu, 15 Dec 2022 19:02:24 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| t.co/i/adsct?bci=3&eci=2&event_id=64ffcc81-394c-4ceb-9acd-6b49c44c84a3&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=cddc51c0-bda0-4a26-8671-23dac728e9ff&tw_document_href=https%3A%2F%2Fwww.fusionfirst.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5fxm&type=javascript&version=2.3.29 | 104.244.42.5 | 200 OK | 43 B |
URL HTTP/2t.co/i/adsct?bci=3&eci=2&event_id=64ffcc81-394c-4ceb-9acd-6b49c44c84a3&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=cddc51c0-bda0-4a26-8671-23dac728e9ff&tw_document_href=https%3A%2F%2Fwww.fusionfirst.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5fxm&type=javascript&version=2.3.29 IP104.244.42.5:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash377d257f2d2e294916143c069141c1c5 b7cae69682cf31dd670b65088db8395acda6ed3e ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=64ffcc81-394c-4ceb-9acd-6b49c44c84a3&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=cddc51c0-bda0-4a26-8671-23dac728e9ff&tw_document_href=https%3A%2F%2Fwww.fusionfirst.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5fxm&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Dec 2022 19:02:23 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=5442359b-b029-49f1-be2d-dd4b22252202; Max-Age=63072000; Expires=Sat, 14 Dec 2024 19:02:24 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 5eed17b5a7cfb0a9
strict-transport-security: max-age=0
x-response-time: 106
x-connection-hash: d9b472732e510701b36a3ed749f199f524d7bffb4b68981a1091389542e43bd1
X-Firefox-Spdy: h2
|
|
| analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=64ffcc81-394c-4ceb-9acd-6b49c44c84a3&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=cddc51c0-bda0-4a26-8671-23dac728e9ff&tw_document_href=https%3A%2F%2Fwww.fusionfirst.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5fxm&type=javascript&version=2.3.29 | 104.244.42.67 | 200 OK | 43 B |
URL HTTP/2analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=64ffcc81-394c-4ceb-9acd-6b49c44c84a3&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=cddc51c0-bda0-4a26-8671-23dac728e9ff&tw_document_href=https%3A%2F%2Fwww.fusionfirst.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5fxm&type=javascript&version=2.3.29 IP104.244.42.67:0
File typeGIF image data, version 89a, 1 x 1\012- data Hash377d257f2d2e294916143c069141c1c5 b7cae69682cf31dd670b65088db8395acda6ed3e ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=64ffcc81-394c-4ceb-9acd-6b49c44c84a3&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=cddc51c0-bda0-4a26-8671-23dac728e9ff&tw_document_href=https%3A%2F%2Fwww.fusionfirst.com%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o5fxm&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 15 Dec 2022 19:02:24 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_oZkPTzgD8hy9VE70VC5G3A=="; Max-Age=63072000; Expires=Sat, 14 Dec 2024 19:02:24 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: bd6bfd746cf74a4b
strict-transport-security: max-age=631138519
x-response-time: 106
x-connection-hash: 98e180e7f14e62b7e201d29473c0baac010e15ddbbd7b80d2d28e97050191c3d
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=1067793070541856&ev=PageView&dl=https%3A%2F%2Fwww.fusionfirst.com%2F&rl=&if=false&ts=1671130942512&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.1.1671130942511.2117990977&it=1671130941668&coo=false&rqm=GET | 31.13.72.36 | 200 OK | 0 B |
URL HTTP/2www.facebook.com/tr/?id=1067793070541856&ev=PageView&dl=https%3A%2F%2Fwww.fusionfirst.com%2F&rl=&if=false&ts=1671130942512&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.1.1671130942511.2117990977&it=1671130941668&coo=false&rqm=GET IP31.13.72.36:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1067793070541856&ev=PageView&dl=https%3A%2F%2Fwww.fusionfirst.com%2F&rl=&if=false&ts=1671130942512&sw=1280&sh=1024&v=2.9.90&r=stable&ec=0&o=30&fbp=fb.1.1671130942511.2117990977&it=1671130941668&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 15 Dec 2022 19:02:25 GMT
X-Firefox-Spdy: h2
|
|
| www.facebook.com/tr/?id=1067793070541856&ev=SubmitApplication&dl=https%3A%2F%2Fwww.fusionfirst.com%2F&rl=&if=false&ts=1671130942515&sw=1280&sh=1024&v=2.9.90&r=stable&ec=1&o=30&fbp=fb.1.1671130942511.2117990977&it=1671130941668&coo=false&rqm=GET | 31.13.72.36 | 200 OK | 86 kB |
URL HTTP/2www.facebook.com/tr/?id=1067793070541856&ev=SubmitApplication&dl=https%3A%2F%2Fwww.fusionfirst.com%2F&rl=&if=false&ts=1671130942515&sw=1280&sh=1024&v=2.9.90&r=stable&ec=1&o=30&fbp=fb.1.1671130942511.2117990977&it=1671130941668&coo=false&rqm=GET IP31.13.72.36:0
File typegzip compressed data, from Unix\012- data Hashd0772a2d55b358417cb8c27621e0e1f7 4a44f2eb7c8ebf0625fbb7299f15ff089e0c0e88 8894bb7f4f88e79e9748b5180c893a0a1bbefc73517f70ff56e0b3d6008d6e0a
GET /tr/?id=1067793070541856&ev=SubmitApplication&dl=https%3A%2F%2Fwww.fusionfirst.com%2F&rl=&if=false&ts=1671130942515&sw=1280&sh=1024&v=2.9.90&r=stable&ec=1&o=30&fbp=fb.1.1671130942511.2117990977&it=1671130941668&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 15 Dec 2022 19:02:25 GMT
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash555d5f8ec20f82dee19df8138d5e4089 1afc389f7bd05c154890d93c835fe7fb7e09a109 58775b6c6b1471ca0e71cc02bc7ca6bcc62405f6c3d358082adb02504e3376fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 30 kB |
IP216.58.211.3:0
Hashf6ac03967a39fdd6e8861c3542efab9a a2118583f663bbeabd17e33c194aa9109e85dd49 cfbbd7a0de113d119b0a57e064edf1bc35c7bbea1de49a85db7e7fd4cc5764ea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1244962%26time%3D1671130941590%26url%3Dhttps%253A%252F%252Fwww.fusionfirst.com%252F%26liSync%3Dtrue | 13.107.42.14 | 302 Found | 0 B |
URL HTTP/2www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1244962%26time%3D1671130941590%26url%3Dhttps%253A%252F%252Fwww.fusionfirst.com%252F%26liSync%3Dtrue IP13.107.42.14:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D1244962%26time%3D1671130941590%26url%3Dhttps%253A%252F%252Fwww.fusionfirst.com%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=1244962&time=1671130941590&url=https%3A%2F%2Fwww.fusionfirst.com%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&81a14758-4a7d-4d94-841e-c61401965913"; Domain=.linkedin.com; Expires=Fri, 15-Dec-2023 19:02:25 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022121519022502e9ce68-a5de-4bf3-8cfc-b9512f530520AQGkUWMqUcCOj2ND6b77KaocY0RT81yr"; Domain=.www.linkedin.com; Expires=Fri, 15-Dec-2023 19:02:25 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzExMzA5NDU7MjswMjHQ2Zpi2q7VRO+y1IdM0oZh1PaxOIkXdPHxPqhs5lPLRA==; Domain=.linkedin.com; Expires=Tue, 13 Jun 2023 19:02:25 GMT; Path=/; Secure; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2437:u=1:x=1:i=1671130945:t=1671217345:v=2:sig=AQFKumtLEgZtC987eCpPoI1X_jAIMs8i"; Expires=Fri, 16 Dec 2022 19:02:25 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com onyx.www.linkedin.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXv4n5h3odCKRb/b1rRsw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A1019ACE2B034065A83B9F656511F193 Ref B: OSL30EDGE0105 Ref C: 2022-12-15T19:02:25Z
date: Thu, 15 Dec 2022 19:02:25 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| static.doubleclick.net/instream/ad_status.js | 142.250.74.134 | 200 OK | 86 kB |
URL HTTP/2static.doubleclick.net/instream/ad_status.js IP142.250.74.134:0
File typegzip compressed data, from Unix\012- data Hash577266df680a9e3c49c5e8f333989917 af3b258f28456a5de72ab5376624e31af1195e0c 4f4fe59f185bb915d4d68d6aa202b54062a8221aedeafb123543c100e31be4e0
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Dec 2022 18:51:04 GMT
expires: Thu, 15 Dec 2022 19:06:04 GMT
cache-control: public, max-age=900
age: 681
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hash555d5f8ec20f82dee19df8138d5e4089 1afc389f7bd05c154890d93c835fe7fb7e09a109 58775b6c6b1471ca0e71cc02bc7ca6bcc62405f6c3d358082adb02504e3376fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash7b3ec8f2b165188a8c51d8182ca1ec76 df25ded913d7cc7c8f23ec44f4b4cb2137847220 f66222d5c946fd777dd322daf66b1bbac9b7fdd2bd80d1bb189340297000f421
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash7b3ec8f2b165188a8c51d8182ca1ec76 df25ded913d7cc7c8f23ec44f4b4cb2137847220 f66222d5c946fd777dd322daf66b1bbac9b7fdd2bd80d1bb189340297000f421
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.138 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.138:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 15 Dec 2022 19:02:25 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.138 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.138:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 15 Dec 2022 19:02:25 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash276db8594b864b6dd0cc08dc46eb851a 326f05dade418b2cd6753d780bb9d6ae37826083 c894c4bb8948a062cb4d666d553b9f50a064a06793d9f066f3fa4a33dcfafb01
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashadfbe21eeb55a3bb76d07746566e8fbf 71564b58d2eda1657e5a4dcedffcfe438c2ba5af cc614d311cf4cb33d0eb3accc756ff50f16147be7873f53b8e6120913421cfa8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.138 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.138:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hash62b6ae56848dd24076a814d05ac96d13 b0ddcbc31b236877ed13b5779f19976a5d26ed4c db95866693916fa9bb878e48fca2a767b04e425e4aa9ce28f8a041ad3454f1dd
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 15 Dec 2022 19:02:25 GMT
server: ESF
cache-control: private
content-length: 30575
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.138 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.138:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hashceaf66eddb50f49c1c8bc65cff8711a8 ddfc7b7dd4824118624c5c791435f35d5ca30e6f 04b8ca4e06e9d5adf82a2cd5892bd3feeadedd409f6e734417067a6d9361123e
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 15 Dec 2022 19:02:25 GMT
server: ESF
cache-control: private
content-length: 30631
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| yt3.ggpht.com/plioXlZGoPMnsPxGqluE9hREX6c7_8CZ_BdkYvSQs7G1UwxcvGfvLbgIUG8Z-JJGndjIulTOKg=s68-c-k-c0x00ffffff-no-rj | 142.250.74.65 | 200 OK | 2.4 kB |
URL HTTP/2yt3.ggpht.com/plioXlZGoPMnsPxGqluE9hREX6c7_8CZ_BdkYvSQs7G1UwxcvGfvLbgIUG8Z-JJGndjIulTOKg=s68-c-k-c0x00ffffff-no-rj IP142.250.74.65:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data Hash6792c3dc805cc789590808b1fd637012 77ef61b63d3979bcc59ff0dd5b9f8e260c081950 a39b7454879736b572e31de0fc43a0c5a868e7a23cc4ad2e95831256263b39ce
GET /plioXlZGoPMnsPxGqluE9hREX6c7_8CZ_BdkYvSQs7G1UwxcvGfvLbgIUG8Z-JJGndjIulTOKg=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1"
expires: Fri, 16 Dec 2022 19:02:25 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="channels4_profile.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Thu, 15 Dec 2022 19:02:25 GMT
server: fife
content-length: 2440
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash7b3ec8f2b165188a8c51d8182ca1ec76 df25ded913d7cc7c8f23ec44f4b4cb2137847220 f66222d5c946fd777dd322daf66b1bbac9b7fdd2bd80d1bb189340297000f421
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| i.ytimg.com/vi_webp/_7r8UAGscX0/sddefault.webp | 142.250.74.150 | 200 OK | 19 kB |
URL HTTP/2i.ytimg.com/vi_webp/_7r8UAGscX0/sddefault.webp IP142.250.74.150:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash128af2fa45e9c8afd63d1cea3ff9c93c 49366495b12a136a9e58111ed019e0fb35a926c8 7275e39e4916558319d9dfd79f38287b88cefd56db8f301352cd466bcca441c1
GET /vi_webp/_7r8UAGscX0/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 19018
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Dec 2022 19:02:25 GMT
expires: Thu, 15 Dec 2022 21:02:25 GMT
cache-control: public, max-age=7200
etag: "1573039391"
content-type: image/webp
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| px.ads.linkedin.com/collect?v=2&fmt=js&pid=1244962&time=1671130941590&url=https%3A%2F%2Fwww.fusionfirst.com%2F&liSync=true | 13.107.42.14 | 200 OK | 0 B |
URL HTTP/2px.ads.linkedin.com/collect?v=2&fmt=js&pid=1244962&time=1671130941590&url=https%3A%2F%2Fwww.fusionfirst.com%2F&liSync=true IP13.107.42.14:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=1244962&time=1671130941590&url=https%3A%2F%2Fwww.fusionfirst.com%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&f92855c7-7ce5-4b04-8304-1ef607fa970f"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 15-Dec-2023 19:02:25 GMT; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2401:u=1:x=1:i=1671130945:t=1671217345:v=2:sig=AQGqD1EP75T_9lurA_CcDbtslwrhmJkb"; Expires=Fri, 16 Dec 2022 19:02:25 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXv4n5lgZ+k0PpCy+rv/g==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 6A1AAA6097834514BF923D2AC3102B91 Ref B: OSL30EDGE0105 Ref C: 2022-12-15T19:02:25Z
date: Thu, 15 Dec 2022 19:02:25 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/4_mO7V5tIoA/sddefault.jpg | 142.250.74.150 | 200 OK | 38 kB |
URL HTTP/2i.ytimg.com/vi/4_mO7V5tIoA/sddefault.jpg IP142.250.74.150:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3\012- data Hash19532c6bfea6bee63d4ce4b55c4d3220 5d7b112628407281c39121a7a99b52dd9366f0cc 3a728b832384b4bdf2ccd2a0c48708a0130ebf10fbdf32ed3cb303e35b0f8fca
GET /vi/4_mO7V5tIoA/sddefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 38532
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Dec 2022 19:02:25 GMT
expires: Thu, 15 Dec 2022 21:02:25 GMT
cache-control: public, max-age=7200
etag: "1650367160"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.138 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.138:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hashd497409afb4d6706cdb0dd9baf0409f0 43f0d750ea0f55837bfb4fcf177b2d8e639dab98 5f86f3757eadb8a174fbc96483c66ea2637eabd85e36705f18690033b7115ba4
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 15 Dec 2022 19:02:25 GMT
server: ESF
cache-control: private
content-length: 30607
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 472 B |
IP216.58.211.3:0
Hash276db8594b864b6dd0cc08dc46eb851a 326f05dade418b2cd6753d780bb9d6ae37826083 c894c4bb8948a062cb4d666d553b9f50a064a06793d9f066f3fa4a33dcfafb01
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 216.58.211.3 | 200 OK | 471 B |
IP216.58.211.3:0
Hashadfbe21eeb55a3bb76d07746566e8fbf 71564b58d2eda1657e5a4dcedffcfe438c2ba5af cc614d311cf4cb33d0eb3accc756ff50f16147be7873f53b8e6120913421cfa8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 15 Dec 2022 19:02:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| i.ytimg.com/vi_webp/aQXYtLrh2fE/sddefault.webp | 142.250.74.150 | 200 OK | 16 kB |
URL HTTP/2i.ytimg.com/vi_webp/aQXYtLrh2fE/sddefault.webp IP142.250.74.150:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash521554860c70e60e028c3755bc2add33 353e9211ffc3ae3b1b1f0408b1640a2dde4cff50 cc8d51c0ef05b2902be52507fab6bfcde09b976e4bee6a5bcc8b62301a39423f
GET /vi_webp/aQXYtLrh2fE/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 16180
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 15 Dec 2022 19:02:25 GMT
expires: Thu, 15 Dec 2022 21:02:25 GMT
cache-control: public, max-age=7200
etag: "1572605311"
content-type: image/webp
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-103975928-2&cid=1214707532.1671130942&jid=771684557&gjid=2003595061&_gid=916692902.1671130942&_u=YEBAAEAAAAAAACAAI~&z=1933316052 | 64.233.164.156 | 200 OK | 4 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-103975928-2&cid=1214707532.1671130942&jid=771684557&gjid=2003595061&_gid=916692902.1671130942&_u=YEBAAEAAAAAAACAAI~&z=1933316052 IP64.233.164.156:0
File typeASCII text, with no line terminators Hash48c0473b7821185d937e685216e2168b 3743e47f8a429a5e87b86cb582d78940733d9d2e 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-103975928-2&cid=1214707532.1671130942&jid=771684557&gjid=2003595061&_gid=916692902.1671130942&_u=YEBAAEAAAAAAACAAI~&z=1933316052 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.fusionfirst.com
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.fusionfirst.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 15 Dec 2022 19:02:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.138 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.138:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 15 Dec 2022 19:02:26 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.138 | 200 OK | 114 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.138:0
File typeJSON data\012- , ASCII text, with no line terminators Hashb2168699d65c9c55d9e5ba063b776d5b 6b4a7891b1e013ad668174257d132ef721091b75 2a36fb01f239bd73e49ce3c7b705f2d413606e1464358d78e5c6f3796b982b20
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1243
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 15 Dec 2022 19:02:26 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| c.clarity.ms/c.gif | 20.234.93.27 | 302 Found | 0 B |
IP20.234.93.27:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=88E6F8B39E594E06BDBC727F2FA815DF&RedC=c.clarity.ms&MXFR=24EE1CA6FD0F6A3D2E860EDDF90F64A5
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=24EE1CA6FD0F6A3D2E860EDDF90F64A5; domain=.clarity.ms; expires=Tue, 09-Jan-2024 19:02:26 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Thu, 15 Dec 2022 19:02:26 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| c.bing.com/c.gif?CtsSyncId=88E6F8B39E594E06BDBC727F2FA815DF&RedC=c.clarity.ms&MXFR=24EE1CA6FD0F6A3D2E860EDDF90F64A5 | 13.107.21.200 | 302 Found | 0 B |
URL HTTP/2c.bing.com/c.gif?CtsSyncId=88E6F8B39E594E06BDBC727F2FA815DF&RedC=c.clarity.ms&MXFR=24EE1CA6FD0F6A3D2E860EDDF90F64A5 IP13.107.21.200:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=88E6F8B39E594E06BDBC727F2FA815DF&RedC=c.clarity.ms&MXFR=24EE1CA6FD0F6A3D2E860EDDF90F64A5 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=88E6F8B39E594E06BDBC727F2FA815DF&MUID=1BB07258C5AB676F3FD66023C4FC6624
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=1BB07258C5AB676F3FD66023C4FC6624; domain=c.bing.com; expires=Tue, 09-Jan-2024 19:02:26 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7C5D09A4A72D4CC9AA2C0461584E2CBD Ref B: OSL30EDGE0408 Ref C: 2022-12-15T19:02:26Z
date: Thu, 15 Dec 2022 19:02:25 GMT
content-length: 0
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/classic/web-widget-8165-94a352f.js | 104.18.70.113 | 200 OK | 194 kB |
URL HTTP/2static.zdassets.com/web_widget/latest/classic/web-widget-8165-94a352f.js IP104.18.70.113:0
File typeASCII text, with very long lines (65307) Size194 kB (193952 bytes) Hashabc9a56e333349dc33fbc780f7421888 291a6975bb1aa4d99463f24fec3adfbe1a91948f 6378befccdc9caca7a32e77965b51516dedcac5fb1786b4446b9a1d32fca265b
GET /web_widget/latest/classic/web-widget-8165-94a352f.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 19:02:26 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: lMnngNrJ2cGkizHZfEO5Z15hZKxatSTGI00zAl4adIPaM+sWOptLONg3nmuWwaYoEjl3nSAk/mk=
x-amz-request-id: NWC5C7ADQKNNHJ0A
x-amz-replication-status: COMPLETED
last-modified: Mon, 12 Dec 2022 03:56:30 GMT
etag: W/"d519ea27f763cb6ec80aeec5b45213a7"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 12 Dec 2023 03:56:29 GMT
x-amz-version-id: fp99Zm_D4223iXBfjf0boSUdnKNTOxqu
cf-cache-status: HIT
age: 241344
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uIS7U8udoBnmb94UtW0eieU4Xy72zpKaiRTXXI0uUkKdecUAYOHn9f8ZlAP0YmKmRxzuMnvYzbkfIO0n9LzntJDSVd3iRYsCrpS8p6vGtNZpg%2BhXST5JxuQTC9YZ9ZJoYOfTo10%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77a16f010c43b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| c.clarity.ms/c.gif?CtsSyncId=88E6F8B39E594E06BDBC727F2FA815DF&MUID=1BB07258C5AB676F3FD66023C4FC6624 | 20.234.93.27 | 200 OK | 42 B |
URL HTTP/2c.clarity.ms/c.gif?CtsSyncId=88E6F8B39E594E06BDBC727F2FA815DF&MUID=1BB07258C5AB676F3FD66023C4FC6624 IP20.234.93.27:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
File typeGIF image data, version 89a, 1 x 1\012- data Hash32023bb33cfb2a1990a4ef2d85b6ac16 23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1 99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=88E6F8B39E594E06BDBC727F2FA815DF&MUID=1BB07258C5AB676F3FD66023C4FC6624 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fusionfirst.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Mon, 12 Dec 2022 18:28:34 GMT
accept-ranges: bytes
etag: "ea79178b57ed91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Thu, 15-Dec-2022 19:12:26 GMT; path=/; SameSite=None; Secure;
date: Thu, 15 Dec 2022 19:02:26 GMT
content-length: 42
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/classic/web-widget-classic-94a352f.js | 104.18.70.113 | 200 OK | 4.0 kB |
URL HTTP/2static.zdassets.com/web_widget/latest/classic/web-widget-classic-94a352f.js IP104.18.70.113:0
File typeASCII text, with very long lines (13518), with no line terminators Hash95b3d8714257dd4a3121d62817161c1b 5b3158c022eb36147142d5cd5c87436f7703a96a c1cfb9a7d1effb6abd9bed8fba1bb15af8d898437014c9656cc19bc318c88eeb
GET /web_widget/latest/classic/web-widget-classic-94a352f.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 19:02:26 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: dPOP6xHhHab6CYR/3dnQZuV0bP3kHWj849s2NfJDNaOva27ci5Z9XpECEO4G0YSzWMMRQ7Wz3ZI=
x-amz-request-id: HE9VZNWQA007K7Z6
x-amz-replication-status: COMPLETED
last-modified: Mon, 12 Dec 2022 03:56:30 GMT
etag: W/"01d8bfa51a238bd912133562c0a25a5e"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 12 Dec 2023 03:56:29 GMT
x-amz-version-id: WKSulJEqXAv_ju6oTFa_dnL3taTDP4Dt
cf-cache-status: HIT
age: 241344
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uICP%2BKIPDmStcGEN2snuEVdxFqdo9ykBFGTTR3cqBJw8ENL3AsQvkx4IgSlZZhq4QkROUCK1NCs1CRoyXxpdqYL%2BwGvXvOdS3uuHk5f8z4On2VzwTiHyBPqShNXODBjePWSn3Sc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77a16f001b09b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| b.clarity.ms/collect | 20.75.32.255 | 204 No Content | 389 B |
IP20.75.32.255:0 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash6cbae326f8fd08bc46be0a2497a612ad 7e15e9e5f8afd745e426202f8286967c9f8579a5 1f9ca1bcb79c29cd2d7e0b5d13b3fae7cfddacbc87b387749192d1d30e9fb36e
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1233
Origin: https://www.fusionfirst.com
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.fusionfirst.com
access-control-allow-credentials: true
date: Thu, 15 Dec 2022 19:02:28 GMT
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07861bcb-0cbb-458b-b85e-45f3efc2391a.jpeg | 34.120.237.76 | 200 OK | 5.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07861bcb-0cbb-458b-b85e-45f3efc2391a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash9d38060edf5f77bdaa18a4dd3b092c12 50b89e4fbdb88026899ce49cb45b0d6286f303a7 8ff9d03bca03022c717004f96a178d4982d16b575cb70a1a237ca76f90f4f0e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F07861bcb-0cbb-458b-b85e-45f3efc2391a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 5789
x-amzn-requestid: bb0455df-4252-4b04-a24c-eb101e3e40db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dKWBdFAUIAMFaig=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639a6a09-1e3f6b0d0a59da3807acffee;Sampled=0
x-amzn-remapped-date: Thu, 15 Dec 2022 00:27:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QQrpPJpyUuwf5USygp_vUiZ-S2Jt7VUN8yClS2Pt_IUgVwMn-xeDhQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Dec 2022 00:38:36 GMT
etag: "50b89e4fbdb88026899ce49cb45b0d6286f303a7"
content-type: image/jpeg
age: 66232
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| sc.lfeeder.com/lftracker_v1_JMvZ8g1gmrM42pOd.js | 143.204.55.10 | 200 OK | 0 B |
URL HTTP/2sc.lfeeder.com/lftracker_v1_JMvZ8g1gmrM42pOd.js IP143.204.55.10:0
GET /lftracker_v1_JMvZ8g1gmrM42pOd.js HTTP/1.1
Host: sc.lfeeder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 07:08:46 GMT
x-amz-version-id: 9pSAbiEIwtx32ZVAmwwqA0lZrFGAlikT
server: AmazonS3
content-encoding: gzip
date: Thu, 15 Dec 2022 19:02:23 GMT
cache-control: max-age=3600
etag: W/"d3f301e199887a5037f4e8c3debe5cc7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: NjUfI4Vb9m6kefpmRbIAteaICS64d3PgJn8GXCr0TFp1Tf2s6lKmqQ==
age: 3057
X-Firefox-Spdy: h2
|
|
| www.clarity.ms/tag/eh91j8bf4y?ref=gtm2 | 13.107.213.53 | 200 OK | 0 B |
URL HTTP/2www.clarity.ms/tag/eh91j8bf4y?ref=gtm2 IP13.107.213.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/eh91j8bf4y?ref=gtm2 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=50147a0122b941b8a93c4c1b23db50bd.20221215.20231215; expires=Fri, 15 Dec 2023 19:02:24 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:593e4080-f032-4d00-a652-e17f01252a9d
x-cache: CONFIG_NOCACHE
x-azure-ref: 0QG+bYwAAAADxgjZoExwkQYaqwC5xBe7xU1ZHMjBFREdFMDUwOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Thu, 15 Dec 2022 19:02:24 GMT
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/web-widget-framework-3a16b4e4334cbd2a5f4b.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/web-widget-framework-3a16b4e4334cbd2a5f4b.js IP104.18.70.113:0
GET /web_widget/latest/web-widget-framework-3a16b4e4334cbd2a5f4b.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 19:02:23 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: vw8uLvSi0PPV/e1JFExo/jqbA7xH+mhflvJllfEdqUKuLK11ol6RBvChMmWiXFIfejDapr0Bhcg=
x-amz-request-id: HE9G59SE6DX388VX
x-amz-replication-status: COMPLETED
last-modified: Mon, 12 Dec 2022 03:53:48 GMT
etag: W/"0c4afe4fc1ec97a9ec0f5a2d287e53d3"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 12 Dec 2023 03:53:47 GMT
x-amz-version-id: mAdpmZbYpyxtztBajj267uZ7zcp7XUPj
cf-cache-status: HIT
age: 241341
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UNc%2FxLrmuzvY3BqJCKWE0cdS5VZhD54YMK2HPvgQCbJZSIKBoikMHrsMORGnrFgRodkI%2Bvfhi%2FRfCy8QCAr7TUdBBTUDRmoSzWpK12oOnCJPNn9RSl9Tumj1wStXzMUi5v93wpU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77a16eefcc66b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.clarity.ms/eus2/s/0.7.1/clarity.js | 13.107.213.53 | 200 OK | 0 B |
URL HTTP/2www.clarity.ms/eus2/s/0.7.1/clarity.js IP13.107.213.53:0 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
GET /eus2/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d910026edb5a9e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-azure-ref-originshield: 0vhmbYwAAAACabK7cPyATTaDYgByqqz6xQU1TMDRFREdFMTkyMgA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
x-azure-ref: 0QG+bYwAAAACw2MqbyeSSQLoJ1eaRUlxOU1ZHMjBFREdFMDUwOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Thu, 15 Dec 2022 19:02:24 GMT
X-Firefox-Spdy: h2
|
|
| cdn.linkedin.oribi.io/partner/1244962/domain/fusionfirst.com/token | 54.230.111.8 | 200 OK | 0 B |
URL HTTP/2cdn.linkedin.oribi.io/partner/1244962/domain/fusionfirst.com/token IP54.230.111.8:0
GET /partner/1244962/domain/fusionfirst.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.fusionfirst.com
Connection: keep-alive
Referer: https://www.fusionfirst.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Thu, 15 Dec 2022 19:02:24 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qw9EhUYqZqw3Evl0uPAmcMnxu5wo8hZHQ-gfOCi4OuPH-qhYtGBdcQ==
X-Firefox-Spdy: h2
|
|
| static.zdassets.com/web_widget/latest/classic/web-widget-5324-94a352f.js | 104.18.70.113 | 200 OK | 0 B |
URL HTTP/2static.zdassets.com/web_widget/latest/classic/web-widget-5324-94a352f.js IP104.18.70.113:0
GET /web_widget/latest/classic/web-widget-5324-94a352f.js HTTP/1.1
Host: static.zdassets.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 15 Dec 2022 19:02:26 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: x8wxoCzvS1tlttD8a4UCOfxvEeBkyeoWKGXnfLQc3X4McL2CCS1h4oOgH8tV9e/v12DsCqceaUY=
x-amz-request-id: NWC23SJ8R0HHVBC0
x-amz-replication-status: COMPLETED
last-modified: Mon, 12 Dec 2022 03:56:30 GMT
etag: W/"3af63eb3b3f7544b747fa56736c9a54e"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=31536000
expires: Tue, 12 Dec 2023 03:56:29 GMT
x-amz-version-id: cUupAnfVyVKVaOdHLgbjSv75rCFq4.x5
cf-cache-status: HIT
age: 241344
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=snl08f7zKhtf%2FRv5o02lAhXngtfc5UdK1AS1KlJYXHCX8T2GE4ar8UxhcwLdiDMoKMGPWx8ZwO4neFmD1fI84qqr81nO6SWflKBXYNIsYbjkoHmJfu8pRjk0vSaoZTvUcgb7rvE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 77a16f010c47b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|