planoffice.com/
301 Moved Permanently 162 B IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 29 Jan 2023 02:09:43 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://planoffice.com/
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5456
Expires: Sun, 29 Jan 2023 03:40:40 GMT
Date: Sun, 29 Jan 2023 02:09:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7599
Expires: Sun, 29 Jan 2023 04:16:23 GMT
Date: Sun, 29 Jan 2023 02:09:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2659
Expires: Sun, 29 Jan 2023 02:54:03 GMT
Date: Sun, 29 Jan 2023 02:09:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 01:35:33 GMT
content-type: application/json
age: 2051
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +KS8NbeWHh8NfDeqEZzmQvcSH+FuPhvgHftOkU9KEjcYkNDLH9KJNTv/D958yFB1DQM1kymBFGU=
x-amz-request-id: 6SCVFBRWQX7S4DS5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 01:50:08 GMT
age: 1176
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:44 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 35914a3c4bfda5a96d0d57fb15f5c9b4
3763c3efc114d6a99d2a899d18b4b385dcf54a4b
732d5fa3396ca414439c826fb31ca6d599427da802cd3ab43ce1036d1998140a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "732D5FA3396CA414439C826FB31CA6D599427DA802CD3AB43CE1036D1998140A"
Last-Modified: Sun, 29 Jan 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21531
Expires: Sun, 29 Jan 2023 08:08:35 GMT
Date: Sun, 29 Jan 2023 02:09:44 GMT
Connection: keep-alive
planoffice.com/images/blank.gif?crc=4208392903
200 OK 43 B URL HTTP/2 planoffice.com/images/blank.gif?crc=4208392903
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /images/blank.gif?crc=4208392903 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:44 GMT
content-type: image/gif
content-length: 43
x-accel-version: 0.01
last-modified: Wed, 08 May 2019 15:23:10 GMT
etag: "2b-58861e93f5380"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:44 GMT
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 839f992874f43406a9e4b3bf78dbf543
5931d414a576be8930236b579aa05e365ad30368
525570fb1fde6295f9149f4ede72a19eddd08c818c5e0b0ca88ddcfb6d3fd42e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5872
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:09:44 GMT
Last-Modified: Sun, 29 Jan 2023 00:31:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
200 OK 280 B IP
Hash 839f992874f43406a9e4b3bf78dbf543
5931d414a576be8930236b579aa05e365ad30368
525570fb1fde6295f9149f4ede72a19eddd08c818c5e0b0ca88ddcfb6d3fd42e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5872
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:09:44 GMT
Last-Modified: Sun, 29 Jan 2023 00:31:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:09:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 280 B IP
Hash 839f992874f43406a9e4b3bf78dbf543
5931d414a576be8930236b579aa05e365ad30368
525570fb1fde6295f9149f4ede72a19eddd08c818c5e0b0ca88ddcfb6d3fd42e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5872
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:09:44 GMT
Last-Modified: Sun, 29 Jan 2023 00:31:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
planoffice.com/scripts/require.js?crc=7928878
200 OK 6.9 kB URL HTTP/2 planoffice.com/scripts/require.js?crc=7928878
IP
File type ASCII text, with very long lines (536), with CRLF line terminators
Hash 439aca4eb53ffdcc7612fb2a473dba13
1d330042998bb7a8ac2f9cc5f4d1413de48e5162
b8f265783c555ab2188a0004288eebc6eb5d65fa6c93df98a2390a4fdfbf0791
GET /scripts/require.js?crc=7928878 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:44 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 15:26:02 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:44 GMT
etag: W/"5cd2f50a-4024"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-58707219-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-58707219-1
IP
File type ASCII text, with very long lines (1759)
Hash 821c93d203bf0499c4e9da8455c3c113
849e6e7e74c4bb072923b00a469f353a3da43de9
996e7c2cc27d0387a8d248ecf0efc63606291c3d5733a54c23242ea88504b1f7
GET /gtag/js?id=UA-58707219-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 02:09:44 GMT
expires: Sun, 29 Jan 2023 02:09:44 GMT
cache-control: private, max-age=900
last-modified: Sun, 29 Jan 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44062
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 839f992874f43406a9e4b3bf78dbf543
5931d414a576be8930236b579aa05e365ad30368
525570fb1fde6295f9149f4ede72a19eddd08c818c5e0b0ca88ddcfb6d3fd42e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5872
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:09:44 GMT
Last-Modified: Sun, 29 Jan 2023 00:31:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 280
ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.js
200 OK 111 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jqueryui/1.9.2/jquery-ui.js
IP
File type ASCII text, with very long lines (840)
Size 111 kB (110791 bytes)
Hash a15cdee11eed7b5b5eac46e215d13821
55480c82fa4c06a82fe468103b9518ee00715283
6a9225af53373d4d1b6ee74342bb6b75578da58499083684bd1c95cfd0c24214
GET /ajax/libs/jqueryui/1.9.2/jquery-ui.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 110791
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:39:05 GMT
expires: Sat, 27 Jan 2024 02:39:05 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 171039
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:09:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:09:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
webfonts.creativecloud.com/dosis:n5,n3,n6,n4,n7:default.js
503 Service Unavailable 176 B URL HTTP/1.1 webfonts.creativecloud.com/dosis:n5,n3,n6,n4,n7:default.js
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 422984d837d6af7b99fcdbc5da8dfce7
b6e86436ceaa50692eda18093b4b706287b3cfe3
e8279252c9b9a5e41054412e78c9e94a42597752eb82edf99c0e63fb5301ef51
GET /dosis:n5,n3,n6,n4,n7:default.js HTTP/1.1
Host: webfonts.creativecloud.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 503 Service Unavailable
Server: AkamaiGHost
Mime-Version: 1.0
Content-Type: text/html
Content-Length: 176
Expires: Sun, 29 Jan 2023 02:09:44 GMT
Date: Sun, 29 Jan 2023 02:09:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 01:49:03 GMT
age: 1241
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 84eb3d27da61a64f83b8fdab23a422e0
76fa81765abb8b6d06a25c819677e787a61cfda8
1c26b69cc90c2293a784148b2ba9b924725c1866a8dd90732e5f89d5ebed0020
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6527
Cache-Control: max-age=140635
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:09:44 GMT
Etag: "63d53e44-117"
Expires: Mon, 30 Jan 2023 17:13:39 GMT
Last-Modified: Sat, 28 Jan 2023 15:24:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b509fa540e9151cf99fa456b6aceae64
85ab8930d86fe5ba91a292d73eac661aba51fea9
1277eecbd3f450e2af23d6603acf8b0bd7c34f4d8a98576c9967e79e0f483fa8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1277EECBD3F450E2AF23D6603ACF8B0BD7C34F4D8A98576C9967E79E0F483FA8"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19955
Expires: Sun, 29 Jan 2023 07:42:19 GMT
Date: Sun, 29 Jan 2023 02:09:44 GMT
Connection: keep-alive
cdn.musethemes.com/libs/lightcase/lightcase.min.css
200 OK 2.0 kB URL HTTP/2 cdn.musethemes.com/libs/lightcase/lightcase.min.css
IP
File type ASCII text, with very long lines (10030), with no line terminators
Hash f8c4bac93e5102d1f30dc6d8dbe50162
58715a2b38c0e72fc335933650e86a9ee03562e0
724664d2ed599bee82d36c9e628bcfdb745ee79e9bbf648e6ef40f12becdc566
GET /libs/lightcase/lightcase.min.css HTTP/1.1
Host: cdn.musethemes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: keycdn-engine
date: Sun, 29 Jan 2023 02:09:44 GMT
content-type: text/css
content-length: 2017
cache-control: max-age=604800
expires: Sun, 05 Feb 2023 02:09:44 GMT
last-modified: Thu, 13 Apr 2017 02:41:26 GMT
content-encoding: gzip
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
link: <https://labs.musethemes.com/keycdn/libs/lightcase/lightcase.min.css>; rel="canonical"
x-cache: HIT
x-shield: active
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b509fa540e9151cf99fa456b6aceae64
85ab8930d86fe5ba91a292d73eac661aba51fea9
1277eecbd3f450e2af23d6603acf8b0bd7c34f4d8a98576c9967e79e0f483fa8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1277EECBD3F450E2AF23D6603ACF8B0BD7C34F4D8A98576C9967E79E0F483FA8"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14499
Expires: Sun, 29 Jan 2023 06:11:23 GMT
Date: Sun, 29 Jan 2023 02:09:44 GMT
Connection: keep-alive
cdn.musethemes.com/libs/lightcase/lightcase.min.js
200 OK 7.4 kB URL HTTP/2 cdn.musethemes.com/libs/lightcase/lightcase.min.js
IP
File type HTML document, ASCII text, with very long lines (25481), with no line terminators
Hash 5365e17911459089d7c47ab2b84d50ee
338dc4511388234a6e46f5bd43f371952742d955
81f6fa148d90a66274e255710c7bfce9cf191da1c09743f6e34d1864c83ca59f
GET /libs/lightcase/lightcase.min.js HTTP/1.1
Host: cdn.musethemes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: keycdn-engine
date: Sun, 29 Jan 2023 02:09:44 GMT
content-type: application/javascript
content-length: 7429
cache-control: max-age=604800
expires: Sun, 05 Feb 2023 02:09:44 GMT
last-modified: Fri, 14 Apr 2017 18:02:08 GMT
content-encoding: gzip
vary: Accept-Encoding,User-Agent
x-turbo-charged-by: LiteSpeed
link: <https://labs.musethemes.com/keycdn/libs/lightcase/lightcase.min.js>; rel="canonical"
x-cache: HIT
x-shield: active
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
musegain.com/widgets_img/close-icon.png
301 Moved Permanently 62 B URL HTTP/1.1 musegain.com/widgets_img/close-icon.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with no line terminators
Hash 1ab5a56360c8cbd271b952d242884713
3c81aa960d763bded5e9308898e72d04d0d0fd8c
3f627076b16cba8a545c472cd90396a097f81262630c16f88f2d4120fd61293e
GET /widgets_img/close-icon.png HTTP/1.1
Host: musegain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Location: https://musegain.com/widgets_img/close-icon.png
Server: Netlify
X-Nf-Request-Id: 01GQXMK8GRQAWA3WFYZVSERNVC
Date: Sun, 29 Jan 2023 02:09:44 GMT
Content-Length: 62
Content-Type: text/plain; charset=utf-8
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6369
Expires: Sun, 29 Jan 2023 03:55:54 GMT
Date: Sun, 29 Jan 2023 02:09:45 GMT
Connection: keep-alive
planoffice.com/images/qooqeescalehover-u4154-fr.jpg?crc=3805851917
200 OK 3.3 kB URL HTTP/2 planoffice.com/images/qooqeescalehover-u4154-fr.jpg?crc=3805851917
IP
File type JPEG image data, extended sequential, precision 8, 100x100, components 3\012- data
Hash c78c2bc654ebe881b4f934b74abde459
8d88e8997743b40131b386321870055cc51fb510
a500f1535018e766b62729de2ecbfcbdcd98236b98ab7697bc950e28c18c0d55
GET /images/qooqeescalehover-u4154-fr.jpg?crc=3805851917 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/jpeg
content-length: 3316
last-modified: Wed, 08 May 2019 15:23:08 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: "5cd2f45c-cf4"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
planoffice.com/images/arrow.svg?crc=3793959039
200 OK 906 B URL HTTP/2 planoffice.com/images/arrow.svg?crc=3793959039
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b0ad8de4a089fa8553450a3656cf20bd
3977a2096cb55e88986313215eba5d9175f74752
41a5b90b0f760a85e5c0b42c7059ce9224e9185cd4aa5b713e0b0588b6e9c6e5
GET /images/arrow.svg?crc=3793959039 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/svg+xml
content-length: 906
x-accel-version: 0.01
last-modified: Wed, 08 May 2019 15:23:20 GMT
etag: "38a-58861e9d7ea00"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
X-Firefox-Spdy: h2
planoffice.com/images/arrow_slideshow_left.svg?crc=4134112986
200 OK 673 B URL HTTP/2 planoffice.com/images/arrow_slideshow_left.svg?crc=4134112986
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 21b6e25c07dd564573df3d94d9577392
731d769ba0135c029f5aec2dc49d8de8afd81a35
e7a88c5988bb40602e68f8510704f0d67e0487ab20afd6255ae655d8f01abe14
GET /images/arrow_slideshow_left.svg?crc=4134112986 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/svg+xml
content-length: 673
x-accel-version: 0.01
last-modified: Wed, 08 May 2019 15:23:18 GMT
etag: "2a1-58861e9b96580"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
X-Firefox-Spdy: h2
planoffice.com/images/arrow_slideshow.svg?crc=94356897
200 OK 672 B URL HTTP/2 planoffice.com/images/arrow_slideshow.svg?crc=94356897
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d477e24ac0ff3ad7f96ce3991164bccf
4ed74ca2a3519d331d1c923d7e6c1f20936235bb
11db8c4eee7eecd1fce95c52dd4ed3f96bfc8295ad2bac8478055bced76c502c
GET /images/arrow_slideshow.svg?crc=94356897 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/svg+xml
content-length: 672
x-accel-version: 0.01
last-modified: Wed, 08 May 2019 15:23:18 GMT
etag: "2a0-58861e9b96580"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
X-Firefox-Spdy: h2
planoffice.com/images/arrow_black.svg?crc=3994986160
200 OK 906 B URL HTTP/2 planoffice.com/images/arrow_black.svg?crc=3994986160
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e0315421f2508c1e15a33974bab45364
a4a7fe5cbd34ad2a4deb24d2823ac3293ae96b98
60039b88a0d01678ae9e208c008a352df72cf4d9bb18d9d420f89980677b32b1
GET /images/arrow_black.svg?crc=3994986160 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/svg+xml
content-length: 906
x-accel-version: 0.01
last-modified: Wed, 08 May 2019 15:23:22 GMT
etag: "38a-58861e9f66e80"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
X-Firefox-Spdy: h2
planoffice.com/images/arrow_small_yellow.svg?crc=217665903
200 OK 654 B URL HTTP/2 planoffice.com/images/arrow_small_yellow.svg?crc=217665903
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e42fb13185da27e10622c32f5a5fed2f
419b42aefd3d9addd4d0865b065b6aabcfd0c844
8b8e2725dee1d35d5e6928e1579e5048638d96659e7da6938d5e938cf1d89a68
GET /images/arrow_small_yellow.svg?crc=217665903 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/svg+xml
content-length: 654
x-accel-version: 0.01
last-modified: Wed, 08 May 2019 15:23:10 GMT
etag: "28e-58861e93f5380"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
X-Firefox-Spdy: h2
planoffice.com/images/arrow_yellow.svg?crc=490015750
200 OK 906 B URL HTTP/2 planoffice.com/images/arrow_yellow.svg?crc=490015750
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 95ff192bfa35b9d811ef7fb493e62bbc
0678a1991b552c48ab4404bfac5373e3d0485382
04dad31a4ddac481f473fabfb7efb387d654cbe2e73fd352f14a140d2abacfb7
GET /images/arrow_yellow.svg?crc=490015750 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/svg+xml
content-length: 906
x-accel-version: 0.01
last-modified: Wed, 08 May 2019 15:23:22 GMT
etag: "38a-58861e9f66e80"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
X-Firefox-Spdy: h2
planoffice.com/images/dsc_7490.jpg?crc=4127168590
200 OK 31 kB URL HTTP/2 planoffice.com/images/dsc_7490.jpg?crc=4127168590
IP
File type JPEG image data, extended sequential, precision 8, 498x350, components 3\012- data
Hash aaaa5bf659869d71eef681fee85db224
392ebe3bf3e0b3ef1b5cf21427431b2ab6148349
8538beb31cae23192b1ad370e3bbf1eab197f7080e085dfb4b3c83db68a0f6d9
GET /images/dsc_7490.jpg?crc=4127168590 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/jpeg
content-length: 30954
last-modified: Wed, 08 May 2019 15:23:22 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: "5cd2f46a-78ea"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
planoffice.com/images/alcochete-2-crop.jpg?crc=4153851284
200 OK 43 kB URL HTTP/2 planoffice.com/images/alcochete-2-crop.jpg?crc=4153851284
IP
File type JPEG image data, extended sequential, precision 8, 350x350, components 3\012- data
Hash 9b7c2f6b9598b5229776e2340a18c624
5cb87bc06dd9154023d177034b8f9c5133879956
2f34fff88e5c01cc715e50662564bb68e36c86f820b8664ee12e5a055ef5f6d5
GET /images/alcochete-2-crop.jpg?crc=4153851284 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/jpeg
content-length: 42901
last-modified: Wed, 08 May 2019 15:23:22 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: "5cd2f46a-a795"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
planoffice.com/images/castelhano-e-ferreira_0102_crop.jpg?crc=503257445
200 OK 38 kB URL HTTP/2 planoffice.com/images/castelhano-e-ferreira_0102_crop.jpg?crc=503257445
IP
File type JPEG image data, extended sequential, precision 8, 350x350, components 3\012- data
Hash fbd401d802528856703a8c3c44d2de15
70cda0ce4364148fddbd5cc0f8a8aa1ba3ffdee7
ab8d8bb6a2cd36f919535d9b2dcf38965e8b885b5b1b9147aa8c38bcdff54a07
GET /images/castelhano-e-ferreira_0102_crop.jpg?crc=503257445 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/jpeg
content-length: 37823
last-modified: Wed, 08 May 2019 15:23:22 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: "5cd2f46a-93bf"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
planoffice.com/images/imageicon.png?crc=3778045473
200 OK 748 B URL HTTP/2 planoffice.com/images/imageicon.png?crc=3778045473
IP
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 17eb5892293befa76f4f766599908e3b
b5a46fada84deb112004d15cd0e2217916a07f9d
42b33dec4ff8813977df57680bc5e60e3e8125e072dca6c9edbadcfd72adeaa8
GET /images/imageicon.png?crc=3778045473 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/png
content-length: 748
x-accel-version: 0.01
last-modified: Wed, 08 May 2019 15:23:22 GMT
etag: "2ec-58861e9f66e80"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
X-Firefox-Spdy: h2
planoffice.com/images/castelhano-e-ferreira_3336_b-u10485-fr.jpg?crc=139668883
200 OK 221 kB URL HTTP/2 planoffice.com/images/castelhano-e-ferreira_3336_b-u10485-fr.jpg?crc=139668883
IP
File type JPEG image data, extended sequential, precision 8, 1348x748, components 3\012- data
Size 221 kB (220856 bytes)
Hash 4de5a550438ab1858d8ab3ede27961b6
ea00d6c6ae782343d0aaddf8cf94aa86e2d2fc9f
77a25037be4440cc9bc719936aee6961da2e63f2cca458046a1e30ec1b36a0fc
GET /images/castelhano-e-ferreira_3336_b-u10485-fr.jpg?crc=139668883 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/jpeg
content-length: 220856
last-modified: Fri, 06 Dec 2019 14:49:44 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: "5dea6a88-35eb8"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
planoffice.com/images/aimg_7499-u10481-fr.jpg?crc=64717352
200 OK 273 kB URL HTTP/2 planoffice.com/images/aimg_7499-u10481-fr.jpg?crc=64717352
IP
File type JPEG image data, extended sequential, precision 8, 1290x922, components 3\012- data
Size 273 kB (272636 bytes)
Hash 0f5833a743699d4d8fa6f05ba53ae672
2d15d0620998797824e061565f7668e2f38b0f39
9d86d08f5757b1681f8d10e1b837521ee8795228aa0ebee688caf7ad4140562d
GET /images/aimg_7499-u10481-fr.jpg?crc=64717352 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/jpeg
content-length: 272636
last-modified: Wed, 08 May 2019 15:23:22 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: "5cd2f46a-428fc"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
planoffice.com/images/diamond-crop.jpg?crc=4168211875
200 OK 209 kB URL HTTP/2 planoffice.com/images/diamond-crop.jpg?crc=4168211875
IP
File type JPEG image data, extended sequential, precision 8, 2100x1365, components 3\012- data
Size 209 kB (209159 bytes)
Hash 7642f43f146ef373ba6238dcf0a5c0e1
3ba61b6513af341f0ee3fda562394698a6a882d6
c807e7decc36172808955bba67dcabb8b95baece4d44b0fa37faf19966080ee6
GET /images/diamond-crop.jpg?crc=4168211875 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/jpeg
content-length: 209159
last-modified: Wed, 08 May 2019 15:23:22 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: "5cd2f46a-33107"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
planoffice.com/images/cl5114-u10489-fr.jpg?crc=4113593347
200 OK 452 kB URL HTTP/2 planoffice.com/images/cl5114-u10489-fr.jpg?crc=4113593347
IP
File type JPEG image data, extended sequential, precision 8, 1289x857, components 3\012- data
Size 452 kB (452467 bytes)
Hash d323519817639c40c55e5380f6c3ebd3
ca298269abad814595bc84068a26482ca2dc6b66
81d41cdae20590b8c6801f1abfde9d5afb0f085dcb81dd74150db778c68cf341
GET /images/cl5114-u10489-fr.jpg?crc=4113593347 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/jpeg
content-length: 452467
last-modified: Fri, 06 Dec 2019 14:49:46 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: "5dea6a8a-6e773"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
planoffice.com/images/castelhano-e-ferreira_3341.jpg?crc=3878084700
200 OK 489 kB URL HTTP/2 planoffice.com/images/castelhano-e-ferreira_3341.jpg?crc=3878084700
IP
File type JPEG image data, extended sequential, precision 8, 1730x1298, components 3\012- data
Size 489 kB (489415 bytes)
Hash 45a24150eea8761fb76d435b4959cf6b
3b1e4f586258ec363bc687ed32c056445bb67f97
3cd942bf65f4c3c56ff2570d436e995c699c68dcc8c17de243f5d63f8aca0e64
GET /images/castelhano-e-ferreira_3341.jpg?crc=3878084700 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/jpeg
content-length: 489415
last-modified: Thu, 19 May 2022 11:59:57 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: "6286313d-777c7"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: c5vU7h8koIIulhh2mv6zhQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ni3HcU3PoXk3eU6QXQ+goEVuV14=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c59fcd2df1f854968d0063523fb33865
92f7c338ac5e9fca158f6a7aaa7f0e9309e130fa
d67ba7ea465c69b8e4960c3bab34202838e24f0dc6217c54c55615011b118307
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D67BA7EA465C69B8E4960C3BAB34202838E24F0DC6217C54C55615011B118307"
Last-Modified: Sun, 29 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sun, 29 Jan 2023 08:09:45 GMT
Date: Sun, 29 Jan 2023 02:09:45 GMT
Connection: keep-alive
musegain.com/widgets_img/close-icon.png
301 Moved Permanently 66 B URL HTTP/2 musegain.com/widgets_img/close-icon.png
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type ASCII text, with no line terminators
Hash 020abec4b458b28ddd2abbf33628d5e8
e8796091671ad74c13145400382eee8c1f5d21fe
03622eab6adbb4ed7629850f2c0a1b4d9f6211c92536c98707bcc93317340ad2
GET /widgets_img/close-icon.png HTTP/1.1
Host: musegain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://www.musegain.com/widgets_img/close-icon.png
server: Netlify
strict-transport-security: max-age=31536000
x-nf-request-id: 01GQXMK902571QSYMMKVMPSYD6
content-type: text/plain; charset=utf-8
content-length: 66
date: Sun, 29 Jan 2023 02:09:45 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 279 B IP
Hash 84eb3d27da61a64f83b8fdab23a422e0
76fa81765abb8b6d06a25c819677e787a61cfda8
1c26b69cc90c2293a784148b2ba9b924725c1866a8dd90732e5f89d5ebed0020
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6528
Cache-Control: max-age=140635
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:09:45 GMT
Etag: "63d53e44-117"
Expires: Mon, 30 Jan 2023 17:13:40 GMT
Last-Modified: Sat, 28 Jan 2023 15:24:52 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 279
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 29 Jan 2023 01:46:59 GMT
expires: Sun, 29 Jan 2023 03:46:59 GMT
cache-control: public, max-age=7200
age: 1366
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=423280568&t=pageview&_s=1&dl=https%3A%2F%2Fplanoffice.com%2F&ul=en-us&de=UTF-8&dt=Planoffice%20%7C%20Home&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1147759355&gjid=1741180754&cid=46984597.1674958191&tid=UA-58707219-1&_gid=1455388690.1674958191&_r=1&_slc=1>m=2ou1p0&z=979568138
200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=423280568&t=pageview&_s=1&dl=https%3A%2F%2Fplanoffice.com%2F&ul=en-us&de=UTF-8&dt=Planoffice%20%7C%20Home&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1147759355&gjid=1741180754&cid=46984597.1674958191&tid=UA-58707219-1&_gid=1455388690.1674958191&_r=1&_slc=1>m=2ou1p0&z=979568138
IP
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=423280568&t=pageview&_s=1&dl=https%3A%2F%2Fplanoffice.com%2F&ul=en-us&de=UTF-8&dt=Planoffice%20%7C%20Home&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1147759355&gjid=1741180754&cid=46984597.1674958191&tid=UA-58707219-1&_gid=1455388690.1674958191&_r=1&_slc=1>m=2ou1p0&z=979568138 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://planoffice.com
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://planoffice.com
date: Sun, 29 Jan 2023 02:09:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
planoffice.com/scripts/jquery-1.8.3.min.js?crc=209076791
200 OK 33 kB URL HTTP/2 planoffice.com/scripts/jquery-1.8.3.min.js?crc=209076791
IP
File type ASCII text, with very long lines (65482), with CRLF line terminators
Hash 8d55948c0817703212f7eaa5877761e3
d7fa9590000a472398339895c1183091d29f977b
3b7eee5c907218ac57b937fb65ea7b0b1bc5b95be972f63580589f57757f74f8
GET /scripts/jquery-1.8.3.min.js?crc=209076791 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 15:26:00 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: W/"5cd2f508-16dc5"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.musegain.com/widgets_img/close-icon.png
404 Not Found 1.2 kB URL HTTP/2 www.musegain.com/widgets_img/close-icon.png
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (331)
Hash 3530ab3fb068ffb26ab9b3e9184cfcbe
5abe9ee23f42cb727de0567589872f2f5aad57c7
18c9246dec79e05803b6c95c0247f989bf655c1e1809d591b2be37f8bf6f2e22
GET /widgets_img/close-icon.png HTTP/1.1
Host: www.musegain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
age: 107954
cache-control: public, max-age=0, must-revalidate
content-encoding: br
content-type: text/html; charset=utf-8
date: Fri, 27 Jan 2023 20:10:31 GMT
etag: 1615303133-ssl-df
server: Netlify
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-nf-request-id: 01GQXMK9DJRD5HXFR2YN3WS19R
content-length: 1245
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-58707219-1&cid=46984597.1674958191&jid=1147759355&gjid=1741180754&_gid=1455388690.1674958191&_u=YEBAAUAAAAAAACAAI~&z=631060177
200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-58707219-1&cid=46984597.1674958191&jid=1147759355&gjid=1741180754&_gid=1455388690.1674958191&_u=YEBAAUAAAAAAACAAI~&z=631060177
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-58707219-1&cid=46984597.1674958191&jid=1147759355&gjid=1741180754&_gid=1455388690.1674958191&_u=YEBAAUAAAAAAACAAI~&z=631060177 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://planoffice.com
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://planoffice.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 29 Jan 2023 02:09:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:09:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
planoffice.com/images/logo_planoffice_white.svg?crc=4205428975
200 OK 14 kB URL HTTP/2 planoffice.com/images/logo_planoffice_white.svg?crc=4205428975
IP
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash b94ba28896673a1b7905e36dbe02072a
3119099f9df18d649b68101452c4012ca9369e48
9fdfbdcbb21304ce6a0c388d12a2a1b2b893e3255a8e9da3478e28950bb06a59
GET /images/logo_planoffice_white.svg?crc=4205428975 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Cookie: _ga=GA1.2.46984597.1674958191; _gid=GA1.2.1455388690.1674958191; _gat_gtag_UA_58707219_1=1; PHPSESSID=ifg1uj737asqcepj757mj23t2q
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:46 GMT
content-type: image/svg+xml
content-length: 13892
last-modified: Wed, 08 May 2019 15:23:22 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:46 GMT
etag: "5cd2f46a-3644"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
planoffice.com/images/works01.jpg?crc=249699877
200 OK 61 kB URL HTTP/2 planoffice.com/images/works01.jpg?crc=249699877
IP
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x800, components 3\012- data
Hash eaea8bbb517369010a59724a2a69032f
c7e64a0a8078e15371ab51f0f3a776a41e281c45
0fdae3274aeb950f46573d02a744c8e3f3a1865c5d6f28ccda586f5cf2995426
GET /images/works01.jpg?crc=249699877 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Cookie: _ga=GA1.2.46984597.1674958191; _gid=GA1.2.1455388690.1674958191; _gat_gtag_UA_58707219_1=1; PHPSESSID=ifg1uj737asqcepj757mj23t2q
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:46 GMT
content-type: image/jpeg
content-length: 60894
last-modified: Wed, 08 May 2019 15:23:10 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:46 GMT
etag: "5cd2f45e-edde"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2177
Expires: Sun, 29 Jan 2023 02:46:03 GMT
Date: Sun, 29 Jan 2023 02:09:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2177
Expires: Sun, 29 Jan 2023 02:46:03 GMT
Date: Sun, 29 Jan 2023 02:09:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2177
Expires: Sun, 29 Jan 2023 02:46:03 GMT
Date: Sun, 29 Jan 2023 02:09:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2177
Expires: Sun, 29 Jan 2023 02:46:03 GMT
Date: Sun, 29 Jan 2023 02:09:46 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2177
Expires: Sun, 29 Jan 2023 02:46:03 GMT
Date: Sun, 29 Jan 2023 02:09:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:46:16 GMT
age: 19410
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 5a5a883e-d7d4-4fc5-925a-3a95830c504e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVguyG7BIAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d214c4-390b59a32060e41203533c58;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 05:51:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ewSsCY4u9DwRtaj00U9JCim9tYeCgHRuIQFpdHm4ttI6L02-e44iDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 06:42:55 GMT
age: 70011
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9499d0-2a81-41ee-b328-0d82ea64b349.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9499d0-2a81-41ee-b328-0d82ea64b349.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 57ff6665d99a17d06b75c8fe64c90ab3
05648eed6830a794aa7e30ba4da526ed4c45b0ca
728b809756a0faff1a55bb03f13f33e31518f321e50dd944a0267d585c09264c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdd9499d0-2a81-41ee-b328-0d82ea64b349.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5198
x-amzn-requestid: 8117f45b-926a-4cbe-b152-dae983bc3526
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOYdlG6XIAMF_vA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf3abd-7ce531f65f66ac3a73970841;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 01:56:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: naZHCCrUSwrLi2eWi3LOrir9zOGQcNUBJ1iS9wUewWoV3WM2E0kE2w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:47:00 GMT
age: 15766
etag: "05648eed6830a794aa7e30ba4da526ed4c45b0ca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bff98d2-c029-496d-b1f3-f17f0e92e273.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bff98d2-c029-496d-b1f3-f17f0e92e273.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7da187381befeffa83fbaed380f2932e
7f4750e505e965f129c096ef40bc24c392051025
f47a20d681386b3341f23d286fb2f0a2a789bde75bdbc2d14c4747721e13d7a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bff98d2-c029-496d-b1f3-f17f0e92e273.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12124
x-amzn-requestid: 4032a848-72f7-4fbf-a0b2-e9cd7a2d1853
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVMBEGtwIAMF_Zw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1f3a0-6eec6555074c2fba0be0d90e;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 03:29:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ixuvPYw-yLJbABGhAMsaZPkbpCy6H-R-QXKxMlIBRQgBYvnERkOs_Q==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 12:06:16 GMT
age: 50610
etag: "7f4750e505e965f129c096ef40bc24c392051025"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f73f114f8dc452fc0b16825570ad50c
6bb1b3db6c36e2c9d23b6cb7d1c8616eeec19575
23fd69e6ccdd2ce2b5d3d8b3f075a07cdb36efd663a4119b5dca22165e7b2090
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10030
x-amzn-requestid: 0c6c82b5-f91b-4468-bb25-d87d4d7dedd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVAbgERRIAMFdcw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1e116-7f17c79047447dff2de3ab67;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 02:10:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pHTs5LN29bSjD8GAXY_vstXiEQ7iy9qXsq23Pxl-GdXX16_5H5QKCQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 16:13:35 GMT
age: 35771
etag: "6bb1b3db6c36e2c9d23b6cb7d1c8616eeec19575"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167a00fc-5c65-46d1-816e-da9e473736e3.jpeg
200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167a00fc-5c65-46d1-816e-da9e473736e3.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5e7433eb3123a1f9b14507c78e38e7b9
fef8b905b580999963758a56be9c3226697929a2
895298ddf6822e9f95e10fe17c1ade0b0782c3753e96eab8a3798df5ba969dbe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F167a00fc-5c65-46d1-816e-da9e473736e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6518
x-amzn-requestid: 6e9c624a-2036-4161-ad9e-1c66068e3eb1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPHz0HmsoAMFljA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf867e-011e1c43072a8dfa22af6e88;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:19:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AxIaCwORa7FhDY5pxcNlrPMoam0z7DxSgKBytx5AG_qcKrxM8NnoOw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:46:36 GMT
age: 15790
etag: "fef8b905b580999963758a56be9c3226697929a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
planoffice.com/blogimageuploads/thumbs/Creche_1.jpg
200 OK 23 kB URL HTTP/2 planoffice.com/blogimageuploads/thumbs/Creche_1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 8bdffac1231c382594daa9c165336302
2637dc4f42ff45da08da5a0524f28f36ed2e7b84
1b92bfdaaee10e31d58ae6ec5b535145c045bda35b896751d338839db8403ff7
GET /blogimageuploads/thumbs/Creche_1.jpg HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Cookie: _ga=GA1.2.46984597.1674958191; _gid=GA1.2.1455388690.1674958191; _gat_gtag_UA_58707219_1=1; PHPSESSID=ifg1uj737asqcepj757mj23t2q
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:46 GMT
content-type: image/jpeg
content-length: 23192
last-modified: Wed, 21 Feb 2018 17:20:28 GMT
etag: "5a8daa5c-5a98"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
planoffice.com/blogimageuploads/thumbs/Ginasio_1.jpg
200 OK 23 kB URL HTTP/2 planoffice.com/blogimageuploads/thumbs/Ginasio_1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash dd819f112440f013d5e05ad35dd05bb1
a7520400cb31d1691b519957cd1beea043208226
b84dbe5ff4fc07828855dbe71884eb5c9f76a4df7dd4a9506fea2699a024bb2b
GET /blogimageuploads/thumbs/Ginasio_1.jpg HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Cookie: _ga=GA1.2.46984597.1674958191; _gid=GA1.2.1455388690.1674958191; _gat_gtag_UA_58707219_1=1; PHPSESSID=ifg1uj737asqcepj757mj23t2q
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:46 GMT
content-type: image/jpeg
content-length: 23276
last-modified: Wed, 21 Feb 2018 17:20:38 GMT
etag: "5a8daa66-5aec"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
planoffice.com/scripts/musewpdisclosure.js?crc=3931707700
200 OK 60 kB URL HTTP/2 planoffice.com/scripts/musewpdisclosure.js?crc=3931707700
IP
File type ASCII text, with very long lines (540), with CRLF line terminators
Hash 5fdac525dc92e30fcce9fc741d42aaa3
e5193295d67ac99a70d37f42ff722e1e32754853
fd137396012812403da4e197155d359044842049db1f7abd71f697126e757fea
GET /scripts/musewpdisclosure.js?crc=3931707700 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 15:26:02 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: W/"5cd2f50a-108c"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
planoffice.com/blogimageuploads/thumbs/acustica_hoteis.jpg
200 OK 28 kB URL HTTP/2 planoffice.com/blogimageuploads/thumbs/acustica_hoteis.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 300x300, components 3\012- data
Hash 598711a7b29235b61d33b6c6e8699403
d1ea8e3f35bece244ffc24be95b98fea9624befe
d0ae6a81966af7f35a92aaa3ee34a39cca6cf1eab3836c46378e446313b1c5b7
GET /blogimageuploads/thumbs/acustica_hoteis.jpg HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Cookie: _ga=GA1.2.46984597.1674958191; _gid=GA1.2.1455388690.1674958191; _gat_gtag_UA_58707219_1=1; PHPSESSID=ifg1uj737asqcepj757mj23t2q
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:46 GMT
content-type: image/jpeg
content-length: 28171
last-modified: Wed, 21 Feb 2018 17:06:24 GMT
etag: "5a8da710-6e0b"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 221f6821cb16292db2a34b719718d6f1
86da71b1b715f7bef571683a4b112e516516f820
ca3f5d3e7f3ce3dc1d2e502b7c8f59fdb26a9564e1c4638b529db5dc50ad8dba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1483
Cache-Control: max-age=135593
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 02:09:47 GMT
Etag: "63d53e49-1d7"
Expires: Mon, 30 Jan 2023 15:49:40 GMT
Last-Modified: Sat, 28 Jan 2023 15:24:57 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js
200 OK 41 kB URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js
IP
File type ASCII text, with very long lines (65466)
Hash fc0f388724d5a1e682098053b2ca18d2
82adc58694b3bce01ddbedd634dbc5c171455e6b
6fbf11ffe6cb0b89bffa58cf8c9433bab6e60c4c82b72dd5ba11e17d6934d3cb
GET /_s/v4/app/63b77dcd282/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://planoffice.com
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 02:09:46 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"385105148a50079bafff97e9c9476109"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790e6d783dceb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js
200 OK 122 kB URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js
IP
File type Unicode text, UTF-8 text, with very long lines (65464)
Size 122 kB (121677 bytes)
Hash e31316daf04113765ea85a82464466be
bf9a248cce5862f4a746fae6ef09bbfcf2b211dd
0334e262e729ebc0529ee33aecc9dd5762df6da4941b89e56a2fa83297fa9675
GET /_s/v4/app/63b77dcd282/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://planoffice.com
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 02:09:47 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"70dac54eca3bb2143032bc4db3237623"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790e6d783dccb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
200 OK 5.2 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
Hash 3450434d27815c74d85869e3d06fbec9
03ff9cf368386b0b031a525c5e18aba53b676b29
1fa721cf8ff6d4ec7ab90bc25584770246d38afccf11cc4818c3339d37fa94cf
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 02:09:48 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "E398581235531F0E2E9C2E706073C5CA389E1461"
Expires: Sun, 29 Jan 2023 13:00:00 GMT
Last-Modified: Sun, 29 Jan 2023 01:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1516
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790e6d852b6db4f4-OSL
vsb88.tawk.to/s/?k=63d5d56b7c514ae2fa0a591e&cver=0&pop=false&asver=96&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1OTM2ZDEwODQzNzRhNDcxZTdjNTFiMWYiLCJ2aWQiOiI1OTM2ZDEwODQzNzRhNDcxZTdjNTFiMWYtdXB0WTZuZnpuVXhQT0tqZG9zMlpKIiwic2lkIjoiNjNkNWQ1NmI3YzUxNGFlMmZhMGE1OTFlIiwiaWF0IjoxNjc0OTU4MTg3LCJleHAiOjE2NzQ5NTk5ODcsImp0aSI6Ii1ZRXU2cU52c05TV1kzTHJUSUFpMiJ9.rAI47zI80YtUm2W-_8-BBnoKvQ1qfs5oddzH4OQDrnAKyZFwA4V5zORGrPNWgHYzf3wvG2Hu-Z0n4Y-srcsLUA&EIO=3&transport=websocket&__t=ONxISAd
101 Switching Protocols 5.2 kB URL HTTP/1.1 vsb88.tawk.to/s/?k=63d5d56b7c514ae2fa0a591e&cver=0&pop=false&asver=96&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1OTM2ZDEwODQzNzRhNDcxZTdjNTFiMWYiLCJ2aWQiOiI1OTM2ZDEwODQzNzRhNDcxZTdjNTFiMWYtdXB0WTZuZnpuVXhQT0tqZG9zMlpKIiwic2lkIjoiNjNkNWQ1NmI3YzUxNGFlMmZhMGE1OTFlIiwiaWF0IjoxNjc0OTU4MTg3LCJleHAiOjE2NzQ5NTk5ODcsImp0aSI6Ii1ZRXU2cU52c05TV1kzTHJUSUFpMiJ9.rAI47zI80YtUm2W-_8-BBnoKvQ1qfs5oddzH4OQDrnAKyZFwA4V5zORGrPNWgHYzf3wvG2Hu-Z0n4Y-srcsLUA&EIO=3&transport=websocket&__t=ONxISAd
IP
Hash 4052cb0c04bd1921ea93bf0e2083909c
767cb7e629cbc220f14b473cf0eee49d13b53a8d
212b0475088833986104e9f039d35a2832ea073547b64c52f27b419d347976df
GET /s/?k=63d5d56b7c514ae2fa0a591e&cver=0&pop=false&asver=96&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1OTM2ZDEwODQzNzRhNDcxZTdjNTFiMWYiLCJ2aWQiOiI1OTM2ZDEwODQzNzRhNDcxZTdjNTFiMWYtdXB0WTZuZnpuVXhQT0tqZG9zMlpKIiwic2lkIjoiNjNkNWQ1NmI3YzUxNGFlMmZhMGE1OTFlIiwiaWF0IjoxNjc0OTU4MTg3LCJleHAiOjE2NzQ5NTk5ODcsImp0aSI6Ii1ZRXU2cU52c05TV1kzTHJUSUFpMiJ9.rAI47zI80YtUm2W-_8-BBnoKvQ1qfs5oddzH4OQDrnAKyZFwA4V5zORGrPNWgHYzf3wvG2Hu-Z0n4Y-srcsLUA&EIO=3&transport=websocket&__t=ONxISAd HTTP/1.1
Host: vsb88.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://planoffice.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iqopY/+pyHCxhF08XOhMIg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 29 Jan 2023 02:09:48 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: B4JQ+WzQrTuWyPk1zfdLX9EfgL8=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 790e6d83de6f1c0a-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6af6f32397882f56d14d22348e44a9f1
5a626376807e7507fa3a204c4e4e9e44aa074a37
478f32e98c0a1f0d62fa337795ca88b7927e14b684b681f7629b648bc2d709a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 7417
x-amzn-requestid: 8dca6752-c548-4526-ae81-4626843ade3e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYbDjGREoAMFxiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d33ee3-1c097c131b91c34b4e7df1be;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i8JJruxoRfordb6WFNf67-GLWrA_Q930x3GCCQoUmDwXrfZtBXvsZg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 03:16:34 GMT
age: 82399
etag: "5a626376807e7507fa3a204c4e4e9e44aa074a37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
planoffice.com/scripts/museutils.js?crc=4250906080
200 OK 0 B URL HTTP/2 planoffice.com/scripts/museutils.js?crc=4250906080
IP
GET /scripts/museutils.js?crc=4250906080 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 15:26:00 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: W/"5cd2f508-f04b"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
planoffice.com/scripts/jquery.watch.js?crc=399457859
200 OK 0 B URL HTTP/2 planoffice.com/scripts/jquery.watch.js?crc=399457859
IP
GET /scripts/jquery.watch.js?crc=399457859 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 15:26:00 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: W/"5cd2f508-73b"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
planoffice.com/images/49914-178-copy.jpg?crc=97568700
200 OK 0 B URL HTTP/2 planoffice.com/images/49914-178-copy.jpg?crc=97568700
IP
GET /images/49914-178-copy.jpg?crc=97568700 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/jpeg
content-length: 336455
last-modified: Tue, 19 Nov 2019 15:05:22 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: "5dd404b2-52247"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
embed.tawk.to/5936d1084374a471e7c51b1f/1bhv3hpu4
200 OK 0 B URL HTTP/2 embed.tawk.to/5936d1084374a471e7c51b1f/1bhv3hpu4
IP
GET /5936d1084374a471e7c51b1f/1bhv3hpu4 HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://planoffice.com
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-63b77dcd282"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790e6d6fa96fb4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
planoffice.com/scripts/jquery.musepolyfill.bgsize.js?crc=178212883
200 OK 0 B URL HTTP/2 planoffice.com/scripts/jquery.musepolyfill.bgsize.js?crc=178212883
IP
GET /scripts/jquery.musepolyfill.bgsize.js?crc=178212883 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 15:26:00 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: W/"5cd2f508-13f0"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js
200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js
IP
GET /_s/v4/app/63b77dcd282/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://planoffice.com
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 02:09:46 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790e6d783dd4b4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.instagram.com/v1/users/249076430/media/recent/?count=4&access_token=249076430.1677ed0.b267bad420284f30a4606e155e37fea0&callback=jQuery18307392327369940942_1674958190496&_=1674958192655
404 Not Found 0 B URL HTTP/2 api.instagram.com/v1/users/249076430/media/recent/?count=4&access_token=249076430.1677ed0.b267bad420284f30a4606e155e37fea0&callback=jQuery18307392327369940942_1674958190496&_=1674958192655
IP
GET /v1/users/249076430/media/recent/?count=4&access_token=249076430.1677ed0.b267bad420284f30a4606e155e37fea0&callback=jQuery18307392327369940942_1674958190496&_=1674958192655 HTTP/1.1
Host: api.instagram.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html; charset=utf-8
date: Sun, 29 Jan 2023 02:09:47 GMT
vary: Accept-Language
strict-transport-security: max-age=31536000
cache-control: private, no-cache, no-store, must-revalidate
pragma: no-cache
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-frame-options: SAMEORIGIN
content-security-policy: report-uri https://www.instagram.com/security/csp_report/; default-src 'self' https://www.instagram.com; img-src data: blob: https://*.fbcdn.net https://*.instagram.com https://*.cdninstagram.com https://*.facebook.com https://*.fbsbx.com; font-src data: https://*.fbcdn.net https://*.instagram.com https://*.cdninstagram.com; media-src 'self' blob: https://www.instagram.com https://*.cdninstagram.com https://*.fbcdn.net; manifest-src 'self' https://www.instagram.com; script-src 'self' https://instagram.com https://www.instagram.com https://*.www.instagram.com https://*.cdninstagram.com wss://www.instagram.com https://*.facebook.com https://*.fbcdn.net https://*.facebook.net 'unsafe-inline' 'unsafe-eval' blob:; style-src 'self' https://*.www.instagram.com https://www.instagram.com 'unsafe-inline'; connect-src 'self' https://instagram.com https://www.instagram.com https://*.www.instagram.com https://graph.instagram.com https://*.graph.instagram.com https://i.instagram.com/graphql_www https://graphql.instagram.com https://*.cdninstagram.com https://api.instagram.com https://i.instagram.com https://*.i.instagram.com https://*.od.instagram.com wss://www.instagram.com wss://edge-chat.instagram.com https://*.facebook.com https://*.fbcdn.net https://*.facebook.net chrome-extension://boadgeojelhgndaghljhdicfkmllpafd blob:; worker-src 'self' blob: https://www.instagram.com; frame-src 'self' https://instagram.com https://www.instagram.com https://*.instagram.com https://staticxx.facebook.com https://www.facebook.com https://web.facebook.com https://connect.facebook.net https://m.facebook.com https://*.fbsbx.com; object-src 'none'; upgrade-insecure-requests
cross-origin-embedder-policy-report-only: require-corp;report-to="coep"
report-to: {"group": "coep", "max_age": 86400, "endpoints": [{"url": "/security/coep_report/"}]},{"group": "coop", "max_age": 86400, "endpoints": [{"url": "/security/coop_report/"}]}
origin-trial: AuqWincgAuXeuu3KypEMnrrFEJHySaesyJS3EaIH40zvafzrU0Irhb7+5QwZpOqMZrPTjgvFl7Z5jJgy1dNAcQMAAAB6eyJvcmlnaW4iOiJodHRwczovL2luc3RhZ3JhbS5jb206NDQzIiwiZmVhdHVyZSI6IkNyb3NzT3JpZ2luT3BlbmVyUG9saWN5UmVwb3J0aW5nIiwiZXhwaXJ5IjoxNjEzNDExNjYyLCJpc1N1YmRvbWFpbiI6dHJ1ZX0=
cross-origin-opener-policy: same-origin-allow-popups;report-to="coop"
x-content-type-options: nosniff
x-xss-protection: 0
x-ig-push-state: c2
x-aed: 75
access-control-expose-headers: X-IG-Set-WWW-Claim
x-ig-request-elapsed-time-ms: 24
x-ig-peak-time: 1
content-length: 20955
x-ig-origin-region: odn
x-fb-trip-id: 1679558926
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
planoffice.com/css/index.css?crc=3888248414
200 OK 0 B URL HTTP/2 planoffice.com/css/index.css?crc=3888248414
IP
GET /css/index.css?crc=3888248414 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:44 GMT
content-type: text/css
last-modified: Fri, 06 Dec 2019 14:50:06 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:44 GMT
etag: W/"5dea6a9e-5e17b"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
planoffice.com/scripts/museconfig.js?crc=4286661555
200 OK 0 B URL HTTP/2 planoffice.com/scripts/museconfig.js?crc=4286661555
IP
GET /scripts/museconfig.js?crc=4286661555 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 15:26:00 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: W/"5cd2f508-7fd"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
planoffice.com/images/castelhano-e-ferreira_3351.jpg?crc=3931876111
200 OK 0 B URL HTTP/2 planoffice.com/images/castelhano-e-ferreira_3351.jpg?crc=3931876111
IP
GET /images/castelhano-e-ferreira_3351.jpg?crc=3931876111 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/css/index.css?crc=3888248414
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: image/jpeg
content-length: 303448
last-modified: Thu, 19 May 2022 11:59:57 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: "6286313d-4a158"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
planoffice.com/scripts/touchswipe.js?crc=4065839998
200 OK 0 B URL HTTP/2 planoffice.com/scripts/touchswipe.js?crc=4065839998
IP
GET /scripts/touchswipe.js?crc=4065839998 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 15:26:02 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: W/"5cd2f50a-2782"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
planoffice.com/scripts/jquery.museresponsive.js?crc=3939574382
200 OK 0 B URL HTTP/2 planoffice.com/scripts/jquery.museresponsive.js?crc=3939574382
IP
GET /scripts/jquery.museresponsive.js?crc=3939574382 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 15:26:02 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: W/"5cd2f50a-190d"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-main.js
200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-main.js
IP
GET /_s/v4/app/63b77dcd282/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://planoffice.com
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 29 Jan 2023 02:09:46 GMT
content-type: application/javascript
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 790e6d782dcab4f7-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
planoffice.com/css/master_a-master.css?crc=3994474230
200 OK 0 B URL HTTP/2 planoffice.com/css/master_a-master.css?crc=3994474230
IP
GET /css/master_a-master.css?crc=3994474230 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:44 GMT
content-type: text/css
last-modified: Fri, 06 Dec 2019 14:50:04 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:44 GMT
etag: W/"5dea6a9c-16969"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
planoffice.com/scripts/whatinput.js?crc=86476730
200 OK 0 B URL HTTP/2 planoffice.com/scripts/whatinput.js?crc=86476730
IP
GET /scripts/whatinput.js?crc=86476730 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 15:26:00 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: W/"5cd2f508-6b0"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
planoffice.com/scripts/webpro.js?crc=214003453
200 OK 0 B URL HTTP/2 planoffice.com/scripts/webpro.js?crc=214003453
IP
GET /scripts/webpro.js?crc=214003453 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:45 GMT
content-type: application/javascript
last-modified: Wed, 08 May 2019 15:26:00 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:45 GMT
etag: W/"5cd2f508-cf5a"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
planoffice.com/assets/muse_blog_main.php
200 OK 0 B URL HTTP/2 planoffice.com/assets/muse_blog_main.php
IP
POST /assets/muse_blog_main.php HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 40
Origin: https://planoffice.com
Connection: keep-alive
Referer: https://planoffice.com/
Cookie: _ga=GA1.2.46984597.1674958191; _gid=GA1.2.1455388690.1674958191; _gat_gtag_UA_58707219_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:46 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=ifg1uj737asqcepj757mj23t2q; path=/
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PHP/7.3.33, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
planoffice.com/
200 OK 0 B IP
GET / HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:44 GMT
content-type: text/html
last-modified: Fri, 06 Dec 2019 14:50:08 GMT
etag: W/"5dea6aa0-c84cb"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
planoffice.com/css/site_global.css?crc=296764943
200 OK 0 B URL HTTP/2 planoffice.com/css/site_global.css?crc=296764943
IP
GET /css/site_global.css?crc=296764943 HTTP/1.1
Host: planoffice.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 02:09:44 GMT
content-type: text/css
last-modified: Thu, 19 May 2022 11:59:57 GMT
cache-control: max-age=2592000, public
expires: Tue, 28 Feb 2023 02:09:44 GMT
etag: W/"6286313d-2a17"
strict-transport-security: max-age=15768000; includeSubDomains
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
netdna.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.min.css
200 OK 0 B URL HTTP/2 netdna.bootstrapcdn.com/font-awesome/4.1.0/css/font-awesome.min.css
IP
GET /font-awesome/4.1.0/css/font-awesome.min.css HTTP/1.1
Host: netdna.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://planoffice.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 02:09:44 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:53 GMT
cdn-cachedat: 11/16/2021 10:00:11
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 0eb7160e8356338bb079cae66d61082c
cdn-cache: HIT
cf-cache-status: HIT
age: 18002182
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 790e6d6dffb4b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
193.70.34.218
104.22.25.131
93.184.220.29
142.250.74.131
23.32.84.22
82.102.27.18
35.198.80.163
157.240.200.63