firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash c9df6b36bf16969ac566c1b798362e4a
e56eff34815153ae019a4bf63eb9746dd9ae2e5b
33c1175144ab2be42c9de383f7893a6e60cd1f21f282eacb413d546331db3fa0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Retry-After, Alert, Content-Type, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 21 Oct 2022 14:22:02 GMT
Expires: Fri, 21 Oct 2022 15:22:02 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FtwX6XyUm77aIkoOPykBNd7ViuwrJq3tKHLGHMkYF0-NJWmPOD9jdg==
Age: 3070
link.1kday.com/r/1/eyJsaW5rX2lkIjoiV3I5U1pPbEVnbE1Qd3lkdFNpMXkiLCJjb250YWN0X2lkIjoiM2tlOGZkZkVldDZNMHdSMElLaE4iLCJtZXNzYWdlVHlwZSI6InNtcyIsIm1lc3NhZ2VJZCI6Im13d3FEVnQydGxqNmp1VmJUcEd6Iiwid29ya2Zsb3dfc3RhdHVzX2lkIjoiYzIzZGE3MTMtZDg1Ny00ZjQzLWJmY2UtYzUyODBlOTQ3OWYzIn0=
34.70.111.192301 Moved Permanently 166 B URL HTTP/1.1 link.1kday.com/r/1/eyJsaW5rX2lkIjoiV3I5U1pPbEVnbE1Qd3lkdFNpMXkiLCJjb250YWN0X2lkIjoiM2tlOGZkZkVldDZNMHdSMElLaE4iLCJtZXNzYWdlVHlwZSI6InNtcyIsIm1lc3NhZ2VJZCI6Im13d3FEVnQydGxqNmp1VmJUcEd6Iiwid29ya2Zsb3dfc3RhdHVzX2lkIjoiYzIzZGE3MTMtZDg1Ny00ZjQzLWJmY2UtYzUyODBlOTQ3OWYzIn0=
IP 34.70.111.192:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
Analyzer Verdict Alert fortinet Phishing
GET /r/1/eyJsaW5rX2lkIjoiV3I5U1pPbEVnbE1Qd3lkdFNpMXkiLCJjb250YWN0X2lkIjoiM2tlOGZkZkVldDZNMHdSMElLaE4iLCJtZXNzYWdlVHlwZSI6InNtcyIsIm1lc3NhZ2VJZCI6Im13d3FEVnQydGxqNmp1VmJUcEd6Iiwid29ya2Zsb3dfc3RhdHVzX2lkIjoiYzIzZGE3MTMtZDg1Ny00ZjQzLWJmY2UtYzUyODBlOTQ3OWYzIn0= HTTP/1.1
Host: link.1kday.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: openresty
Date: Fri, 21 Oct 2022 15:13:12 GMT
Content-Type: text/html
Content-Length: 166
Connection: keep-alive
Location: https://link.1kday.com/r/1/eyJsaW5rX2lkIjoiV3I5U1pPbEVnbE1Qd3lkdFNpMXkiLCJjb250YWN0X2lkIjoiM2tlOGZkZkVldDZNMHdSMElLaE4iLCJtZXNzYWdlVHlwZSI6InNtcyIsIm1lc3NhZ2VJZCI6Im13d3FEVnQydGxqNmp1VmJUcEd6Iiwid29ya2Zsb3dfc3RhdHVzX2lkIjoiYzIzZGE3MTMtZDg1Ny00ZjQzLWJmY2UtYzUyODBlOTQ3OWYzIn0=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 24a97183f836954e0f05c4dc794ff4d1
52778bbe39b9f736c16b5798575d1d96607ce9d0
01f6721f2674f54662fff590fdf7247cc8c58a3f84906cae75527fb7b6dd2436
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01F6721F2674F54662FFF590FDF7247CC8C58A3F84906CAE75527FB7B6DD2436"
Last-Modified: Wed, 19 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9006
Expires: Fri, 21 Oct 2022 17:43:18 GMT
Date: Fri, 21 Oct 2022 15:13:12 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9dc4f23f82148797f6d8041bdda3c7f7
6841ded3e2dd94fd762316d01efd43f7aafb8354
e229db1854a85b320cee574e805210f3adf5797136ea820c0a0ce9abcd63d4dd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E229DB1854A85B320CEE574E805210F3ADF5797136EA820C0A0CE9ABCD63D4DD"
Last-Modified: Thu, 20 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8964
Expires: Fri, 21 Oct 2022 17:42:36 GMT
Date: Fri, 21 Oct 2022 15:13:12 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Z3DB4of2sut+c4Cl6Dei1qtgM2vWPYFrjGauzQHybhoBdfpu8CSosO7MzPK9W3BX+3h9LYBirVA=
x-amz-request-id: XPY5MVQ2ACT1VNGT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 21 Oct 2022 14:37:12 GMT
age: 2160
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 21 Oct 2022 15:13:12 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 21 Oct 2022 14:43:40 GMT
Cache-Control: max-age=3600
Expires: Fri, 21 Oct 2022 14:45:41 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BpgdtUm8GE00mjpbtPgRTau4NkENi2DzwNQUzGhobINF1_7OFWluJw==
Age: 1773
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f47cc320695635b544a761f72f3afc6f
b7cee764dcb0a625e0f8e0b4a4fce04548a1bf76
78608be3d0d6aaaf0364aed316b8676ab28d23c9b6a8ac6c147cf5d16e5cc283
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4102
Cache-Control: max-age=151316
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:13 GMT
Etag: "63525317-1d7"
Expires: Sun, 23 Oct 2022 09:15:09 GMT
Last-Modified: Fri, 21 Oct 2022 08:06:47 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.41.253.170101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.253.170:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: usvg8D7QI/BvW4hSOiE4QQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bmyBl8uwyNUghAOXeQ7n80JmIWc=
link.1kday.com/r/1/eyJsaW5rX2lkIjoiV3I5U1pPbEVnbE1Qd3lkdFNpMXkiLCJjb250YWN0X2lkIjoiM2tlOGZkZkVldDZNMHdSMElLaE4iLCJtZXNzYWdlVHlwZSI6InNtcyIsIm1lc3NhZ2VJZCI6Im13d3FEVnQydGxqNmp1VmJUcEd6Iiwid29ya2Zsb3dfc3RhdHVzX2lkIjoiYzIzZGE3MTMtZDg1Ny00ZjQzLWJmY2UtYzUyODBlOTQ3OWYzIn0=
34.70.111.192302 Found 294 B URL HTTP/2 link.1kday.com/r/1/eyJsaW5rX2lkIjoiV3I5U1pPbEVnbE1Qd3lkdFNpMXkiLCJjb250YWN0X2lkIjoiM2tlOGZkZkVldDZNMHdSMElLaE4iLCJtZXNzYWdlVHlwZSI6InNtcyIsIm1lc3NhZ2VJZCI6Im13d3FEVnQydGxqNmp1VmJUcEd6Iiwid29ya2Zsb3dfc3RhdHVzX2lkIjoiYzIzZGE3MTMtZDg1Ny00ZjQzLWJmY2UtYzUyODBlOTQ3OWYzIn0=
IP 34.70.111.192:0
File type HTML document, ASCII text, with no line terminators
Hash 7b8ac1db42367ff626503367479ebbf9
ff7b6f1975f70acd581395539b53166f15aea77f
4ed19f6bf76c4801d5cc07ed4204d9ad5a4f870f6506514ceb050f5f01091c8f
Analyzer Verdict Alert fortinet Phishing
GET /r/1/eyJsaW5rX2lkIjoiV3I5U1pPbEVnbE1Qd3lkdFNpMXkiLCJjb250YWN0X2lkIjoiM2tlOGZkZkVldDZNMHdSMElLaE4iLCJtZXNzYWdlVHlwZSI6InNtcyIsIm1lc3NhZ2VJZCI6Im13d3FEVnQydGxqNmp1VmJUcEd6Iiwid29ya2Zsb3dfc3RhdHVzX2lkIjoiYzIzZGE3MTMtZDg1Ny00ZjQzLWJmY2UtYzUyODBlOTQ3OWYzIn0= HTTP/1.1
Host: link.1kday.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
server: openresty
date: Fri, 21 Oct 2022 15:13:13 GMT
content-type: text/html; charset=utf-8
content-length: 294
location: https://go.1kday.com/1-landing-page-4620?sessionId=ba5599d0-888b-40dc-8e84-662b30b3d4c4&trigger_link=Wr9SZOlEglMPwydtSi1y
x-powered-by: Express
access-control-allow-origin: *
vary: Accept
x-cloud-trace-context: 2affb4e8ea332b9d4ff60cc5096d6076
X-Firefox-Spdy: h2
go.1kday.com/1-landing-page-4620?sessionId=ba5599d0-888b-40dc-8e84-662b30b3d4c4&trigger_link=Wr9SZOlEglMPwydtSi1y
34.68.234.4200 OK 24 kB URL HTTP/2 go.1kday.com/1-landing-page-4620?sessionId=ba5599d0-888b-40dc-8e84-662b30b3d4c4&trigger_link=Wr9SZOlEglMPwydtSi1y
IP 34.68.234.4:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23676)
Hash 70e05d30ae61cc96754281e59c7ba147
b4eab034dc919b5fdf9349a6602f8d9dcd9d55df
a69b9a8c01711675d3f4810f9332fb3b02ac9e3d64eeefae5c41b0b515590332
GET /1-landing-page-4620?sessionId=ba5599d0-888b-40dc-8e84-662b30b3d4c4&trigger_link=Wr9SZOlEglMPwydtSi1y HTTP/1.1
Host: go.1kday.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: openresty
date: Fri, 21 Oct 2022 15:13:14 GMT
content-type: text/html; charset=utf-8
content-length: 23751
x-powered-by: Express
content-encoding: gzip
cache-control: public, max-age=60, s-maxage=120
etag: W/"5cc7-tOqwNNyRm1/fk0mmYC+Nnc2dVd8"
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/SLmdkGPlh-s
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/SLmdkGPlh-s
IP 142.250.74.3:0
Hash 636c23f38f5248f5b24b26c3435adeb8
5eb46e617026a9dbde1519d13108cd4e57b60ef1
c23b33fef8eb64b899e229cd47e703a659c180a1688d4546eadc588bd7dcb3e5
POST /s/gts1d4/SLmdkGPlh-s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e6c3e0486533b0a2edffeca191cd7785
2d688b3c35b26c69e8490ed21ccb94dbbe5ddd27
0780ccc7e7101d6bbfb981fcfdc6e9642f49b4671e2109bde58362d5be33c5d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/SLmdkGPlh-s
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/SLmdkGPlh-s
IP 142.250.74.3:0
Hash 636c23f38f5248f5b24b26c3435adeb8
5eb46e617026a9dbde1519d13108cd4e57b60ef1
c23b33fef8eb64b899e229cd47e703a659c180a1688d4546eadc588bd7dcb3e5
POST /s/gts1d4/SLmdkGPlh-s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/SLmdkGPlh-s
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/SLmdkGPlh-s
IP 142.250.74.3:0
Hash 636c23f38f5248f5b24b26c3435adeb8
5eb46e617026a9dbde1519d13108cd4e57b60ef1
c23b33fef8eb64b899e229cd47e703a659c180a1688d4546eadc588bd7dcb3e5
POST /s/gts1d4/SLmdkGPlh-s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stcdn.leadconnectorhq.com/_preview/calendar.d9f2ca87.css
35.244.153.18200 OK 279 B URL HTTP/2 stcdn.leadconnectorhq.com/_preview/calendar.d9f2ca87.css
IP 35.244.153.18:0
File type ASCII text, with very long lines (775)
Hash e523a9eaa64664946e3534443daf0f2a
0c0927b9cdf67bc761cda34119c3d5e47324db74
c81fa7baadce5616b7416247ec801bfefd2cd28ffee01888f4b5cfebaa747a0a
GET /_preview/calendar.d9f2ca87.css HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduf9m1t8CXCx8nCgcCvadYh_3VXROJjnoZydQMMpgbHDd7ntZ7R8OWOkCKoQOV4Jjw2V1zrGiWRbJJD8bbWzNrb
x-goog-generation: 1664870802078537
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 279
content-encoding: gzip
x-goog-hash: crc32c=gVLyrA==, md5=5SOp6qZGZJRuNTREPa8PKg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 279
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Range, Content-Range, X-From-Cache
server: UploadServer
date: Tue, 04 Oct 2022 08:17:25 GMT
expires: Wed, 04 Oct 2023 08:17:25 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Tue, 04 Oct 2022 08:06:42 GMT
etag: "e523a9eaa64664946e3534443daf0f2a"
content-type: text/css
age: 1493749
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 280934e2f40700e285db82693f817e89
0bab9cc4860731aac31791bad612d3d5d8612f14
90decd62356ba4c859d983ef6deaaa2399bc06d59c85a98c8828f920d5efe1c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5566
Cache-Control: max-age=163581
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Etag: "63527d49-117"
Expires: Sun, 23 Oct 2022 12:39:35 GMT
Last-Modified: Fri, 21 Oct 2022 11:06:49 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/s/gts1d4/SLmdkGPlh-s
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/SLmdkGPlh-s
IP 142.250.74.3:0
Hash 636c23f38f5248f5b24b26c3435adeb8
5eb46e617026a9dbde1519d13108cd4e57b60ef1
c23b33fef8eb64b899e229cd47e703a659c180a1688d4546eadc588bd7dcb3e5
POST /s/gts1d4/SLmdkGPlh-s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stcdn.leadconnectorhq.com/_preview/entry.7e0fc721.css
35.244.153.18200 OK 27 kB URL HTTP/2 stcdn.leadconnectorhq.com/_preview/entry.7e0fc721.css
IP 35.244.153.18:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 11f2da6f4d5083cc9c18144811e62556
adbd0a7d3f877df3c24b38970139703cb9a07b40
6f38b8d9718668a0f163c633fb8b8319ea1a393f725196269d6a8fb4246c9d1b
GET /_preview/entry.7e0fc721.css HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdt-uLvnmxyRP_sx8CNwYC3X-UAA1Zt3cZHKYC52I-G5r3RGeTKu8K5jrCGlmSjpcF6GQyAgSSnYNj482uMTnnhUyA
x-goog-generation: 1666357426748283
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 27053
content-encoding: gzip
x-goog-hash: crc32c=0WqxCQ==, md5=EfLab01Qg8ycGBRIEeYlVg==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 27053
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Range, Content-Range, X-From-Cache
server: UploadServer
date: Fri, 21 Oct 2022 13:06:17 GMT
expires: Sat, 21 Oct 2023 13:06:17 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Fri, 21 Oct 2022 13:03:46 GMT
etag: "11f2da6f4d5083cc9c18144811e62556"
content-type: text/css
age: 7617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stcdn.leadconnectorhq.com/_preview/default.f5865b9f.css
35.244.153.18200 OK 281 B URL HTTP/2 stcdn.leadconnectorhq.com/_preview/default.f5865b9f.css
IP 35.244.153.18:0
File type ASCII text, with very long lines (443)
Hash 26edc73e1a58a2cc068c6f29d8b5de88
e9e6d6fbc523e7c5f35828776ef2b022f5bf6966
0413bff8c2cb95ff7a131a63aaff1aa2b6682a67e04d91ebe43d0c328afd2162
GET /_preview/default.f5865b9f.css HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduPsspAzEYbCKpVJ8rBao6KTx4G47O2fT021480USpt0cjMVe0Qujn8jXoqk0UHNG4sS6xalnwfkX7coUT1ynNXK1G28sZj
x-goog-generation: 1664870801566239
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 281
content-encoding: gzip
x-goog-hash: crc32c=eKYIFw==, md5=Ju3HPhpYoswGjG8p2LXeiA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 281
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Range, Content-Range, X-From-Cache
server: UploadServer
date: Tue, 04 Oct 2022 08:17:25 GMT
expires: Wed, 04 Oct 2023 08:17:25 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Tue, 04 Oct 2022 08:06:41 GMT
etag: "26edc73e1a58a2cc068c6f29d8b5de88"
content-type: text/css
age: 1493749
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stcdn.leadconnectorhq.com/_preview/default-3ff975b8.mjs
35.244.153.18200 OK 512 B URL HTTP/2 stcdn.leadconnectorhq.com/_preview/default-3ff975b8.mjs
IP 35.244.153.18:0
File type Java source, ASCII text, with very long lines (838)
Hash fa0db93f4888f06cdcb2aacca4843550
13f7e80bfa63c33161d67dbe63b11ad0c3ad1765
2d852e8fdbdd237ae7f1b80797fb3ef798e84460c8f59d96cabbfd4455bcf1e3
GET /_preview/default-3ff975b8.mjs HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdunxaNvO_2xeT5Up95N-lbvk68gAB8cHZTn6ojGlTh1ZA5esSZAkvLTyp5JD3Z22i6Jdbbsndmfo_QO-PJoqSe79Qkzi-_M
x-goog-generation: 1666357432798656
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 512
content-encoding: gzip
x-goog-hash: crc32c=Ms5eHQ==, md5=+g25P0iI8GzcsqrMpIQ1UA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 512
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, Content-Type, Date, Range, Server, Transfer-Encoding, X-From-Cache, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 21 Oct 2022 13:06:17 GMT
expires: Sat, 21 Oct 2023 13:06:17 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Fri, 21 Oct 2022 13:03:52 GMT
etag: "fa0db93f4888f06cdcb2aacca4843550"
content-type: application/javascript
age: 7617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 280934e2f40700e285db82693f817e89
0bab9cc4860731aac31791bad612d3d5d8612f14
90decd62356ba4c859d983ef6deaaa2399bc06d59c85a98c8828f920d5efe1c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5566
Cache-Control: max-age=163581
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Etag: "63527d49-117"
Expires: Sun, 23 Oct 2022 12:39:35 GMT
Last-Modified: Fri, 21 Oct 2022 11:06:49 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 280934e2f40700e285db82693f817e89
0bab9cc4860731aac31791bad612d3d5d8612f14
90decd62356ba4c859d983ef6deaaa2399bc06d59c85a98c8828f920d5efe1c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5566
Cache-Control: max-age=163581
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Etag: "63527d49-117"
Expires: Sun, 23 Oct 2022 12:39:35 GMT
Last-Modified: Fri, 21 Oct 2022 11:06:49 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
stcdn.leadconnectorhq.com/_preview/form.d931b5a1.css
35.244.153.18200 OK 94 B URL HTTP/2 stcdn.leadconnectorhq.com/_preview/form.d931b5a1.css
IP 35.244.153.18:0
Hash 71c536c4ecb798b8fbc3786d4a3e8d91
866089ef4eb7464c9c6596250f54aa20bf0f2dc5
a2da6b2c7e089e4165c06afbd222fa18c40cd2a5b3fb355f17f1c82777e9631b
GET /_preview/form.d931b5a1.css HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtO9jerwG-VRtujFRbFwW4vdBCiC-RLnVkwpb9QQvfp2lwTQscqOY52xPg182jN-o3UTlzxpKMl1Wu1BAJZubL4LoxVQJpG
x-goog-generation: 1664870803133330
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 94
content-encoding: gzip
x-goog-hash: crc32c=tyKADQ==, md5=ccU2xOy3mLj7w3htSj6NkQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 94
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Range, Content-Range, X-From-Cache
server: UploadServer
date: Tue, 04 Oct 2022 08:17:25 GMT
expires: Wed, 04 Oct 2023 08:17:25 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Tue, 04 Oct 2022 08:06:43 GMT
etag: "71c536c4ecb798b8fbc3786d4a3e8d91"
content-type: text/css
age: 1493749
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stcdn.leadconnectorhq.com/_preview/index-697d8634.mjs
35.244.153.18200 OK 63 kB URL HTTP/2 stcdn.leadconnectorhq.com/_preview/index-697d8634.mjs
IP 35.244.153.18:0
File type ASCII text, with very long lines (43849)
Hash 8468b8f38decf1543bfa12bd51ec1dda
98cc34ad69536b9a4b399a77d1182fe6e7a5b8ee
2ff043d7dc5a7c107d0ba285b68223ff97886b3599921c14924fe7a17d3b4a50
GET /_preview/index-697d8634.mjs HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtINt2EC7wvjBQakzIiMSX_r1CNcdafPuOzr_OKHo2jHKtRYvdJW-RVk8ZS_VoxXXIaQeigBMX731Olgjc1-EZaQA
x-goog-generation: 1666357430325256
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 62926
content-encoding: gzip
x-goog-hash: crc32c=Vn4hpA==, md5=hGi4843s8VQ7+hK9Uewd2g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 62926
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, Content-Type, Date, Range, Server, Transfer-Encoding, X-From-Cache, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 21 Oct 2022 13:06:17 GMT
expires: Sat, 21 Oct 2023 13:06:17 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Fri, 21 Oct 2022 13:03:50 GMT
etag: "8468b8f38decf1543bfa12bd51ec1dda"
content-type: application/javascript
age: 7617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stcdn.leadconnectorhq.com/_preview/index-be4fac04.mjs
35.244.153.18200 OK 349 B URL HTTP/2 stcdn.leadconnectorhq.com/_preview/index-be4fac04.mjs
IP 35.244.153.18:0
File type Java source, ASCII text, with very long lines (525)
Hash 92e1d968642cde5f9deab4d0a3c9204b
d1f0fed48680f6c180dce01e2d8d25ebfe8ab1a2
178823e202f5d9e5484397ab7633393167434045c61e78f8a2d15bd495114310
GET /_preview/index-be4fac04.mjs HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://stcdn.leadconnectorhq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvALibWdCNlIiqYIKR6cDu-_tHLLjDCbqgpZjqryuycPJvnTqhVw9O8Vg0xoXDUqcqAj_aRq_Mb23OBJABOwjsXVA
x-goog-generation: 1666357432194989
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 349
content-encoding: gzip
x-goog-hash: crc32c=xfgg7g==, md5=kuHZaGQs3l+d6rTQo8kgSw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 349
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, Content-Type, Date, Range, Server, Transfer-Encoding, X-From-Cache, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 21 Oct 2022 13:06:17 GMT
expires: Sat, 21 Oct 2023 13:06:17 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Fri, 21 Oct 2022 13:03:52 GMT
etag: "92e1d968642cde5f9deab4d0a3c9204b"
content-type: application/javascript
age: 7617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/SLmdkGPlh-s
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/SLmdkGPlh-s
IP 142.250.74.3:0
Hash 636c23f38f5248f5b24b26c3435adeb8
5eb46e617026a9dbde1519d13108cd4e57b60ef1
c23b33fef8eb64b899e229cd47e703a659c180a1688d4546eadc588bd7dcb3e5
POST /s/gts1d4/SLmdkGPlh-s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e6c3e0486533b0a2edffeca191cd7785
2d688b3c35b26c69e8490ed21ccb94dbbe5ddd27
0780ccc7e7101d6bbfb981fcfdc6e9642f49b4671e2109bde58362d5be33c5d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stcdn.leadconnectorhq.com/_preview/index-21c7799d.mjs
35.244.153.18200 OK 12 kB URL HTTP/2 stcdn.leadconnectorhq.com/_preview/index-21c7799d.mjs
IP 35.244.153.18:0
File type ASCII text, with very long lines (38904)
Hash 087a094aa625adc3775f88e55d9b5668
90c7c262a3868b8b38b63affe9024bb6d3a3c391
2afc522d04a8d14c17beb540ddf0c91f934b3d70eebfa4ff97cf8d88b1d27a3b
GET /_preview/index-21c7799d.mjs HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://stcdn.leadconnectorhq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsYyWL5h9-nyq9Qqk7nTaeglAJ6Xj8lPfEYhHfhIs24tq7YGljIU1CJt1thtFqrIJgI7iG0f5Gek7Sv6lToMfAbXg
x-goog-generation: 1666357432999396
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 11722
content-encoding: gzip
x-goog-hash: crc32c=lgJf/g==, md5=CHoJSqYlrcN3X4jlXZtWaA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 11722
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, Content-Type, Date, Range, Server, Transfer-Encoding, X-From-Cache, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 21 Oct 2022 13:06:17 GMT
expires: Sat, 21 Oct 2023 13:06:17 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Fri, 21 Oct 2022 13:03:53 GMT
etag: "087a094aa625adc3775f88e55d9b5668"
content-type: application/javascript
age: 7617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stcdn.leadconnectorhq.com/_preview/TextElement-3972b7b6.mjs
35.244.153.18200 OK 23 kB URL HTTP/2 stcdn.leadconnectorhq.com/_preview/TextElement-3972b7b6.mjs
IP 35.244.153.18:0
File type ASCII text, with very long lines (51073)
Hash eb1b0d0a4a9c71d342ddca98ca9fa537
b29a49d2b28b0e6f46827d08777193b7c137df6b
af3cc53516343a88e713369491003736a657adf3788bb18727d64ef46024bfa9
GET /_preview/TextElement-3972b7b6.mjs HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://stcdn.leadconnectorhq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduIH8_j5R9dg-MUa29ucAOtH8JdWWEpkpKrM-sel210vIT1ue1a8MGi9qFqEn0khW18G5kB06Hg9T0_j_iO8cPhRg
x-goog-generation: 1666357432381288
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 23288
content-encoding: gzip
x-goog-hash: crc32c=VHnDHA==, md5=6xsNCkqccdNC3cqYyp+lNw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 23288
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, Content-Type, Date, Range, Server, Transfer-Encoding, X-From-Cache, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 21 Oct 2022 13:06:17 GMT
expires: Sat, 21 Oct 2023 13:06:17 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Fri, 21 Oct 2022 13:03:52 GMT
etag: "eb1b0d0a4a9c71d342ddca98ca9fa537"
content-type: application/javascript
age: 7617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stcdn.leadconnectorhq.com/_preview/HLConst-8876f720.mjs
35.244.153.18200 OK 614 B URL HTTP/2 stcdn.leadconnectorhq.com/_preview/HLConst-8876f720.mjs
IP 35.244.153.18:0
File type ASCII text, with very long lines (1046)
Hash 9f07be8735bb1e416925bbbbbdcb9bd8
f778fff8b9010e358a743895cdf10619812067d6
6949c046d25fea52442de7a3805b019cc31c721ec6e4ee7ab8df8411809cdba4
GET /_preview/HLConst-8876f720.mjs HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://stcdn.leadconnectorhq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduhf8jvm1QbG8cPvb-CtPZ14YFYpc9tBFqQHEGbz85IhmMAQxjuswj7jrA4CPRxoavOm_n5vn1W3uVWSToUJOxQYRBoCKNz
x-goog-generation: 1664870804793764
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 614
content-encoding: gzip
x-goog-hash: crc32c=9c04Jg==, md5=nwe+hzW7HkFpJbu7vcub2A==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 614
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, Content-Type, Date, Range, Server, Transfer-Encoding, X-From-Cache, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Tue, 04 Oct 2022 08:17:37 GMT
expires: Wed, 04 Oct 2023 08:17:37 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Tue, 04 Oct 2022 08:06:44 GMT
etag: "9f07be8735bb1e416925bbbbbdcb9bd8"
content-type: application/javascript
age: 1493737
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 280934e2f40700e285db82693f817e89
0bab9cc4860731aac31791bad612d3d5d8612f14
90decd62356ba4c859d983ef6deaaa2399bc06d59c85a98c8828f920d5efe1c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5566
Cache-Control: max-age=163581
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Etag: "63527d49-117"
Expires: Sun, 23 Oct 2022 12:39:35 GMT
Last-Modified: Fri, 21 Oct 2022 11:06:49 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
stcdn.leadconnectorhq.com/_preview/FormComponent-39fa86fd.mjs
35.244.153.18200 OK 12 kB URL HTTP/2 stcdn.leadconnectorhq.com/_preview/FormComponent-39fa86fd.mjs
IP 35.244.153.18:0
File type Unicode text, UTF-8 text, with very long lines (36009)
Hash fb4441903250e3200a8f1e2f96f8f7d2
a9b34fed202459fb6714d6c7cd5a08c36baf99f6
0f1abd0d4fd49989db1c4014aa07f5afe390d410ee2bde07402808d49f992d0e
GET /_preview/FormComponent-39fa86fd.mjs HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://stcdn.leadconnectorhq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvNEs5PU8Fpq9lrwjS0bRDaf6Um0zpYqNpQzXgax1dmDDYN--WQw8YcCguy9YY-NcvUJdDPS5oHgklMEore_9ey-Q
x-goog-generation: 1666357430111958
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12195
content-encoding: gzip
x-goog-hash: crc32c=2lV+GA==, md5=+0RBkDJQ4yAKjx4vlvj30g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 12195
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, Content-Type, Date, Range, Server, Transfer-Encoding, X-From-Cache, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 21 Oct 2022 13:06:17 GMT
expires: Sat, 21 Oct 2023 13:06:17 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Fri, 21 Oct 2022 13:03:50 GMT
etag: "fb4441903250e3200a8f1e2f96f8f7d2"
content-type: application/javascript
age: 7617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stcdn.leadconnectorhq.com/_preview/CalendarComponent-ce067db7.mjs
35.244.153.18200 OK 10 kB URL HTTP/2 stcdn.leadconnectorhq.com/_preview/CalendarComponent-ce067db7.mjs
IP 35.244.153.18:0
File type ASCII text, with very long lines (32389)
Hash 9e52d8a6dc0b4c568cac17c00dbe7d2f
b279e6afc943c0c908ff3819753ea98cad66afa2
925ce67454513313414d7ed0dc64d0fb50d022728897359c5ff901cde5134f3f
GET /_preview/CalendarComponent-ce067db7.mjs HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://stcdn.leadconnectorhq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvc33G8gkMKEWbV-byBxP6AGSGlRI_pMMxf4cH8L0QgMUpv7LA1EURQ7RDi_bNDoKHHDT0QFKnse4akDk9dJJ0OXw
x-goog-generation: 1666357430972192
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10482
content-encoding: gzip
x-goog-hash: crc32c=VvEr9A==, md5=nlLYptwLTFaMrBfADb59Lw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 10482
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, Content-Type, Date, Range, Server, Transfer-Encoding, X-From-Cache, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 21 Oct 2022 13:06:17 GMT
expires: Sat, 21 Oct 2023 13:06:17 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Fri, 21 Oct 2022 13:03:51 GMT
etag: "9e52d8a6dc0b4c568cac17c00dbe7d2f"
content-type: application/javascript
age: 7617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/XD8U8fpFv8M
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/XD8U8fpFv8M
IP 142.250.74.3:0
Hash 0997cfa923cdd0abcede869b4977a61c
ee14c71000cdb45eafdf622c91267540f33d0c16
362ff5f372098715b5f7f95d7433c8e87b77161064021b0a11b538174078e684
POST /s/gts1d4/XD8U8fpFv8M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stcdn.leadconnectorhq.com/_preview/surveyComponent-85bde95b.mjs
35.244.153.18200 OK 11 kB URL HTTP/2 stcdn.leadconnectorhq.com/_preview/surveyComponent-85bde95b.mjs
IP 35.244.153.18:0
File type Unicode text, UTF-8 text, with very long lines (40294)
Hash 0c24e90b660acba96657f2981d8a8df5
eb04cfb6de85fe353a0f1c5f3f1c5ab4e3638967
8dadb6e38875c132259685b16bdaaad8e0f0c2a34273f6f2769e8d03de2ff413
GET /_preview/surveyComponent-85bde95b.mjs HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://stcdn.leadconnectorhq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsqQ3AEqsiqKSdhiIP8b-l8cYjdwrLjarNpGT0p0MvZXoOKxoMLFYDQ0qPD-MDBEycBQ7jCadFMkmgpDwFju2DVGQ
x-goog-generation: 1666357431579076
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 11212
content-encoding: gzip
x-goog-hash: crc32c=VwNGnw==, md5=DCTpC2YKy6lmV/KYHYqN9Q==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 11212
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, Content-Type, Date, Range, Server, Transfer-Encoding, X-From-Cache, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 21 Oct 2022 13:06:17 GMT
expires: Sat, 21 Oct 2023 13:06:17 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Fri, 21 Oct 2022 13:03:51 GMT
etag: "0c24e90b660acba96657f2981d8a8df5"
content-type: application/javascript
age: 7617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stcdn.leadconnectorhq.com/_preview/CalendarComponentv3-5a9fc258.mjs
35.244.153.18200 OK 14 kB URL HTTP/2 stcdn.leadconnectorhq.com/_preview/CalendarComponentv3-5a9fc258.mjs
IP 35.244.153.18:0
File type ASCII text, with very long lines (41378)
Hash 83885984a0495aa45278915ac40c5c4f
85f9dae34ba97251a60e229d0587d4a63ac205c6
86f9c0d0473eceda8e2b244bc0d727ac342affdf7f40859331f6fa6055a94332
GET /_preview/CalendarComponentv3-5a9fc258.mjs HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://stcdn.leadconnectorhq.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvW0u0z10G75YaDxJY0o_MS9oTmuYYWVS_6ihChG85IKZVV-27YxKFARMLWcNIVCtHmtMEmYD1KM3xmWM2TR84kHg
x-goog-generation: 1666357429443036
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 13454
content-encoding: gzip
x-goog-hash: crc32c=QCl5bA==, md5=g4hZhKBJWqRSeJFaxAxcTw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 13454
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, Content-Type, Date, Range, Server, Transfer-Encoding, X-From-Cache, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 21 Oct 2022 13:06:17 GMT
expires: Sat, 21 Oct 2023 13:06:17 GMT
cache-control: public, no-transform, immutable, max-age=31536000
last-modified: Fri, 21 Oct 2022 13:03:49 GMT
etag: "83885984a0495aa45278915ac40c5c4f"
content-type: application/javascript
age: 7617
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
assets.cdn.msgsndr.com/muBKRmyiIz7rQZKHHloS/media/38fb046c-4a4f-4c50-966d-8da0d831b12b.gif
35.244.153.18200 OK 14 kB URL HTTP/2 assets.cdn.msgsndr.com/muBKRmyiIz7rQZKHHloS/media/38fb046c-4a4f-4c50-966d-8da0d831b12b.gif
IP 35.244.153.18:0
File type GIF image data, version 89a, 850 x 49\012- data
Hash 16090702c04db2db6210e31ea956c9ab
d432e8702bb72fb4ae7ac0bad0d094151d3b1b0a
3c82987bb6b7f8c9d0c8c6b659b248b607ff7b996ef0fb58c389c5c0dab15d8b
GET /muBKRmyiIz7rQZKHHloS/media/38fb046c-4a4f-4c50-966d-8da0d831b12b.gif HTTP/1.1
Host: assets.cdn.msgsndr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycds_CIX9YtDeezGWHyUmn-vWpfT68BksVMH0SQFMqjSGVWFfJEaMnXJVRAK5WVRIFoNYzMZuktqqWgkdB_JqlhnZf9GHOT86
x-goog-generation: 1649454180638844
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 14050
x-goog-meta-custom: metadata
x-goog-hash: crc32c=gDnKqQ==, md5=FgkHAsBNsttiEOMeqVbJqw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 14050
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Range, Content-Range, X-From-Cache
server: UploadServer
date: Thu, 20 Oct 2022 19:15:28 GMT
cache-control: public,max-age=31622400
last-modified: Fri, 08 Apr 2022 21:43:00 GMT
etag: "16090702c04db2db6210e31ea956c9ab"
content-type: image/gif
age: 71866
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 09f1d552877c07059a3c8debf4187f12
5832bc57522a3fda9a0fec7288076db87d4560c5
de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a0738b138f262176b9a5984a8afe3127
513e61f1dd78a6c51077165a5e5391119b9d9228
04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 20 Oct 2022 05:42:51 GMT
expires: Fri, 20 Oct 2023 05:42:51 GMT
cache-control: public, max-age=31536000
age: 120623
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
assets.cdn.msgsndr.com/muBKRmyiIz7rQZKHHloS/media/62505a0040dc5d00cad3fcd3.png
35.244.153.18200 OK 137 kB URL HTTP/2 assets.cdn.msgsndr.com/muBKRmyiIz7rQZKHHloS/media/62505a0040dc5d00cad3fcd3.png
IP 35.244.153.18:0
File type PNG image data, 3172 x 2013, 8-bit/color RGBA, non-interlaced\012- data
Size 137 kB (136803 bytes)
Hash e9586caddb4816454c3ce7bdc9c0562d
38ddebc759c5a47862ca939d08a6774c8cd9fc3b
6beebaa75763b0a8ee7673043e2afec18e3b0b2f252768c790221cee6ff3e80e
GET /muBKRmyiIz7rQZKHHloS/media/62505a0040dc5d00cad3fcd3.png HTTP/1.1
Host: assets.cdn.msgsndr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvh0uXXsRSBaBA7Tdpn9b2zX0JYQr0Q46P59oaGEbOdJ4skJfgpi218_1weNoDTKfu_IM88D4asmm2fOknD0RJosPnF_hj7
x-goog-generation: 1649433091565869
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 136803
x-goog-hash: crc32c=0OWL/Q==, md5=6VhsrdtIFkVMPOe9ycBWLQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 136803
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Range, Content-Range, X-From-Cache
server: UploadServer
date: Thu, 20 Oct 2022 19:15:28 GMT
cache-control: public,max-age=31622400
last-modified: Fri, 08 Apr 2022 15:51:31 GMT
etag: "e9586caddb4816454c3ce7bdc9c0562d"
content-type: image/png
age: 71866
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a0738b138f262176b9a5984a8afe3127
513e61f1dd78a6c51077165a5e5391119b9d9228
04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 09f1d552877c07059a3c8debf4187f12
5832bc57522a3fda9a0fec7288076db87d4560c5
de8ad3e1d71f1e4f709bed37590b5e0cdb520db9a246e57d212036af8cfc0f18
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 157146
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a0738b138f262176b9a5984a8afe3127
513e61f1dd78a6c51077165a5e5391119b9d9228
04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
216.58.207.195200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 17 Oct 2022 21:13:13 GMT
expires: Tue, 17 Oct 2023 21:13:13 GMT
cache-control: public, max-age=31536000
age: 324001
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 56aa4d33e288d7ec3acf3ac1a61ef7f9
ac2e2f3609cc604dde554e37471567c042bf8191
544823f794ac3e837c81449d896a9dcbe94f4d59a13e293d84b5af44531141d0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "544823F794AC3E837C81449D896A9DCBE94F4D59A13E293D84B5AF44531141D0"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9628
Expires: Fri, 21 Oct 2022 17:53:42 GMT
Date: Fri, 21 Oct 2022 15:13:14 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1d4/XD8U8fpFv8M
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/XD8U8fpFv8M
IP 142.250.74.3:0
Hash 0997cfa923cdd0abcede869b4977a61c
ee14c71000cdb45eafdf622c91267540f33d0c16
362ff5f372098715b5f7f95d7433c8e87b77161064021b0a11b538174078e684
POST /s/gts1d4/XD8U8fpFv8M HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 56aa4d33e288d7ec3acf3ac1a61ef7f9
ac2e2f3609cc604dde554e37471567c042bf8191
544823f794ac3e837c81449d896a9dcbe94f4d59a13e293d84b5af44531141d0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "544823F794AC3E837C81449D896A9DCBE94F4D59A13E293D84B5AF44531141D0"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9628
Expires: Fri, 21 Oct 2022 17:53:42 GMT
Date: Fri, 21 Oct 2022 15:13:14 GMT
Connection: keep-alive
stcdn.leadconnectorhq.com/_preview/entry-65796c9f.mjs
35.244.153.18200 OK 6.6 kB URL HTTP/2 stcdn.leadconnectorhq.com/_preview/entry-65796c9f.mjs
IP 35.244.153.18:0
Hash 1c6ab9a31e082a0c0eaab2a0f526495a
c30e9954dcef66d4f14ac8618ebf2a1da0b3e12a
ca3a602c8af7b3e87957e54910663ea2bb72d008e14719af0f9fd7bd1a949f3e
GET /_preview/entry-65796c9f.mjs HTTP/1.1
Host: stcdn.leadconnectorhq.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycduwfNw0brz-6flRqXTgxguPg29hJyflZ4CJ6Snm5YXVfkwtuuzmicLYlG2AdigqDFK3Q-_7iydtiwGfHgnw0BKykUxCzr-i
x-goog-generation: 1666357430776663
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 106399
content-encoding: gzip
x-goog-hash: crc32c=+y409w==, md5=b/eOjoSCq1+1ybZO3i7+/A==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 106399
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Range, Content-Type, Date, Range, Server, Transfer-Encoding, X-From-Cache, X-GUploader-UploadID, X-Google-Trace
server: UploadServer
date: Fri, 21 Oct 2022 13:06:14 GMT
expires: Sat, 21 Oct 2023 13:06:14 GMT
cache-control: public, no-transform, immutable, max-age=31536000
age: 7620
last-modified: Fri, 21 Oct 2022 13:03:50 GMT
etag: "6ff78e8e8482ab5fb5c9b64ede2efefc"
content-type: application/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e67413c-6e4d-487c-807f-ff21a90aa792.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e67413c-6e4d-487c-807f-ff21a90aa792.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 00f8ff57c0d15e1ce75a788b91dc0bd3
46445de659e1aa0623c7666c98b5f642ffeff89d
95eb2c3d2ab4643affffd59887814a013edacba9f73c633399905d9d0d397b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e67413c-6e4d-487c-807f-ff21a90aa792.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10799
x-amzn-requestid: 9b27131b-a0ca-426d-939c-78de0beac51c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKLF9hIAMF97g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-76bf3c356f04a6a672e2f7a1;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 96xd1B3QDqywkAxLGVMbF6P4UJ_gweEBpEc8fcCwUzVhTG6GWA66FA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 21:50:08 GMT
age: 62586
etag: "46445de659e1aa0623c7666c98b5f642ffeff89d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 56aa4d33e288d7ec3acf3ac1a61ef7f9
ac2e2f3609cc604dde554e37471567c042bf8191
544823f794ac3e837c81449d896a9dcbe94f4d59a13e293d84b5af44531141d0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "544823F794AC3E837C81449D896A9DCBE94F4D59A13E293D84B5AF44531141D0"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9628
Expires: Fri, 21 Oct 2022 17:53:42 GMT
Date: Fri, 21 Oct 2022 15:13:14 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a0738b138f262176b9a5984a8afe3127
513e61f1dd78a6c51077165a5e5391119b9d9228
04a69025a549be2708481584eb6a6a361c5541c0490d9c42ccba8161720e6075
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0e33502-97b5-4327-985f-813c8107dbb8.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0e33502-97b5-4327-985f-813c8107dbb8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b772335d96ac97ec5b28623955fb026d
7a19bf011359ad768b05dd79cec66787d2dc59fd
c13e7384880ec6fe431f3627eb61529c7fdb934cf0b021b4586ff2dc1c2e1244
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd0e33502-97b5-4327-985f-813c8107dbb8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 4786
x-amzn-requestid: 263fe384-2385-48c4-b250-1708a3cdd710
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKKFOYoAMF92Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-46dfbb85286685373b0b5e77;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xdusXhbeR0jyonK4NDRdcAGEDLLLJ5rL1X3u4seqIpfGaw4yIN5LEg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 21:50:08 GMT
age: 62586
etag: "7a19bf011359ad768b05dd79cec66787d2dc59fd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 56aa4d33e288d7ec3acf3ac1a61ef7f9
ac2e2f3609cc604dde554e37471567c042bf8191
544823f794ac3e837c81449d896a9dcbe94f4d59a13e293d84b5af44531141d0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "544823F794AC3E837C81449D896A9DCBE94F4D59A13E293D84B5AF44531141D0"
Last-Modified: Wed, 19 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9628
Expires: Fri, 21 Oct 2022 17:53:42 GMT
Date: Fri, 21 Oct 2022 15:13:14 GMT
Connection: keep-alive
1kday.com/ch2/assets/ch2-favi-gold.png
104.21.68.48200 OK 4.5 kB URL HTTP/2 1kday.com/ch2/assets/ch2-favi-gold.png
IP 104.21.68.48:0
File type PNG image data, 62 x 62, 8-bit/color RGBA, interlaced\012- data
Hash f8b1b47eac8e07c1b010630410d4fe28
ca454406139ca52b4dd92f21cef5b27a46a3b9ad
07f772382dde8d1c491183d7b065efe3395a9e7c88f936dfab699e392a6604b7
GET /ch2/assets/ch2-favi-gold.png HTTP/1.1
Host: 1kday.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 15:13:15 GMT
content-type: image/png
content-length: 4489
last-modified: Thu, 27 Jan 2022 16:51:00 GMT
cache-control: max-age=2592000
expires: Tue, 08 Nov 2022 08:54:35 GMT
cf-cache-status: HIT
age: 1059520
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wtrBJj7GVM1NDufOTxZc3hzzsAgk23GFKfbJFudkfoKNoap7L5B7k0pZU6H9gSpKG6E3612ANWlx9q%2B6L2mL%2B9r9z5Itktu8enipw%2FhR%2BnRYKYuPzmMAZViqHjg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75daefa4cba4b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5eaba338-753d-49fa-b65c-70aa4d08ec7d.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5eaba338-753d-49fa-b65c-70aa4d08ec7d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 41720951bc9f58ea936fb65b472ef05a
b8739209bdacc59cbf87b49024f73650a9a0f113
9dd1c174c5a45cf4167c4c20752c2575ab4280f869f49dd9056907c9521afe36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5eaba338-753d-49fa-b65c-70aa4d08ec7d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6730
x-amzn-requestid: 97d867bc-a398-4b2b-8dda-2497a105845e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aSsAnEP3oAMF2lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6350f39d-3f56509c395ff64a396b5706;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 07:07:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HnxmItt9LDm9ME1eITiRbQQr9xr7PLXcdTCRGyDVvO2Zo6x9pjavsw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 21 Oct 2022 04:53:57 GMT
age: 37158
etag: "b8739209bdacc59cbf87b49024f73650a9a0f113"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d369f8641d3489521afd62e112136f5b
088a3290733195efeb1d79dcc995c22b603bece0
b18601499cbb7bbcc1eaa464cec12c0287f8fab52a89e97973bd78fcb26ea918
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F66bcc767-1c09-4b79-aee1-3917407a2700.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9195
x-amzn-requestid: e40418b8-2272-44a3-83d6-9465798793ad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUsKLEk4oAMFsSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c0a7-34994aca1e13dcab306bf1a4;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:41:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86MQ2WBrOZ2pH88f27PxZ9f8tuu_9u6qNzyr4LZz6-yNbfjJdjgr0w==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 21:48:08 GMT
age: 62707
etag: "088a3290733195efeb1d79dcc995c22b603bece0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bd5e942443ffd011faf10dc88d92081
beff4ae9e24599addce8a961c955788045c56645
2c59d984971e73d497975032c23700b5602fccf403f4683a8047f5f42d4e261f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f52601f-0c98-4537-a72e-d72f9dbe4167.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10973
x-amzn-requestid: 081470ca-0107-4052-be55-9c713105bb27
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aUr-TEKPoAMFZfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6351c05b-17199f8c0fc0fb7443a902f1;Sampled=0
x-amzn-remapped-date: Thu, 20 Oct 2022 21:40:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: h8elwC37DfS3PoG9NuRyfp-bqOoLi9KWeSWvwuY4mFMGG4HHC3jZAg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 20 Oct 2022 22:17:34 GMT
age: 60941
etag: "beff4ae9e24599addce8a961c955788045c56645"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 19:34:08 GMT
expires: Thu, 19 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 157147
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/8SUWZOKhA0s
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/8SUWZOKhA0s
IP 142.250.74.3:0
Hash d004e56b7003a9b2ee7df9a4b73e4fcb
26eb88ff4eb620782260632f7a95eba0618fe716
f4e7baf1ab00cf61e63c2f232b7e446b4d2e63f4a42bd3b39fe2d57ab684899a
POST /s/gts1d4/8SUWZOKhA0s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:15 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3c24978670376ac6d98df26cf05a3423
d2bfedba1cfb988f3770e1409c645a6b45e63cb1
108a51bb3ecb4130ca34df8ccb2b9fa808fda6c22307bb1256d492df668ce99c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1246
Cache-Control: max-age=88726
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:15 GMT
Etag: "635169c3-117"
Expires: Sat, 22 Oct 2022 15:52:01 GMT
Last-Modified: Thu, 20 Oct 2022 15:31:15 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 761564903be0fda2efc6d9b2114d562f
9cfb8dfbf513e19bc464f70f80b832e6dab802ae
578e6436b74cb59fa175d364c435f3c9fbe16dda05c21b47c7bd1fcf6cf6e0aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5157
Cache-Control: max-age=106645
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:15 GMT
Etag: "6351a07b-117"
Expires: Sat, 22 Oct 2022 20:50:40 GMT
Last-Modified: Thu, 20 Oct 2022 19:24:43 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
embed.typeform.com/next/css/widget.css
54.230.111.5200 OK 977 B URL HTTP/2 embed.typeform.com/next/css/widget.css
IP 54.230.111.5:0
File type ASCII text, with very long lines (977), with no line terminators
Hash cd32c7ab0380852fc216740a524f2524
55d42915ba736d18a305fa3d73cac25ef9d88348
8285dd392dcedd54465398dca90de208fc8f9bffbc3854a93a6b4b7a34d62ef0
GET /next/css/widget.css HTTP/1.1
Host: embed.typeform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 977
last-modified: Mon, 10 Oct 2022 14:45:39 GMT
x-amz-version-id: btCRrV.OU.P1fcX_WjiTTk8L8CpFIfbW
accept-ranges: bytes
server: AmazonS3
date: Fri, 21 Oct 2022 15:13:15 GMT
etag: "cd32c7ab0380852fc216740a524f2524"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: WUGQP58cN-zooA0brhRg3yX4Ry9FTmwoULtmqvq0w5D75Xaqf-A77A==
age: 16
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/8SUWZOKhA0s
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/8SUWZOKhA0s
IP 142.250.74.3:0
Hash d004e56b7003a9b2ee7df9a4b73e4fcb
26eb88ff4eb620782260632f7a95eba0618fe716
f4e7baf1ab00cf61e63c2f232b7e446b4d2e63f4a42bd3b39fe2d57ab684899a
POST /s/gts1d4/8SUWZOKhA0s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:15 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 7feec063edc1e5a08d8d1f2613aa7ec1
3287829a7731d5caba18badc86946a82f4329456
dc316182facab65f93ded11b93b967c6063f267bad97b7cd13b9ed4ebb5c3799
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=130802
Date: Fri, 21 Oct 2022 15:13:15 GMT
Etag: "63520181-1d7"
Expires: Sun, 23 Oct 2022 03:33:17 GMT
Last-Modified: Fri, 21 Oct 2022 02:18:41 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: k6kUR7j1Q0u_qWEC4O-0WnBYhy_Nl9IwXwGOarzkpoXNZaf_aDCe2g==
Age: 4476
services.msgsndr.com/attribution_service/user_session_v3/create_session
34.98.115.9200 OK 0 B URL HTTP/2 services.msgsndr.com/attribution_service/user_session_v3/create_session
IP 34.98.115.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /attribution_service/user_session_v3/create_session HTTP/1.1
Host: services.msgsndr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://go.1kday.com/
Origin: https://go.1kday.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: content-type
content-length: 0
date: Fri, 21 Oct 2022 15:13:15 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/8SUWZOKhA0s
142.250.74.3200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/8SUWZOKhA0s
IP 142.250.74.3:0
Hash d004e56b7003a9b2ee7df9a4b73e4fcb
26eb88ff4eb620782260632f7a95eba0618fe716
f4e7baf1ab00cf61e63c2f232b7e446b4d2e63f4a42bd3b39fe2d57ab684899a
POST /s/gts1d4/8SUWZOKhA0s HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:15 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
services.msgsndr.com/funnels/stats/event
34.98.115.9204 No Content 0 B URL HTTP/2 services.msgsndr.com/funnels/stats/event
IP 34.98.115.9:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /funnels/stats/event HTTP/1.1
Host: services.msgsndr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: channel,content-type,source,version
Referer: https://go.1kday.com/
Origin: https://go.1kday.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: channel,content-type,source,version
content-length: 0
date: Fri, 21 Oct 2022 15:13:15 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
player.vimeo.com/video/716991720?h=b28a127f1f
162.159.138.60200 OK 5.4 kB URL HTTP/1.1 player.vimeo.com/video/716991720?h=b28a127f1f
IP 162.159.138.60:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (17056)
Hash 3e8257e20da35c7c4bebfe2d4304abb0
938a64b301bbfdd88f892b82c5c3ce1e4b359d13
c75657fabc376d42ab1ce0fc09acc09d93a9d86cd3243c8c0ab23468852dfdc5
GET /video/716991720?h=b28a127f1f HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.1kday.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 21 Oct 2022 15:13:15 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Fri, 15 Dec 1985 19:30:00 GMT
x-host: player-848489cf5b-vnrvg
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 0
x-vserver: playproxy-rollout-prod-varnish-5
x-backend-proxy: playproxy6
x-bapp-server: player-848489cf5b-vnrvg
Age: 0
X-Served-By: cache-bma1630-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1666365195.258742,VS0,VE242
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=xPqafFAcB6ErRfgZSPeluzxj0F.Bp.LDfRjCdp_191w-1666365195-0-AQQQZ7wLpBVpTR6MgSsvHIq+qF2Ft7OK16XYAtai+xKDFfOHc5ZblbmQebYJMA9ts1ss/OWW97QpQj51BUwRvsE=; path=/; expires=Fri, 21-Oct-22 15:43:15 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 75daefa648f70b61-OSL
Content-Encoding: gzip
services.msgsndr.com/attribution_service/user_session_v3/create_session
34.98.115.9200 OK 105 B URL HTTP/2 services.msgsndr.com/attribution_service/user_session_v3/create_session
IP 34.98.115.9:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 6332ed657f4da618868a3979555d5c56
109210f44fdf4ffe1c1c43dec9087f547c102d0b
39a8721e96a18cc985e1e32c5f75c53b2f0380e497481aad460572bbdec8ca33
POST /attribution_service/user_session_v3/create_session HTTP/1.1
Host: services.msgsndr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go.1kday.com/
Content-Type: application/json
Origin: https://go.1kday.com
Content-Length: 918
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-powered-by: Express
access-control-allow-origin: *
content-type: application/json; charset=utf-8
content-length: 105
etag: W/"69-EJIQ9E/fT/4cHEPeyQh/VHwQLQs"
date: Fri, 21 Oct 2022 15:13:15 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.11.10/css/player.css
151.101.86.109200 OK 20 kB URL HTTP/2 f.vimeocdn.com/p/4.11.10/css/player.css
IP 151.101.86.109:0
File type ASCII text, with very long lines (65494)
Hash b76b9a2ff5d0cde98f2ca699a4c4e6c3
16006fcce15228b1f6cdf0ff7bdc30266ac9fcb0
2b4c27bfc8129bf467fc2cb1c4139f156aa45317e3ff04d79538578bbc5149e1
GET /p/4.11.10/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 21 Oct 2022 15:13:15 GMT
age: 84500
x-served-by: cache-iad-kjyo7100166-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 19, 21901
x-timer: S1666365196.610519,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20368
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 761564903be0fda2efc6d9b2114d562f
9cfb8dfbf513e19bc464f70f80b832e6dab802ae
578e6436b74cb59fa175d364c435f3c9fbe16dda05c21b47c7bd1fcf6cf6e0aa
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5157
Cache-Control: max-age=106645
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:15 GMT
Etag: "6351a07b-117"
Expires: Sat, 22 Oct 2022 20:50:40 GMT
Last-Modified: Thu, 20 Oct 2022 19:24:43 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
services.msgsndr.com/funnels/stats/event
34.98.115.9201 Created 56 B URL HTTP/2 services.msgsndr.com/funnels/stats/event
IP 34.98.115.9:0
File type JSON data\012- , ASCII text, with no line terminators
Hash c297659a38cbcab553e09537d46dd4c6
4b2545ca0a0457591fced586850304ca0760ad30
2d394e71e48bc06c93fadcaecda37970e7a0d2195e616a566858a8ed0fb9ccd8
POST /funnels/stats/event HTTP/1.1
Host: services.msgsndr.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://go.1kday.com/
channel: APP
content-type: application/json
source: WEB_USER
version: 2021-04-15
Origin: https://go.1kday.com
Content-Length: 253
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 201 Created
x-powered-by: Express
access-control-allow-origin: *
content-type: application/json; charset=utf-8
content-length: 56
etag: W/"38-SyVFygoEV1kfztWGhQMEygdgrTA"
vary: Accept-Encoding
date: Fri, 21 Oct 2022 15:13:15 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
i.vimeocdn.com/video/1444650656-bf8eddbf8b175e8ce0466c213d6e942602e055bb3412d38bd5708fd974e00d4f-d.jpg?mw=80&q=85
151.101.86.109200 OK 1.6 kB URL HTTP/2 i.vimeocdn.com/video/1444650656-bf8eddbf8b175e8ce0466c213d6e942602e055bb3412d38bd5708fd974e00d4f-d.jpg?mw=80&q=85
IP 151.101.86.109:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Hash 17e78a89f69315b46c447e2cdee208dc
d1308bfcae849e299fb3fd6f723ba374d1016b77
57d80a0ad32374a20210f9ae9eb3f8ebac7a7c736165f6812082236f8bb9863c
GET /video/1444650656-bf8eddbf8b175e8ce0466c213d6e942602e055bb3412d38bd5708fd974e00d4f-d.jpg?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: 17e78a89f69315b46c447e2cdee208dc
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-9sh5
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Fri, 21 Oct 2022 15:13:15 GMT
age: 1193856
x-served-by: cache-dfw-kdfw8210071-DFW, cache-bma1674-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 22, 1
x-timer: S1666365196.635883,VS0,VE1
content-length: 1551
X-Firefox-Spdy: h2
f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
151.101.86.109200 OK 997 B URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (1839)
Hash 3d2ec727486c897591d751098283c68f
7b2b2e59063caf74de6bf2c96bffb68b748f257d
10c72391adec6fe62bb10a273adff205864ceafcc63c664bcc4eb7902481ba8b
GET /js_opt/modules/utils/vuid.min.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 21 Oct 2022 15:13:15 GMT
age: 165357
x-served-by: cache-iad-kiad7000106-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 139, 34464
x-timer: S1666365196.634839,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.11.10/js/player.js
151.101.86.109200 OK 213 kB URL HTTP/2 f.vimeocdn.com/p/4.11.10/js/player.js
IP 151.101.86.109:0
File type ASCII text, with very long lines (64648)
Size 213 kB (212556 bytes)
Hash bd4a16cf2f8fe72a29898b548287788e
6126dc2bd20e1f6fb585c4b2564409e59ef0a338
f9fb6fbeaffa330116cbd366ef732e3419f5f19b8b02c7c67e935d61c5ec0bf6
GET /p/4.11.10/js/player.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 21 Oct 2022 15:13:15 GMT
age: 84500
x-served-by: cache-iad-kcgs7200164-IAD, cache-bma1674-BMA
x-cache: HIT, HIT
x-cache-hits: 13, 16706
x-timer: S1666365196.631119,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
content-length: 212556
X-Firefox-Spdy: h2
renderer-assets.typeform.com/modern-renderer.608dafa8da908c76d47f.js
143.204.55.33200 OK 228 kB URL HTTP/2 renderer-assets.typeform.com/modern-renderer.608dafa8da908c76d47f.js
IP 143.204.55.33:0
Size 228 kB (228105 bytes)
Hash 58e4eb609091aca4429aace0bed81c81
00f924131da2b399b2d7d49d19194571b2e99a06
0e1306692453d001d69d2f5b65553690bdc0590a7bdb97a09cc1fef3a6f2c7ed
GET /modern-renderer.608dafa8da908c76d47f.js HTTP/1.1
Host: renderer-assets.typeform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/AnlcVL58?typeform-embed-id=9681695683553011&typeform-embed=embed-widget&typeform-source=go.1kday.com&typeform-medium=snippet&typeform-medium-version=next
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
content-type: application/x-javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 20 Oct 2022 09:36:15 GMT
x-amz-version-id: 96mdTYDbNwNa7abcmbsMymrhxdqrQbGl
server: AmazonS3
content-encoding: gzip
date: Fri, 21 Oct 2022 10:04:47 GMT
etag: W/"ec645eccb50a1100585697be4248c147"
vary: Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: FK4u4slla41GKTDVmH_QB6ruL9LAWiHD6gOArnXnb0NIKbDiwUIIYw==
age: 18512
cache-control: max-age=2419200
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
IP 142.250.74.3:0
Hash 1eef0508477cfe92fd8600d23c5df50c
2e50a8454371fec6be90be704e86c49f9bddf4a3
d333257cb1bf1577843127a921b292a0ff33545872610dbcf2e61f3813238081
POST /s/gts1d4/QNGijQL5IyE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:16 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.fontawesome.com/releases/v5.15.4/css/solid.css
172.64.133.15200 OK 773 B URL HTTP/2 use.fontawesome.com/releases/v5.15.4/css/solid.css
IP 172.64.133.15:0
File type ASCII text, with very long lines (483)
Hash 79b8cd5484af6a21ffb1fee7332f4d46
86d6f03118e7673663551f082451031c8e5ece7c
64af432107e39571af7fea612998c7c6802ce1ffd2b9b78789bf459b04c544ef
GET /releases/v5.15.4/css/solid.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 15:13:14 GMT
content-type: text/css
x-amz-id-2: OWUlT/Y+IQL8pry1R9rNZGDnxItZA2W6uHxZJEgnJ3QYwHLD48p+El5+rcShyLm2ctNPX3i/J9Y=
x-amz-request-id: HHYNTFW76ARG88ET
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:22 GMT
etag: W/"685a6b10be9f3db25acf78c5e7ba7379"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1395663
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=42AryNKBMtzKPeptY%2FvAp%2B73QK9nYxeDEwpdBfeG7R6hkDeeDrPb5QaHfI1QXwcn0TC43uNcewmmeeqr0Iqe55S2PZG93jn0lMQExCDFYWHUKWZjCBWMxsaI6oQketSiYBYQrIsE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75daefa2eba57300-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-test-impression?beacon=1
34.120.202.204200 OK 4.5 kB URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1
IP 34.120.202.204:0
File type gzip compressed data, from Unix\012- data
Hash cb6284c6a078fc7fb7e64badb03aef89
6829708f9fd0993220a1f24b853a353af1e266b5
e44c6b6e9f136755a1f9912ed14907dc51b10ff12eaa858974c526d54e92da76
POST /add/player-test-impression?beacon=1 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Fri, 21 Oct 2022 15:13:16 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.4/css/regular.css
172.64.133.15200 OK 300 B URL HTTP/2 use.fontawesome.com/releases/v5.15.4/css/regular.css
IP 172.64.133.15:0
File type ASCII text, with very long lines (491)
Hash 7b5c25301d7a9ff7f3a31a8f45767db9
6b49c452e4b69d089fc88a7f41ee3d701cbd2403
831eec3d61336439caff8b04a3a2dd608c901870cfa28cb73d92f9d3d280432b
GET /releases/v5.15.4/css/regular.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 15:13:14 GMT
content-type: text/css
x-amz-id-2: 7QHwgDPdawJJ6qkB0unQ/zQe+xJspgRcYT+DXAOd3UAnLk7ITBI5cdoPIxTBJX4dc2biwUeSrjc=
x-amz-request-id: HHYXGHX4M304WSGJ
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:22 GMT
etag: W/"49c10bd7921f287bbd5b1180cb008e10"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1395663
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xtZXcAWxHAUoytpm6fR%2BtkyaOn4NhOvEmQ1%2B3eUGJAMZEwDuwQAvDVuDnq7tW1VQZYyRJt9%2BOuv3Ziga084aHMvEBKBd1ZBN9TtD252psa5pp1F2iONDJrwgL4d%2BrW2RPK9wKtl5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75daefa2ab4a7300-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
IP 142.250.74.3:0
Hash 1eef0508477cfe92fd8600d23c5df50c
2e50a8454371fec6be90be704e86c49f9bddf4a3
d333257cb1bf1577843127a921b292a0ff33545872610dbcf2e61f3813238081
POST /s/gts1d4/QNGijQL5IyE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 21 Oct 2022 15:13:16 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 1e773a5c8d6048dec598ecb12aad9fef
c36776041b8ff1f5948d320e6b81435454b89bcd
5bfd0e69336fe9f3c254ac1c47de9985977cc3bc79fb05269f3c7cb692d62eef
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=123191
Date: Fri, 21 Oct 2022 15:13:17 GMT
Etag: "6351de7d-1d7"
Expires: Sun, 23 Oct 2022 01:26:28 GMT
Last-Modified: Thu, 20 Oct 2022 23:49:17 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 f46f7100ad6fc83a021f62212f945830.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0hfWh0pwFd_HM3B9xcij1loOevokzLIZpDRZ251G7kfnhDIQ5UeFUA==
Age: 5831
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 1e773a5c8d6048dec598ecb12aad9fef
c36776041b8ff1f5948d320e6b81435454b89bcd
5bfd0e69336fe9f3c254ac1c47de9985977cc3bc79fb05269f3c7cb692d62eef
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=118758
Date: Fri, 21 Oct 2022 15:13:17 GMT
Etag: "6351de7d-1d7"
Expires: Sun, 23 Oct 2022 00:12:35 GMT
Last-Modified: Thu, 20 Oct 2022 23:49:17 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: I2IOH3q69ATkf3GqpBO1_BFfCc2YBTY5sYOxYNcPtAmZTQBu_dNFsA==
Age: 1398
rudderstack-control-plane.cdp.prod.data.typeform.com/sourceConfig/?p=cdn&v=1.18.0
54.224.83.150200 OK 2 B URL HTTP/2 rudderstack-control-plane.cdp.prod.data.typeform.com/sourceConfig/?p=cdn&v=1.18.0
IP 54.224.83.150:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
OPTIONS /sourceConfig/?p=cdn&v=1.18.0 HTTP/1.1
Host: rudderstack-control-plane.cdp.prod.data.typeform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://form.typeform.com/to/AnlcVL58?typeform-embed-id=9681695683553011&typeform-embed=embed-widget&typeform-source=go.1kday.com&typeform-medium=snippet&typeform-medium-version=next
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 15:13:17 GMT
content-type: text/plain; charset=utf-8
content-length: 2
server: uvicorn
vary: Origin
access-control-allow-methods: DELETE, GET, HEAD, OPTIONS, PATCH, POST, PUT
access-control-max-age: 600
access-control-allow-credentials: true
access-control-allow-origin: https://form.typeform.com
access-control-allow-headers: authorization
X-Firefox-Spdy: h2
rudderstack-control-plane.cdp.prod.data.typeform.com/sourceConfig/?p=cdn&v=1.18.0
54.224.83.150200 OK 610 B URL HTTP/2 rudderstack-control-plane.cdp.prod.data.typeform.com/sourceConfig/?p=cdn&v=1.18.0
IP 54.224.83.150:0
File type JSON data\012- , ASCII text, with very long lines (610), with no line terminators
Hash b472ddb84e71008d7e128aa58199352f
bb19a929d005eb384268d4e73cd994324ffc5db4
1e1bfbb50209ae8693353623fab7eeeef5ae1c0ca5d128a40c3be54099e59028
GET /sourceConfig/?p=cdn&v=1.18.0 HTTP/1.1
Host: rudderstack-control-plane.cdp.prod.data.typeform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/AnlcVL58?typeform-embed-id=9681695683553011&typeform-embed=embed-widget&typeform-source=go.1kday.com&typeform-medium=snippet&typeform-medium-version=next
Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg==
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 21 Oct 2022 15:13:17 GMT
content-type: application/json
content-length: 610
server: uvicorn
access-control-allow-origin: *
access-control-allow-credentials: true
X-Firefox-Spdy: h2
rudderstack.cdp.prod.data.typeform.com/v1/track
3.215.109.233200 OK 0 B URL HTTP/2 rudderstack.cdp.prod.data.typeform.com/v1/track
IP 3.215.109.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1/track HTTP/1.1
Host: rudderstack.cdp.prod.data.typeform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: anonymousid,authorization,content-type
Referer: https://form.typeform.com/to/AnlcVL58?typeform-embed-id=9681695683553011&typeform-embed=embed-widget&typeform-source=go.1kday.com&typeform-medium=snippet&typeform-medium-version=next
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 15:13:17 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Anonymousid, Authorization, Content-Type
access-control-allow-methods: POST
access-control-allow-origin: https://form.typeform.com
access-control-max-age: 900
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Firefox-Spdy: h2
rudderstack.cdp.prod.data.typeform.com/v1/track
3.215.109.233200 OK 2 B URL HTTP/2 rudderstack.cdp.prod.data.typeform.com/v1/track
IP 3.215.109.233:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /v1/track HTTP/1.1
Host: rudderstack.cdp.prod.data.typeform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/AnlcVL58?typeform-embed-id=9681695683553011&typeform-embed=embed-widget&typeform-source=go.1kday.com&typeform-medium=snippet&typeform-medium-version=next
Content-Type: application/json
Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg==
AnonymousId: YTljNzkzNjYtOWIxYy00ZTM0LThjMjctNTcxOGVhMmVlNDJm
Content-Length: 1967
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 21 Oct 2022 15:13:17 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://form.typeform.com
vary: Origin
X-Firefox-Spdy: h2
rudderstack.cdp.prod.data.typeform.com/v1/track
3.215.109.233200 OK 2 B URL HTTP/2 rudderstack.cdp.prod.data.typeform.com/v1/track
IP 3.215.109.233:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /v1/track HTTP/1.1
Host: rudderstack.cdp.prod.data.typeform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/AnlcVL58?typeform-embed-id=9681695683553011&typeform-embed=embed-widget&typeform-source=go.1kday.com&typeform-medium=snippet&typeform-medium-version=next
Content-Type: application/json
Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg==
AnonymousId: YTljNzkzNjYtOWIxYy00ZTM0LThjMjctNTcxOGVhMmVlNDJm
Content-Length: 2469
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 21 Oct 2022 15:13:18 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://form.typeform.com
vary: Origin
X-Firefox-Spdy: h2
rudderstack.cdp.prod.data.typeform.com/v1/track
3.215.109.233200 OK 2 B URL HTTP/2 rudderstack.cdp.prod.data.typeform.com/v1/track
IP 3.215.109.233:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /v1/track HTTP/1.1
Host: rudderstack.cdp.prod.data.typeform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://form.typeform.com/to/AnlcVL58?typeform-embed-id=9681695683553011&typeform-embed=embed-widget&typeform-source=go.1kday.com&typeform-medium=snippet&typeform-medium-version=next
Content-Type: application/json
Authorization: Basic MjJLTUZoSEpiY3pnR1cwZ0pWM1NCcnpCbE5lOg==
AnonymousId: YTljNzkzNjYtOWIxYy00ZTM0LThjMjctNTcxOGVhMmVlNDJm
Content-Length: 2140
Origin: https://form.typeform.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 21 Oct 2022 15:13:18 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://form.typeform.com
vary: Origin
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.15.4/css/brands.css
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.15.4/css/brands.css
IP 172.64.133.15:0
GET /releases/v5.15.4/css/brands.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://go.1kday.com
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 15:13:14 GMT
content-type: text/css
x-amz-id-2: WkA/DCNBYiAe3khYp+81kFLn0QrEoLpTeI+APpKMXsintDvd0oS7JnkGhWPqFQigffcVFC8BQiI=
x-amz-request-id: HX8CKGFYK5YTP5VV
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 04 Aug 2021 20:43:22 GMT
etag: W/"2c213c9e855a714f04273ad8ddfec94a"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 164934
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CGFsoy8zYz4fcM9nARonZevNP8TwQv9GFXB3mZbjhy5k5bsE3mC5f6vz8%2BYoVvMT3CulyvaaSnIVfU10g4sAbf%2FmeVDRSUgBLpslaPu6Lf4Izsk8AWM8CrySYNiauScK%2B0wFQatW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75daefa2bb667300-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.rudderlabs.com/v1/rudder-analytics.min.js
54.230.111.49200 OK 0 B URL HTTP/2 cdn.rudderlabs.com/v1/rudder-analytics.min.js
IP 54.230.111.49:0
GET /v1/rudder-analytics.min.js HTTP/1.1
Host: cdn.rudderlabs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://form.typeform.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 10:58:33 GMT
server: AmazonS3
content-encoding: gzip
date: Fri, 21 Oct 2022 14:59:17 GMT
cache-control: max-age=3600
etag: W/"2b40d01bac611df3381e084ba926b70d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tYv2zPTc_J0LtBhRtIR32fqQam_9hjegcV6b_7oQ0s0jUDv_ljceJg==
age: 848
X-Firefox-Spdy: h2
form.typeform.com/to/AnlcVL58?typeform-embed-id=9681695683553011&typeform-embed=embed-widget&typeform-source=go.1kday.com&typeform-medium=snippet&typeform-medium-version=next
104.18.41.163200 OK 0 B URL HTTP/2 form.typeform.com/to/AnlcVL58?typeform-embed-id=9681695683553011&typeform-embed=embed-widget&typeform-source=go.1kday.com&typeform-medium=snippet&typeform-medium-version=next
IP 104.18.41.163:0
GET /to/AnlcVL58?typeform-embed-id=9681695683553011&typeform-embed=embed-widget&typeform-source=go.1kday.com&typeform-medium=snippet&typeform-medium-version=next HTTP/1.1
Host: form.typeform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.1kday.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 21 Oct 2022 15:13:15 GMT
content-type: text/html; charset=utf-8
x-powered-by: 7312-6.20.0
content-security-policy-report-only: report-uri https://typeformforms.report-uri.com/r/t/csp/reportOnly; default-src 'self' https: data: blob: chrome-extension: moz-extension: safari-extension:; script-src 'self' 'unsafe-inline' 'unsafe-eval' https: data: blob:; script-src-attr 'unsafe-inline'; script-src-elem 'self' 'unsafe-inline' https:; worker-src 'self' blob:; manifest-src public-assets.typeform.com; form-action 'none'; frame-ancestors 'self' http://localhost:* capacitor: iconic: https:; base-uri 'self'; child-src wvjbscheme: https:; connect-src 'self' wss: https: chrome-extension: moz-extension: safari-extension:; style-src 'self' 'unsafe-inline' https:
vary: Accept-Encoding
x-envoy-upstream-service-time: 154
x-varnish: 5438413
age: 0
x-cache: MISS
x-cache-lookup: HIT
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
access-control-allow-methods: GET, OPTIONS, POST, PUT, PATCH, DELETE
access-control-allow-headers: X-Typeform-Key, Content-Type, Authorization, Typeform-Version
access-control-expose-headers: Location, X-Request-Id
strict-transport-security: max-age=31536000; includeSubDomains
cf-cache-status: DYNAMIC
set-cookie: AWSALBTG=IUPCpJPbdTY5xJwE5pW7t6naZ9XHidKFA+jODz4lbEnNX+K7HQUUhafbt8tR/W7zCtyJncKNMrVu9OP2Qwiof17lTha0jQ+LzPJ/JqSUOqrVXtvD0rU7qv3bS2Ym8hNNk49oCWUDcVYZZviAXEo8TeUQvHOUg0+nqsX5TysCQkGZ; Expires=Fri, 28 Oct 2022 15:13:15 GMT; Path=/
AWSALBTGCORS=IUPCpJPbdTY5xJwE5pW7t6naZ9XHidKFA+jODz4lbEnNX+K7HQUUhafbt8tR/W7zCtyJncKNMrVu9OP2Qwiof17lTha0jQ+LzPJ/JqSUOqrVXtvD0rU7qv3bS2Ym8hNNk49oCWUDcVYZZviAXEo8TeUQvHOUg0+nqsX5TysCQkGZ; Expires=Fri, 28 Oct 2022 15:13:15 GMT; Path=/; SameSite=None; Secure
__cf_bm=849DJYfnCWN22HzzdEsVREd1RJjBKDw5su8DkmK8aEI-1666365195-0-ASI7lsiLjVzAL4SjIB4/rT0r+4qR6XDlzTtWXIFdvP6tE1hspGbKL6jjhulcEnIT18q4M3FjpjyIqN4xUtklkbE=; path=/; expires=Fri, 21-Oct-22 15:43:15 GMT; domain=.typeform.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 75daefa6acda0b49-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:400,700%7CRoboto:400,700%7COpen%20Sans:400,700%7CRaleway:400,700%7CMontserrat:400,700&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:400,700%7CRoboto:400,700%7COpen%20Sans:400,700%7CRaleway:400,700%7CMontserrat:400,700&display=swap
IP 142.250.74.10:0
GET /css?family=Lato:400,700%7CRoboto:400,700%7COpen%20Sans:400,700%7CRaleway:400,700%7CMontserrat:400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 21 Oct 2022 15:13:14 GMT
date: Fri, 21 Oct 2022 15:13:14 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
embed.typeform.com/next/embed.js
54.230.111.5200 OK 0 B URL HTTP/2 embed.typeform.com/next/embed.js
IP 54.230.111.5:0
GET /next/embed.js HTTP/1.1
Host: embed.typeform.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://go.1kday.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Mon, 10 Oct 2022 14:45:39 GMT
x-amz-version-id: gwVFRXGRj.gzC.u.8Z1ubzCobIxG1J5d
server: AmazonS3
content-encoding: gzip
date: Fri, 21 Oct 2022 15:10:28 GMT
etag: W/"3814032b052d02cb65fef574806bfb01"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: BzNHWP3jFYsEhVkogSmpRmJ8VusDn_O3SdasUEj0_Af-tcAHMHnozA==
age: 172
X-Firefox-Spdy: h2