www.konnexion.io/home/usps/verification
301 Moved Permanently 338 B URL HTTP/1.1 www.konnexion.io/home/usps/verification
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4426866727d3d20ac36f4732e9d1c2f9
6cb9b16b3490eb92a17936dbef5644c224b44455
856767fcdef9b2fdfd11d58a1391324f6e2b858973f4e6508f8e9712e88b6680
Analyzer Verdict Alert fortinet Phishing
GET /home/usps/verification HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Oct 2022 15:40:32 GMT
Server: Apache/2.4.25 (Debian)
Location: https://www.konnexion.io//home/usps/verification
Content-Length: 338
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5109
Expires: Tue, 04 Oct 2022 17:05:41 GMT
Date: Tue, 04 Oct 2022 15:40:32 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 14:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: npZ5CvwirOhZF87uzEb064TgC9cNy6qZFEsqWuTUDm7fSvm8z92mxQ==
Age: 3208
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hfyJhwRVZT16BpTNxUJi0dZ-2qMVLEOKC40RJWQuhMhVGpZdsBP3Og==
age: 36725
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 15:40:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 471 B IP
Hash b872f0d9ccc3ebc925a78fa8dd76deae
a991272f8490cb9500aac2c917a8fe2435190793
615fae48fca4c738c50178d82aeee5d6b2d0eb9b89fd6cb0b905ce23fb63d522
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:32 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 04 Oct 2022 07:11:57 GMT
Expires: Tue, 11 Oct 2022 07:11:56 GMT
Etag: "a991272f8490cb9500aac2c917a8fe2435190793"
Cache-Control: max-age=573683,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 754f043e98990b3d-OSL
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 04 Oct 2022 15:29:33 GMT
Expires: Tue, 04 Oct 2022 16:18:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3TSGo2IZacMl1G9otCqKTE3dsIkrJEepeg-crqJel6Q9qLfEmCS_yg==
Age: 659
www.konnexion.io//home/usps/verification
301 Moved Permanently 0 B URL HTTP/1.1 www.konnexion.io//home/usps/verification
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET //home/usps/verification HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Oct 2022 15:40:32 GMT
Server: Apache/2.4.25 (Debian)
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://www.konnexion.io/home/usps/verification
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
200 OK 471 B IP
Hash 16ebfb2aa621547ecf581e26fc828a7d
f78993331f6f5b8af6409a9ad2fc50b77070f68a
0f81fd1d6be9ccc04b74f0348aafe642c7b9ab7dffb7e8a679b5d67cc2e5fac3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4852
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:32 GMT
Last-Modified: Tue, 04 Oct 2022 14:19:40 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.konnexion.io/home/usps/verification
404 Not Found 42 kB URL HTTP/1.1 www.konnexion.io/home/usps/verification
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 0723bdc8c6d7a41e3593d5fa4cd97cc4
541c897e3567c4614e423a285cb94afb74875cf7
68d9d95fbfb311f12c80d2bed48df314fc118a19fdf75cfef5369c9e5394dea7
Analyzer Verdict Alert fortinet Phishing
GET /home/usps/verification HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Tue, 04 Oct 2022 15:40:32 GMT
Server: Apache/2.4.25 (Debian)
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://www.konnexion.io/wp-json/>; rel="https://api.w.org/"
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
www.konnexion.io/wp-content/uploads/2022/06/Logo-texte@3x.png
200 OK 11 kB URL HTTP/1.1 www.konnexion.io/wp-content/uploads/2022/06/Logo-texte@3x.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0680e709f05b64f0b6bd5944694f967f
ae3aa129d3cc66c43b7e08c6d47d12bc3d564eb6
a9ec3bade2462b376adc6bc7df37e24d61957594e5be2b0c59696f286e6f6056
GET /wp-content/uploads/2022/06/Logo-texte@3x.png HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Wed, 08 Jun 2022 17:38:20 GMT
ETag: "2be6-5e0f32bceeaf3"
Accept-Ranges: bytes
Content-Length: 11238
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/webp
www.konnexion.io/wp-content/uploads/themify-concate/2164317601/themify-3702182379.css
200 OK 13 kB URL HTTP/1.1 www.konnexion.io/wp-content/uploads/themify-concate/2164317601/themify-3702182379.css
IP
File type Unicode text, UTF-8 text, with very long lines (12215)
Hash c8b274c66c2577e42f3ead76b5b16202
0104a04525fd6f0e0271d537ad144c930dd4f7dd
2f27743657c21eed2db95d68e031c9ef8092a1fb2c7247e513dd963278de63ba
GET /wp-content/uploads/themify-concate/2164317601/themify-3702182379.css HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Tue, 21 Jun 2022 14:27:23 GMT
ETag: "fad3-5e1f604da2a32-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13324
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 195d162678034c3ab84daffa4c4a5723
85fab036e8ab318c51b5c05ff33f2388e5716acd
03e8ce6aa80a44c5f2abf860c3bbf25d8e56fc49458a3f8c11fbe2130b71bb6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/publicsans/v14/ijwRs572Xtc6ZYQws9YVwnNGfJ4.woff2
200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/publicsans/v14/ijwRs572Xtc6ZYQws9YVwnNGfJ4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 25320, version 1.0\012- data
Hash 098efcdd0d179610154999da1cefedb4
8c61253b07f5833a6c8b0d30c654113f02660774
ecd01d6ed5d492148e9ba9ead2db0ee09b8664e9e6cda3150ad7d31977c2e702
GET /s/publicsans/v14/ijwRs572Xtc6ZYQws9YVwnNGfJ4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25320
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 03 Oct 2022 22:06:30 GMT
expires: Tue, 03 Oct 2023 22:06:30 GMT
cache-control: public, max-age=31536000
age: 63243
last-modified: Mon, 18 Jul 2022 19:46:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 504385
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.konnexion.io/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6-b-modified-1655884972
200 OK 972 B URL HTTP/1.1 www.konnexion.io/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6-b-modified-1655884972
IP
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6-b-modified-1655884972 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Wed, 22 Jun 2022 08:02:52 GMT
ETag: "aab-5e204c398dffe-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 972
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.konnexion.io/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.3.0-b-modified-1655298234
200 OK 1.9 kB URL HTTP/1.1 www.konnexion.io/wp-content/plugins/cookie-notice/js/front.min.js?ver=2.3.0-b-modified-1655298234
IP
File type ASCII text, with very long lines (8428), with no line terminators
Hash e8806d395b05deb31eab5523e7b92875
2a876249c7b2db5e55140b5875769be9dc44df4b
3e322e8c743b02323313cbda6dc54ad261013a4ed6c2aac2a172af40486b5a76
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=2.3.0-b-modified-1655298234 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Wed, 15 Jun 2022 13:03:54 GMT
ETag: "20ec-5e17c2748722b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1933
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
www.konnexion.io/wp-content/plugins/convertkit/resources/frontend/css/broadcasts.css?ver=1.9.7.9-b-modified-1656427655
200 OK 404 B URL HTTP/1.1 www.konnexion.io/wp-content/plugins/convertkit/resources/frontend/css/broadcasts.css?ver=1.9.7.9-b-modified-1656427655
IP
Hash e7b83c2752477bd8d5964274ec7134d9
3d565a0fba452dd0101cfe9c30753dc3225a2610
2a1465167757a9c4bedb8446f9a624723bf014c7601b4e691aede89d7f30cdfe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/convertkit/resources/frontend/css/broadcasts.css?ver=1.9.7.9-b-modified-1656427655 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Tue, 28 Jun 2022 14:47:35 GMT
ETag: "587-5e2831e02358a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 404
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.konnexion.io/wp-content/plugins/cookie-notice/css/front.min.css?ver=-b-modified-1655298234
200 OK 1.1 kB URL HTTP/1.1 www.konnexion.io/wp-content/plugins/cookie-notice/css/front.min.css?ver=-b-modified-1655298234
IP
File type ASCII text, with very long lines (5326), with no line terminators
Hash 4765930cff445835166053fb1163ba5e
412d4bd3997de7b1a501ce3c7a39633d5c8ac0bf
40ca85a39a9fbf5f22b8b5f59acff8f62cc80d9e0eea370d4a96e53401a07530
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=-b-modified-1655298234 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Wed, 15 Jun 2022 13:03:54 GMT
ETag: "14ce-5e17c274881cb-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1106
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.konnexion.io/wp-content/uploads/js_composer/custom.css?ver=6.8.0
200 OK 491 B URL HTTP/1.1 www.konnexion.io/wp-content/uploads/js_composer/custom.css?ver=6.8.0
IP
File type ASCII text, with CRLF line terminators
Hash bca2dbc544820d424d41b5d48635350c
9588f2a3d046290e37fdf67f53fda5322fac8e42
4b2397376a4ea84faee9d3d9d959bac94dea33278425d88d62c6b6f46476ec21
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/js_composer/custom.css?ver=6.8.0 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Fri, 17 Jun 2022 09:19:10 GMT
ETag: "58d-5e1a13f3e12a6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 491
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.konnexion.io/wp-content/plugins/convertkit/resources/frontend/js/broadcasts.js?ver=1.9.7.9-b-modified-1656427655
200 OK 884 B URL HTTP/1.1 www.konnexion.io/wp-content/plugins/convertkit/resources/frontend/js/broadcasts.js?ver=1.9.7.9-b-modified-1656427655
IP
Hash fdce07f5c893a9a935d58996227a49d6
54307d38f5604e8ab7399599ce9ce1c28a03247d
5931c21e3194cf44fe48efb6abb328b1a45d181f3028a88c6148c64272f15844
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/convertkit/resources/frontend/js/broadcasts.js?ver=1.9.7.9-b-modified-1656427655 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Tue, 28 Jun 2022 14:47:35 GMT
ETag: "9bf-5e2831e02358a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 884
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
www.konnexion.io/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
200 OK 2.5 kB URL HTTP/1.1 www.konnexion.io/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Tue, 21 Jun 2022 14:22:09 GMT
ETag: "194b-5e1f5f229d7d6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2457
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.konnexion.io/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
200 OK 31 kB URL HTTP/1.1 www.konnexion.io/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Tue, 21 Jun 2022 14:22:09 GMT
ETag: "15db1-5e1f5f227d436-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30908
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
www.konnexion.io/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
200 OK 7.1 kB URL HTTP/1.1 www.konnexion.io/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 2f4fcc5a628b379672d76b7e91cbdf07
9d72f2c9cbc1e9b036360acfce8c8ccc8b832b8c
a360f715a418026d2e1acd81c02c83233d0c0b60fdf4ce0b4d33562925d6a0b5
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Tue, 21 Jun 2022 14:22:09 GMT
ETag: "4ac6-5e1f5f229d7d6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7095
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/publicsans/v14/ijwTs572Xtc6ZYQws9YVwnNDTJzaxw.woff2
200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/publicsans/v14/ijwTs572Xtc6ZYQws9YVwnNDTJzaxw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 26988, version 1.0\012- data
Hash f9c92892c1464c03fb5f2f1c9f4cdb0f
99c19bccb8b00acb0be046d90a24e38ae29ff39a
ebca5d315224a0c777691e529227971de2175a03a5183ec4ff705124f2cdf1b6
GET /s/publicsans/v14/ijwTs572Xtc6ZYQws9YVwnNDTJzaxw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26988
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 04 Oct 2022 07:22:25 GMT
expires: Wed, 04 Oct 2023 07:22:25 GMT
cache-control: public, max-age=31536000
age: 29888
last-modified: Mon, 18 Jul 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.konnexion.io/wp-content/themes/themify-ultra/themify/js/main.js?ver=1662624588
200 OK 14 kB URL HTTP/1.1 www.konnexion.io/wp-content/themes/themify-ultra/themify/js/main.js?ver=1662624588
IP
Hash 77da39e51d75896a8059bf1802ffa7cf
b47f983cfd91939c80d9b368eaf3c99e68cca074
aa7e3eb02aa20ef938de302ab3c5b23029128dad859ce98a048bfbe6d57a2207
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-ultra/themify/js/main.js?ver=1662624588 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Thu, 16 Jun 2022 10:14:38 GMT
ETag: "12e6d-5e18de7c84b0f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14346
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.konnexion.io/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6-b-modified-1655884972
200 OK 6.5 kB URL HTTP/1.1 www.konnexion.io/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6-b-modified-1655884972
IP
File type ASCII text, with very long lines (21821), with no line terminators
Hash 935b2704ae65c0ae9e160f6801c1a586
b044bbd09f47ac4f5defafb667a6a283116275b5
3d5ef8e4d2685ea539cdd441135f714411d666010e88de82228dee8b8a578346
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6-b-modified-1655884972 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Wed, 22 Jun 2022 08:02:52 GMT
ETag: "553d-5e204c398c0be-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6538
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 195d162678034c3ab84daffa4c4a5723
85fab036e8ab318c51b5c05ff33f2388e5716acd
03e8ce6aa80a44c5f2abf860c3bbf25d8e56fc49458a3f8c11fbe2130b71bb6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.konnexion.io/wp-content/uploads/2021/02/logo-konnexion.png
200 OK 40 kB URL HTTP/1.1 www.konnexion.io/wp-content/uploads/2021/02/logo-konnexion.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5349f7e490d38f36468eb54873c86b38
4cc85c64898de049babd334ef29f25077c294e6e
7d45428ca0d706e5bd0dd21148d85791db38b7e3496f8a20a0ba59bed0b1d873
GET /wp-content/uploads/2021/02/logo-konnexion.png HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Thu, 01 Apr 2021 07:14:18 GMT
ETag: "9acc-5bee3facac680"
Accept-Ranges: bytes
Content-Length: 39628
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/webp
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: McO4ZOT7Bj4phzfXYwquSg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CGeOQRzOyRPlAn0l07rP2d4arR0=
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 02 Oct 2022 01:31:40 GMT
expires: Mon, 02 Oct 2023 01:31:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 223733
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 504385
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/publicsans/v13/ijwRs572Xtc6ZYQws9YVwnNGfJ4.woff2
200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/publicsans/v13/ijwRs572Xtc6ZYQws9YVwnNGfJ4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 25300, version 1.0\012- data
Hash 49fa93b58a51993333b8a10308b207ef
b617548f28f0fa3295e273df5581788369d96989
a6848cc32e00efb8879283cac5cc7e3d4b6bc1fd69d1612b4e8e2a42e40bd4c8
GET /s/publicsans/v13/ijwRs572Xtc6ZYQws9YVwnNGfJ4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25300
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 07:14:48 GMT
expires: Sat, 30 Sep 2023 07:14:48 GMT
cache-control: public, max-age=31536000
age: 375945
last-modified: Thu, 26 May 2022 21:09:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/publicsans/v13/ijwTs572Xtc6ZYQws9YVwnNDTJzaxw.woff2
200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/publicsans/v13/ijwTs572Xtc6ZYQws9YVwnNDTJzaxw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 26860, version 1.0\012- data
Hash 79c72024225bc4b6bc8943b9d63a75db
ba66a8662a6029a35f4086f3b6c90ac18d39e29a
8bc820632d8e0f986a20b529d276a9b411311c0ea091fa39f362844760f011d8
GET /s/publicsans/v13/ijwTs572Xtc6ZYQws9YVwnNDTJzaxw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 30 Sep 2022 21:11:27 GMT
expires: Sat, 30 Sep 2023 21:11:27 GMT
cache-control: public, max-age=31536000
age: 325746
last-modified: Thu, 26 May 2022 21:09:06 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-KGLDXFQ
200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KGLDXFQ
IP
File type ASCII text, with very long lines (2039)
Hash 7cd41fed8ff4c7ccb59bbdafdc6f367a
4bede0d201897302143eb194b08b7b71ca26db7c
0cf0ffdc404add21214fe7a0d9ffedd1627593771e0d3daf8166830a05475528
GET /gtm.js?id=GTM-KGLDXFQ HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 15:40:33 GMT
expires: Tue, 04 Oct 2022 15:40:33 GMT
cache-control: private, max-age=900
last-modified: Tue, 04 Oct 2022 15:08:24 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44712
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.konnexion.io/wp-content/uploads/2021/03/favicon_SiteWeb-1.png
200 OK 1.8 kB URL HTTP/1.1 www.konnexion.io/wp-content/uploads/2021/03/favicon_SiteWeb-1.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 366aa8efa17ac8efc62d02d449ad38d5
e05dbf3fe16d50baade7ebde4fb54d52ea261a69
28f91e0aec78de10aa0f76a9cf5aa1e0142c9317e553b4348384ea8e02aaa266
GET /wp-content/uploads/2021/03/favicon_SiteWeb-1.png HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Cookie: _ga_57RFCLXX7H=GS1.1.1664898033.1.0.1664898033.0.0.0; _ga=GA1.1.292482358.1664898033
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:33 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Thu, 01 Apr 2021 09:46:09 GMT
ETag: "6d6-5bee619d99a40"
Accept-Ranges: bytes
Content-Length: 1750
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/webp
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 04 Oct 2022 14:41:09 GMT
expires: Tue, 04 Oct 2022 16:41:09 GMT
cache-control: public, max-age=7200
age: 3564
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2749364.js?sv=5
200 OK 2.1 kB URL HTTP/2 static.hotjar.com/c/hotjar-2749364.js?sv=5
IP
File type ASCII text, with very long lines (3790)
Hash 559cc42f0a79b7d189c4eea89d2798f0
9a5fdaed1a0e4ba567987bedfdc546f595395e76
a50d829584e033ceaa0036706f5cbe5bdd11a1f2568c9ae5a1899d236c40105a
GET /c/hotjar-2749364.js?sv=5 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Tue, 04 Oct 2022 15:40:33 GMT
cache-control: max-age=60
etag: W/f32b60189d9e69f707a96378cff258b0
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vlVyB1KuhykZwo3EUXr5Z308JaDnvwxzM7dEwyQ5GHKl9xIj8U8WaA==
X-Firefox-Spdy: h2
vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-69edcc3187336f9b0a3fbb4c73be9fe6.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2431), with no line terminators
Hash f6a9ca04b0687ea3c0d98e8430c8c77b
35503b2deb23091a9a9c6c68d4020dbdf879588e
8e4328ecb6b395499567369e3c227231dbdaf361f43ce315934d7a2a3abbed41
GET /box-69edcc3187336f9b0a3fbb4c73be9fe6.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1044
date: Tue, 04 Oct 2022 09:28:08 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "f6a9ca04b0687ea3c0d98e8430c8c77b"
last-modified: Tue, 04 Oct 2022 07:09:34 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 00SqBSYr4uij9vlB7Kt1sI2X7miSZyJ8wAwM9YbG3H0yLiM2WwxCIw==
age: 22345
X-Firefox-Spdy: h2
script.hotjar.com/modules.21c2ce197b1deec7582e.js
200 OK 66 kB URL HTTP/2 script.hotjar.com/modules.21c2ce197b1deec7582e.js
IP
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash 4fb85c520d1f9c1576ffa3692f55f082
a7f3a0d9d36b611b0718b5f1233740b4221f4c60
d795f3312ca5f96077a04a0dfeb745c2634f4beb27c197cd3e3960c5634fe6df
GET /modules.21c2ce197b1deec7582e.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 66175
date: Tue, 04 Oct 2022 15:02:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "4fb85c520d1f9c1576ffa3692f55f082"
last-modified: Tue, 04 Oct 2022 15:02:04 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dJByIrWsogH9X2LZHsziYQbmhpWDNlCsq228fMbrvxSp526k3rxEwA==
age: 2307
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 84e9010310622f392dc53ecd26b72e9b
454a6f2c6c050f7ec5ede31bf5c891619e42a232
522a643360e59c591cbeb45058e81f9d8f54408f025067e717e03c03ed9839ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-213008989-1&cid=292482358.1664898033&jid=204940695&gjid=1388913703&_gid=322749044.1664898033&_u=YADAAEAAAAAAACAAI~&z=577066427
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-213008989-1&cid=292482358.1664898033&jid=204940695&gjid=1388913703&_gid=322749044.1664898033&_u=YADAAEAAAAAAACAAI~&z=577066427
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-213008989-1&cid=292482358.1664898033&jid=204940695&gjid=1388913703&_gid=322749044.1664898033&_u=YADAAEAAAAAAACAAI~&z=577066427 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.konnexion.io
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 04 Oct 2022 15:40:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 53e0e5a2455fedae0d6308f91d41e445
237c2856f8a89ae3673ea909164557d65268c463
ddba9b3842f879168185b6607551069b312c44de4ec015ca4b43ad154d190bc8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
vc.hotjar.io/sessions/2749364?s=0.25&r=0.012463833138178781
204 No Content 0 B URL HTTP/2 vc.hotjar.io/sessions/2749364?s=0.25&r=0.012463833138178781
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sessions/2749364?s=0.25&r=0.012463833138178781 HTTP/1.1
Host: vc.hotjar.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-store
date: Tue, 04 Oct 2022 15:40:34 GMT
server: Python/3.7 aiohttp/3.5.4
x-cache: Miss from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jTpRBqx4lNPpnEEM6crbi8TvViFhWIYTuDAq5MTurkORYCECo6Cf_Q==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash e13df37c7a0102aa69d97512e4f3bad4
2c3019bef2f4bc34b3f3dc212b30d4fad04f8b37
cfbc8bfd83a8eb63bf5d189e398e1373222f1d1bde223fba70e3c7b560c708aa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b45b15bb651cc185ea82d91a51f06b5a
44987727be72bb12b4e4fc4fac50145835512750
f0b61426de169cf2efde87ac98d5123ea785004ad05c05932a099b644b2fdf64
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 1e661f69596ae8f4c9bb890b9b03576b
3140da34d5bd6c319bff5ab5b0685f4c881b5d9a
2969b941f6e6f984f563f606d11728734cd5f7f0e3a5da7614d59bf0ec91e116
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 15:40:34 GMT
Last-Modified: Tue, 04 Oct 2022 14:26:18 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mKEaPP7p6GSlqN1SMtBWmU4jROtNeNNvRtu7cvkP29ko8uGMp7XNsg==
Age: 4456
www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-213008989-1&cid=292482358.1664898033&jid=204940695&_u=YADAAEAAAAAAACAAI~&z=1140959010
200 OK 42 B URL HTTP/2 www.google.com/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-213008989-1&cid=292482358.1664898033&jid=204940695&_u=YADAAEAAAAAAACAAI~&z=1140959010
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-213008989-1&cid=292482358.1664898033&jid=204940695&_u=YADAAEAAAAAAACAAI~&z=1140959010 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 15:40:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-213008989-1&cid=292482358.1664898033&jid=204940695&_u=YADAAEAAAAAAACAAI~&z=1140959010
200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-213008989-1&cid=292482358.1664898033&jid=204940695&_u=YADAAEAAAAAAACAAI~&z=1140959010
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?t=sr&aip=1&_r=4&slf_rd=1&v=1&_v=j98&tid=UA-213008989-1&cid=292482358.1664898033&jid=204940695&_u=YADAAEAAAAAAACAAI~&z=1140959010 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 15:40:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/2749364/visit-data?sv=5
200 OK 564 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/2749364/visit-data?sv=5
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash e4a978f9e7d858f5b38d1cf4f53c299b
15003ae2415ab92da628937166b7e78d91efd8f3
52d6e2cfd46a4a80cf69d9f5a7b2785b8397b411c822ed544964c72ecce6ce5d
POST /api/v2/client/sites/2749364/visit-data?sv=5 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 112
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:34 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 129fe858bf2aa7291fd2c6dd4cf9d226
e3e048b964b851ebbdcfb5bd80ebdbad13720cf6
addc7e4ddab73c8c7ee50f6d33fc1e4ff73b71cc014e481049a393c3b87b0924
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:40:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-57RFCLXX7H>m=2oe9s0&_p=1239388266&cid=292482358.1664898033&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664898033&sct=1&seg=0&dl=https%3A%2F%2Fwww.konnexion.io%2Fhome%2Fusps%2Fverification&dt=Page%20non%20trouv%C3%A9e%20%E2%80%93%20Konnexion&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-57RFCLXX7H>m=2oe9s0&_p=1239388266&cid=292482358.1664898033&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664898033&sct=1&seg=0&dl=https%3A%2F%2Fwww.konnexion.io%2Fhome%2Fusps%2Fverification&dt=Page%20non%20trouv%C3%A9e%20%E2%80%93%20Konnexion&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-57RFCLXX7H>m=2oe9s0&_p=1239388266&cid=292482358.1664898033&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664898033&sct=1&seg=0&dl=https%3A%2F%2Fwww.konnexion.io%2Fhome%2Fusps%2Fverification&dt=Page%20non%20trouv%C3%A9e%20%E2%80%93%20Konnexion&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.konnexion.io
date: Tue, 04 Oct 2022 15:40:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ws26.hotjar.com/api/v2/client/ws
101 Switching Protocols 0 B URL HTTP/1.1 ws26.hotjar.com/api/v2/client/ws
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: ws26.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.konnexion.io
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /CBD3nUtmGTFniBQojG6WA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Tue, 04 Oct 2022 15:40:34 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PYYjkEcz0n8E51XYtJVEx2dl5H4=
Sec-WebSocket-Extensions: permessage-deflate
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5573
Expires: Tue, 04 Oct 2022 17:13:27 GMT
Date: Tue, 04 Oct 2022 15:40:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5573
Expires: Tue, 04 Oct 2022 17:13:27 GMT
Date: Tue, 04 Oct 2022 15:40:34 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5573
Expires: Tue, 04 Oct 2022 17:13:27 GMT
Date: Tue, 04 Oct 2022 15:40:34 GMT
Connection: keep-alive
ws26.hotjar.com/api/v2/sites/2749364/recordings/content
200 OK 564 B URL HTTP/2 ws26.hotjar.com/api/v2/sites/2749364/recordings/content
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 7c29a5e71a6c6be609c8483d149fbbcc
7fd19b9ebc4b9d479d856111c750530f70975b97
1ad7528cbbb890732b3276b851c704d442b0ee4816acea0b478efe66774f355d
POST /api/v2/sites/2749364/recordings/content HTTP/1.1
Host: ws26.hotjar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 74579
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:34 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: SGeDEPoXxsTV5UwkZnn3MJPbjhHhrKSsueHPxVapV_7Icl6daFk3oA==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 64574
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 54b3ef7aa50273b78b59c24511b0c1f9
e2ea2ef6805e391c497e62e101e76a0bdecfce64
296e8954022d5160137b3e02ab5085a15cee7c23cd6d4ca61b36880706062457
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11955
x-amzn-requestid: ce6bbe93-95b0-4b6e-a8bc-012796485e67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zcqb9FUtoAMF0WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b577f-59dc0a18523f900a059aa5df;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 44jC1Ww19YUJjZHw9_3cSSR5Y7nw5df412G-RxWFTcbRz1XDKaT3zQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:35 GMT
age: 64559
etag: "e2ea2ef6805e391c497e62e101e76a0bdecfce64"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f62719b24a32198c6f462a0a0412ac98
d893d8035379e06e53e365b9f47f5da40bff932b
ca863affca1559e92e415a4de2e78e4b4c1ec4cf8e8549693499c6f79bd27975
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10878
x-amzn-requestid: a849d918-ec40-47d4-93cb-e938b010bd50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpJKGAPIAMFSiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556d-242a8d2208b6574c34063c1f;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7ZaoEBhn_F_zDvoalcEpb4PtdGMuU9stAktSCviy5SsaaBaxYUJ6Fg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:20 GMT
age: 64574
etag: "d893d8035379e06e53e365b9f47f5da40bff932b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6c6882c60d7ca6f918c77104e3ad1d52
20ef861be49c652a938e0145e4ca3a60159367e2
861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: O1yNc4H21kixhUEE7099oNqs7a5ZnJBBjlZbsbmLvaXyzXzrK0dL3w==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:44:33 GMT
age: 64561
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
js-eu1.hs-scripts.com/25673195.js?integration=WordPress&ver=8.13.58
200 OK 10 kB URL HTTP/2 js-eu1.hs-scripts.com/25673195.js?integration=WordPress&ver=8.13.58
IP
File type ASCII text, with very long lines (546)
Hash cd426333ff94ffcc3a1510e0e300639d
f5ef9fb49a32c7a52bad32c9612ecb23485b734d
6f5918b67e2d231aef454d4321592fbd48b6f3d9560e967b28cef215dd30f2b4
GET /25673195.js?integration=WordPress&ver=8.13.58 HTTP/1.1
Host: js-eu1.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:34 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B06FCB2D87323D4B352D29097E760405D2CF8433E000000000000000000
cache-control: public, max-age=30
vary: origin, Accept-Encoding
x-hubspot-correlation-id: c745d3f5-daee-41c4-b88b-d5ad30e6161c
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.konnexion.io
cf-cache-status: EXPIRED
last-modified: Tue, 04 Oct 2022 15:34:49 GMT
server: cloudflare
cf-ray: 754f0449a94b98fd-ARN
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:51 GMT
age: 39463
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
api-eu1.hubspot.com/livechat-public/v1/message/public?portalId=25673195&conversations-embed=static-1.10873&mobile=false&messagesUtk=5747989b27344b0e96e2cde1dce83f5e&traceId=5747989b27344b0e96e2cde1dce83f5e
200 OK 18 B URL HTTP/2 api-eu1.hubspot.com/livechat-public/v1/message/public?portalId=25673195&conversations-embed=static-1.10873&mobile=false&messagesUtk=5747989b27344b0e96e2cde1dce83f5e&traceId=5747989b27344b0e96e2cde1dce83f5e
IP
File type ASCII text, with no line terminators
Hash cc7fd95a87ea3721ce1853bf3c4dd75e
7f687f7881adf0fc407378d375a61b8f198c0912
0f06a4c8d34690d4e42c81f232a5bdfe9fcbde8a54b5ccd0609a313e90da0879
OPTIONS /livechat-public/v1/message/public?portalId=25673195&conversations-embed=static-1.10873&mobile=false&messagesUtk=5747989b27344b0e96e2cde1dce83f5e&traceId=5747989b27344b0e96e2cde1dce83f5e HTTP/1.1
Host: api-eu1.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-hubspot-messages-uri
Referer: https://www.konnexion.io/
Origin: https://www.konnexion.io
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:35 GMT
content-type: text/plain; charset=utf-8
content-length: 18
x-trace: 2BC747A8EAB3B0C8D5B995A24ABF0742B3517B45C8000000000000000000
allow: HEAD,GET,OPTIONS
vary: origin
x-hubspot-correlation-id: 5d33d48e-43f1-420c-9080-71a30bcca33d
access-control-allow-credentials: false
access-control-allow-origin: https://www.konnexion.io
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=IaW5nBypKDsM5KOlw_cGObYoZ5Y3BxJ1cOcq5nh_n2w-1664898035-0-AR9rHmYvFFOpJciMDdZdvuFDNNlA20AsOK8lAVvP9DXz1pDDxfG8YdKIdGCC5yHjH8Jl2XcJTgsFOzKerCG+wfY=; path=/; expires=Tue, 04-Oct-22 16:10:35 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=loQVgWub0Pj6SwcL3v3rFUZ3K3GCijVBEa16X8nOZfr5PDu72uOZBYgHN%2B6pySO7QiZpdw3sw3rxRp8BErfUpkRQ5NmSiC15ppaFsy9mooQme%2FpOEfL3AiV9eB0zqIcG%2Bnw4ufo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 754f04513ee395eb-ARN
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js-eu1.hscollectedforms.net/collectedforms.js
200 OK 25 kB URL HTTP/2 js-eu1.hscollectedforms.net/collectedforms.js
IP
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash d99245586e7b51faa8390401f4c060fc
ac372fa6696c01bb8e002573a7517083c5791960
9dbb9eb4dbf6894e5ab973b8b6cef20b504543e705240ec0ceb871e068c4c9ba
GET /collectedforms.js HTTP/1.1
Host: js-eu1.hscollectedforms.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:35 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 13 Sep 2022 10:41:10 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: 5afLcxIjU5LfvvyyfvxzjsWXufXHSL1t
etag: W/"7a468b833be86c01bc8dfd455308f792"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: RefreshHit from cloudfront
via: 1.1 d5fb859c39a16d7f218b4c7fb1528ad6.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA6-C1
x-amz-cf-id: FcpgD80FaHiO01AZ-xA32jSV8BkGOJHfbge8EhYv-x50Ej2sk5XaYg==
cache-control: s-maxage=86400, max-age=0
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=collected-forms-embed-js/static-1.292/bundles/project.js&cfRay=754efbe98d9d98f0-FRA
x-hs-target-asset: collected-forms-embed-js/static-1.292/bundles/project.js
x-hs-cache-status: MISS
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 344
server: cloudflare
cf-ray: 754f04511c609938-ARN
content-encoding: br
X-Firefox-Spdy: h2
www.konnexion.io/wp-content/themes/themify-ultra/js/themify.script.js?ver=5.6.6
200 OK 3.6 kB URL HTTP/1.1 www.konnexion.io/wp-content/themes/themify-ultra/js/themify.script.js?ver=5.6.6
IP
Hash f9afa488dd85a3a7723148a8c9c3360b
dd7cb2092c15c9e935295f94b18a6ae486e35850
4e64d850276cbb592288ffeb2494d22d9174b5eb142e2707e3762a259d2b1370
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-ultra/js/themify.script.js?ver=5.6.6 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Cookie: _ga_57RFCLXX7H=GS1.1.1664898033.1.0.1664898033.0.0.0; _ga=GA1.2.292482358.1664898033; _gid=GA1.2.322749044.1664898033; _gat_UA-213008989-1=1; _hjSessionUser_2749364=eyJpZCI6IjBlZjBmOGYwLWM3NDItNTIyYi1iZjVhLWRmNjUwNTc1YWZkNyIsImNyZWF0ZWQiOjE2NjQ4OTgwMzMzNTksImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2749364=eyJpZCI6ImJiYjg3ODVmLTkzNzktNDE3Mi1hZGEyLTkzN2FiZGJmMzc1MCIsImNyZWF0ZWQiOjE2NjQ4OTgwMzM0MTUsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:37 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Thu, 16 Jun 2022 10:14:38 GMT
ETag: "33ac-5e18de7c4c0d0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3634
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
js-agent.newrelic.com/nr-spa-1216.min.js
200 OK 18 kB URL HTTP/2 js-agent.newrelic.com/nr-spa-1216.min.js
IP
File type ASCII text, with very long lines (32010)
Hash 6561a2403142205f966207d61576f1a6
1310e72f494e12ab63a4280fc1600a2c89dc9bb8
0e496fcab0b9120938373e271fa6631b7da17adf33f8a490637467c170a3e37a
GET /nr-spa-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-eu1.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: TAwVDFAylU9PwNPPW/eXC4UyIMC8EQ1d6JNW9Q+uXGnPmL1fuimq9M3lAe733gCMeKNDiCQX1YM=
x-amz-request-id: SYTECJR5CMD8NJ8E
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "63e2df852d15ab21d7ff8fc4363222e8"
x-amz-version-id: UU.F5jvoumAjQChriwTQHbisCFw_OInU
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Tue, 04 Oct 2022 15:40:37 GMT
via: 1.1 varnish
x-served-by: cache-bma1651-BMA
x-cache: HIT
x-cache-hits: 5429
x-timer: S1664898037.153301,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 18216
X-Firefox-Spdy: h2
www.konnexion.io/wp-content/themes/themify-ultra/themify/js/modules/fixedheader.js?ver=5.6.2
200 OK 2.8 kB URL HTTP/1.1 www.konnexion.io/wp-content/themes/themify-ultra/themify/js/modules/fixedheader.js?ver=5.6.2
IP
Hash f9212c900ba912740fb1dd8c492068ee
f35af79e109d0a8849d6c670414014d41027a021
df74f7acc167e09902100847afed5e3f229ff6e8f2302e76b7cd3a182bbf23bb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-ultra/themify/js/modules/fixedheader.js?ver=5.6.2 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Cookie: _ga_57RFCLXX7H=GS1.1.1664898033.1.0.1664898033.0.0.0; _ga=GA1.2.292482358.1664898033; _gid=GA1.2.322749044.1664898033; _gat_UA-213008989-1=1; _hjSessionUser_2749364=eyJpZCI6IjBlZjBmOGYwLWM3NDItNTIyYi1iZjVhLWRmNjUwNTc1YWZkNyIsImNyZWF0ZWQiOjE2NjQ4OTgwMzMzNTksImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2749364=eyJpZCI6ImJiYjg3ODVmLTkzNzktNDE3Mi1hZGEyLTkzN2FiZGJmMzc1MCIsImNyZWF0ZWQiOjE2NjQ4OTgwMzM0MTUsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=1; __hstc=231229632.58f3e5d97d58de2ff0794e85ce0dffce.1664898036558.1664898036558.1664898036558.1; hubspotutk=58f3e5d97d58de2ff0794e85ce0dffce; __hssrc=1; __hssc=231229632.1.1664898036558
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:37 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Thu, 16 Jun 2022 10:14:38 GMT
ETag: "2901-5e18de7c84b0f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2752
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.konnexion.io/wp-content/themes/themify-ultra/themify/js/modules/themify.sidemenu.js?ver=5.6.2
200 OK 1.4 kB URL HTTP/1.1 www.konnexion.io/wp-content/themes/themify-ultra/themify/js/modules/themify.sidemenu.js?ver=5.6.2
IP
Hash 5d06a104ecefd4535850a990d078dd95
a87531cc50628c23c5c782cc7a77d427529b3c56
db182124c577687e32c5896b9adb08d6d9070f7623efc202b66d4de95402d5c7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-ultra/themify/js/modules/themify.sidemenu.js?ver=5.6.2 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Cookie: _ga_57RFCLXX7H=GS1.1.1664898033.1.0.1664898033.0.0.0; _ga=GA1.2.292482358.1664898033; _gid=GA1.2.322749044.1664898033; _gat_UA-213008989-1=1; _hjSessionUser_2749364=eyJpZCI6IjBlZjBmOGYwLWM3NDItNTIyYi1iZjVhLWRmNjUwNTc1YWZkNyIsImNyZWF0ZWQiOjE2NjQ4OTgwMzMzNTksImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2749364=eyJpZCI6ImJiYjg3ODVmLTkzNzktNDE3Mi1hZGEyLTkzN2FiZGJmMzc1MCIsImNyZWF0ZWQiOjE2NjQ4OTgwMzM0MTUsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=1; __hstc=231229632.58f3e5d97d58de2ff0794e85ce0dffce.1664898036558.1664898036558.1664898036558.1; hubspotutk=58f3e5d97d58de2ff0794e85ce0dffce; __hssrc=1; __hssc=231229632.1.1664898036558
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:37 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Thu, 16 Jun 2022 10:14:38 GMT
ETag: "118f-5e18de7c84b0f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1427
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
static.hsappstatic.net/head-dlb/static-1.234/bundle.production.js
200 OK 16 kB URL HTTP/2 static.hsappstatic.net/head-dlb/static-1.234/bundle.production.js
IP
File type Unicode text, UTF-8 text, with very long lines (749)
Hash 8d9dacb64ac9a9139ae6b411292eeb27
a04a4de0768f0dce11749869b67bd9a1b3db21b0
1ab28c4695ac046dd5e8ac8c6881295dc6134d930b208bd6701ff46a583ff99f
GET /head-dlb/static-1.234/bundle.production.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app-eu1.hubspot.com
Connection: keep-alive
Referer: https://app-eu1.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:36 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 28 Sep 2022 17:07:56 GMT
etag: W/"af59323cc47b2bf2c3eeb0ed50217041"
x-amz-server-side-encryption: AES256
x-amz-version-id: YWDtvP_ZHgEUkBeD2cA0UllWA7dKrCQJ
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 954566f060b15d780520f7d4a3482500.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN56-P2
x-amz-cf-id: 59PxDYEnfSi2n5c-OMcK2OASusbR_Hp2L_KfNfFOY39j3ZTFN5WknA==
cf-cache-status: HIT
age: 510617
expires: Wed, 04 Oct 2023 15:40:36 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O54bZhOU06pG2jsUI1spbq0Djp6tS5cCCB2X8sak3u3CqfBZGX1s5AM35TQDVm8zcTCbfqHsapqBtzsjJg8I9g30Sgh%2BHHp163gPMosCv6lQdHAFyb84xO90AJiDEH0db45jYPhZTbk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 754f045a2b09b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
app-eu1.hubspot.com/conversations-visitor/25673195/threads/utk/5747989b27344b0e96e2cde1dce83f5e?uuid=1c19ec2c8647487fb229f8531acaf628&mobile=false&mobileSafari=false&hideWelcomeMessage=false&hstc=null&domain=konnexion.io&inApp53=false&messagesUtk=5747989b27344b0e96e2cde1dce83f5e&url=https%3A%2F%2Fwww.konnexion.io%2Fhome%2Fusps%2Fverification&inline=false&isFullscreen=false&globalCookieOptOut=null&isFirstVisitorSession=true&isAttachmentDisabled=false&enableWidgetCookieBanner=false&isInCMS=false
200 OK 19 kB URL HTTP/2 app-eu1.hubspot.com/conversations-visitor/25673195/threads/utk/5747989b27344b0e96e2cde1dce83f5e?uuid=1c19ec2c8647487fb229f8531acaf628&mobile=false&mobileSafari=false&hideWelcomeMessage=false&hstc=null&domain=konnexion.io&inApp53=false&messagesUtk=5747989b27344b0e96e2cde1dce83f5e&url=https%3A%2F%2Fwww.konnexion.io%2Fhome%2Fusps%2Fverification&inline=false&isFullscreen=false&globalCookieOptOut=null&isFirstVisitorSession=true&isAttachmentDisabled=false&enableWidgetCookieBanner=false&isInCMS=false
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (30721)
Hash 7494aebc8b9b51b7226cce2211397335
4cb0392c3550cf12f66be6bc12819b77b62a8d87
81a39f1c42d6b0923811623399d726780b1f940f783e69f0edb2fbda1b1de67e
GET /conversations-visitor/25673195/threads/utk/5747989b27344b0e96e2cde1dce83f5e?uuid=1c19ec2c8647487fb229f8531acaf628&mobile=false&mobileSafari=false&hideWelcomeMessage=false&hstc=null&domain=konnexion.io&inApp53=false&messagesUtk=5747989b27344b0e96e2cde1dce83f5e&url=https%3A%2F%2Fwww.konnexion.io%2Fhome%2Fusps%2Fverification&inline=false&isFullscreen=false&globalCookieOptOut=null&isFirstVisitorSession=true&isAttachmentDisabled=false&enableWidgetCookieBanner=false&isInCMS=false HTTP/1.1
Host: app-eu1.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:36 GMT
content-type: text/html; charset=utf-8
cf-ray: 754f045939650d4e-ARN
age: 3314
cache-control: max-age=600
etag: W/"f436886d761cb4742d741787ff9099c7"
last-modified: Fri, 30 Sep 2022 03:28:22 UTC
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
via: 1.1 62dc260e32d7b9197a4511447f6a264a.cloudfront.net (CloudFront)
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
cache-tag: staticjsapp-conversations-visitor-ui-web-prod,staticjsapp-prod
content-security-policy-report-only: script-src 'self' www.hubspot.com *.hsappstatic.net *.hs-analytics.net *.hs-banner.com *.hsforms.net *.hsleadflows.net *.hs-scripts.com *.hubspotfeedback.com *.usemessages.com js.hubspot.com *.hsadspixel.net *.hscollectedforms.net js-agent.newrelic.com bam.nr-data.net bam-cell.nr-data.net *.google-analytics.com www.googletagmanager.com data: 'unsafe-inline' 'unsafe-eval' blob: connect.facebook.net www.gstatic.cn www.gstatic.com www.google.com *.fullstory.com fullstory.com apis.google.com snap.licdn.com; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-visitor-ui/static-1.13325/html/index.html&cfRay=754f045939650d4e&reqUrl=https%3A%2F%2Fapp-eu1.hubspot.com%2Fconversations-visitor%2F25673195%2Fthreads%2Futk%2F5747989b27344b0e96e2cde1dce83f5e%3Fuuid%3D1c19ec2c8647487fb229f8531acaf628%26mobile%3Dfalse%26mobileSafari%3Dfalse%26hideWelcomeMessage%3Dfalse%26hstc%3Dnull%26domain%3Dkonnexion.io%26inApp53%3Dfalse%26messagesUtk%3D5747989b27344b0e96e2cde1dce83f5e%26url%3Dhttps%253A%252F%252Fwww.konnexion.io%252Fhome%252Fusps%252Fverification%26inline%3Dfalse%26isFullscreen%3Dfalse%26globalCookieOptOut%3Dnull%26isFirstVisitorSession%3Dtrue%26isAttachmentDisabled%3Dfalse%26enableWidgetCookieBanner%3Dfalse%26isInCMS%3Dfalse&referrer=https%3A%2F%2Fwww.konnexion.io%2F&cfenv=prod&pdt=2022-10-04&csp=ro
report-to: {"group":"default","max_age":86400,"endpoints":[{"url":"https://exceptions.hubspot.com/csp/reports"}]}
reporting-endpoints: default="https://exceptions.hubspot.com/csp/reports?cfRay=754f045939650d4e&resource=conversations-visitor-ui/static-1.13325/html/index.html"
x-amz-cf-id: j_xSeOBM59--7BexNnk2mH6UD21Ug9TR8F-VqK3GX0kayxOLIqCXqQ==
x-amz-cf-pop: FRA6-C1
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-version-id: S7BtrQzF8liyMMy.DQCNxOKIyEoXr8OF
x-cache: Hit from cloudfront
x-hs-cache-status: MISS
x-hs-target-asset: conversations-visitor-ui/static-1.13325/html/index.html
x-hs-worker-debug-mode: false
set-cookie: __cf_bm=XM4YcUvGmnB5x0jb_6nfo.FnE.2AdI49FNIqu5Mq2TE-1664898036-0-AdidCPXBo04zml+z0mTgPAvQW1eEDBB+wbSy1tJr+G1rdk6LEl9XG4Sg2U0LhdC1sB7v/EonlLM0Qt671kKSmWw=; path=/; expires=Tue, 04-Oct-22 16:10:36 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
bam-cell.nr-data.net/ins/1/f9d051f404?a=205242107&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=1821&ck=1&ref=https://app-eu1.hubspot.com/conversations-visitor/25673195/threads/utk/5747989b27344b0e96e2cde1dce83f5e
204 No Content 0 B URL HTTP/1.1 bam-cell.nr-data.net/ins/1/f9d051f404?a=205242107&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=1821&ck=1&ref=https://app-eu1.hubspot.com/conversations-visitor/25673195/threads/utk/5747989b27344b0e96e2cde1dce83f5e
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ins/1/f9d051f404?a=205242107&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=1821&ck=1&ref=https://app-eu1.hubspot.com/conversations-visitor/25673195/threads/utk/5747989b27344b0e96e2cde1dce83f5e HTTP/1.1
Host: bam-cell.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 2514
Origin: https://app-eu1.hubspot.com
Connection: keep-alive
Referer: https://app-eu1.hubspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Tue, 04 Oct 2022 15:40:37 GMT
Connection: keep-alive
CF-Ray: 754f045dea400afe-OSL
Access-Control-Allow-Origin: https://app-eu1.hubspot.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ca%2FYGyR9%2F1TZxmfq7rlDC1micLgkl2pKCVbUuTr213bJBVDfV7RlGSPW4rTVN1ewJ9Ps0WdHjYtlN5VIcmBzQHPNgmlI8EjiLfd0HpoU%2BK%2BJ%2FSKaXmOpf3zgBFbV0vS%2BxFWjq0GK"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
bam-cell.nr-data.net/events/1/f9d051f404?a=205242107&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=1834&ck=1&ref=https://app-eu1.hubspot.com/conversations-visitor/25673195/threads/utk/5747989b27344b0e96e2cde1dce83f5e
200 OK 24 B URL HTTP/1.1 bam-cell.nr-data.net/events/1/f9d051f404?a=205242107&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=1834&ck=1&ref=https://app-eu1.hubspot.com/conversations-visitor/25673195/threads/utk/5747989b27344b0e96e2cde1dce83f5e
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash bc32ed98d624acb4008f986349a20d26
2d3df8c11d2168ce2c27e0937421d11d85016361
0c9cf152a0ad00d4f102c93c613c104914be5517ac8f8e0831727f8bfbe8b300
POST /events/1/f9d051f404?a=205242107&sa=1&v=1216.487a282&t=Unnamed%20Transaction&rst=1834&ck=1&ref=https://app-eu1.hubspot.com/conversations-visitor/25673195/threads/utk/5747989b27344b0e96e2cde1dce83f5e HTTP/1.1
Host: bam-cell.nr-data.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1034
Origin: https://app-eu1.hubspot.com
Connection: keep-alive
Referer: https://app-eu1.hubspot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:37 GMT
Content-Type: image/gif
Content-Length: 24
Connection: keep-alive
CF-Ray: 754f045df8191c0e-OSL
Access-Control-Allow-Origin: https://app-eu1.hubspot.com
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VNld4a2e9foXs2kY04HRmI0S0khL8Ntlm8D0voJKEpkLcV2LM2fWIx8RVwTNjPymKFQfToZVYtKBBa4AQo6xsDZ9yGTN12Kpa2f2SeXiGdE9JpTCAfgUKFDMlmQ%2BbYjjpp8J2LWi"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
www.konnexion.io/wp-content/themes/themify-ultra/styles/modules/filters/none.css?ver=5.6.6
200 OK 182 B URL HTTP/1.1 www.konnexion.io/wp-content/themes/themify-ultra/styles/modules/filters/none.css?ver=5.6.6
IP
Hash 3e010f149a7312f87eac7ea593424991
75e39b3d8fb6185602ed453eff5e926520cd6627
a0c5464237cdcaef41d92e3f030d21c8954eff448ec62416ced3d4826e6ee108
GET /wp-content/themes/themify-ultra/styles/modules/filters/none.css?ver=5.6.6 HTTP/1.1
Host: www.konnexion.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/home/usps/verification
Cookie: _ga_57RFCLXX7H=GS1.1.1664898033.1.0.1664898033.0.0.0; _ga=GA1.2.292482358.1664898033; _gid=GA1.2.322749044.1664898033; _gat_UA-213008989-1=1; _hjSessionUser_2749364=eyJpZCI6IjBlZjBmOGYwLWM3NDItNTIyYi1iZjVhLWRmNjUwNTc1YWZkNyIsImNyZWF0ZWQiOjE2NjQ4OTgwMzMzNTksImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_2749364=eyJpZCI6ImJiYjg3ODVmLTkzNzktNDE3Mi1hZGEyLTkzN2FiZGJmMzc1MCIsImNyZWF0ZWQiOjE2NjQ4OTgwMzM0MTUsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=1; __hstc=231229632.58f3e5d97d58de2ff0794e85ce0dffce.1664898036558.1664898036558.1664898036558.1; hubspotutk=58f3e5d97d58de2ff0794e85ce0dffce; __hssrc=1; __hssc=231229632.1.1664898036558; messagesUtk=5747989b27344b0e96e2cde1dce83f5e
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Tue, 04 Oct 2022 15:40:37 GMT
Server: Apache/2.4.25 (Debian)
Last-Modified: Thu, 16 Jun 2022 10:14:38 GMT
ETag: "26a-5e18de7c5ab30-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 182
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/css
app-eu1.hubspot.com/api/livechat-public/v1/bots/public/bot/16223801/welcomeMessages?hs_static_app=conversations-visitor-ui&hs_static_app_version=1.13325&conversations-visitor-ui=static-1.13325&traceId=5747989b27344b0e96e2cde1dce83f5e&sessionId=AG9vRP7D8Mw7_sVCnd1fLBwvTSqt2THNckdDue0htjn0HCwUFxcKtC7AAFpMg81pqUeW18ndTcLMl4AW_uwUjqYerv0hNQiIo-CvnHxN2aesBWvT1jEyCd2gsHVuvYA9xInwr29ropjWYk6KQ8zG9ou23oyBS4CkaFfkHtp3fl0Xf92S2oOPOms&hubspotUtk=58f3e5d97d58de2ff0794e85ce0dffce
200 OK 371 B URL HTTP/2 app-eu1.hubspot.com/api/livechat-public/v1/bots/public/bot/16223801/welcomeMessages?hs_static_app=conversations-visitor-ui&hs_static_app_version=1.13325&conversations-visitor-ui=static-1.13325&traceId=5747989b27344b0e96e2cde1dce83f5e&sessionId=AG9vRP7D8Mw7_sVCnd1fLBwvTSqt2THNckdDue0htjn0HCwUFxcKtC7AAFpMg81pqUeW18ndTcLMl4AW_uwUjqYerv0hNQiIo-CvnHxN2aesBWvT1jEyCd2gsHVuvYA9xInwr29ropjWYk6KQ8zG9ou23oyBS4CkaFfkHtp3fl0Xf92S2oOPOms&hubspotUtk=58f3e5d97d58de2ff0794e85ce0dffce
IP
File type JSON data\012- , ASCII text, with very long lines (528), with no line terminators
Hash 728bfbff20e00f34a2c9888409f7dd71
be75530e41e66bfeb1fad20fec91b2627df51ff1
c9b250d4d044db5273b1636a60b7efff1c090aba6f05cc186d8ac910797cb502
GET /api/livechat-public/v1/bots/public/bot/16223801/welcomeMessages?hs_static_app=conversations-visitor-ui&hs_static_app_version=1.13325&conversations-visitor-ui=static-1.13325&traceId=5747989b27344b0e96e2cde1dce83f5e&sessionId=AG9vRP7D8Mw7_sVCnd1fLBwvTSqt2THNckdDue0htjn0HCwUFxcKtC7AAFpMg81pqUeW18ndTcLMl4AW_uwUjqYerv0hNQiIo-CvnHxN2aesBWvT1jEyCd2gsHVuvYA9xInwr29ropjWYk6KQ8zG9ou23oyBS4CkaFfkHtp3fl0Xf92S2oOPOms&hubspotUtk=58f3e5d97d58de2ff0794e85ce0dffce HTTP/1.1
Host: app-eu1.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-eu1.hubspot.com/conversations-visitor/25673195/threads/utk/5747989b27344b0e96e2cde1dce83f5e?uuid=1c19ec2c8647487fb229f8531acaf628&mobile=false&mobileSafari=false&hideWelcomeMessage=false&hstc=null&domain=konnexion.io&inApp53=false&messagesUtk=5747989b27344b0e96e2cde1dce83f5e&url=https%3A%2F%2Fwww.konnexion.io%2Fhome%2Fusps%2Fverification&inline=false&isFullscreen=false&globalCookieOptOut=null&isFirstVisitorSession=true&isAttachmentDisabled=false&enableWidgetCookieBanner=false&isInCMS=false&hubspotUtk=58f3e5d97d58de2ff0794e85ce0dffce
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:37 GMT
content-type: application/json;charset=utf-8
cf-ray: 754f045d8ec10d4e-ARN
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent, X-HubSpot-Messages-Uri
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
x-hubspot-correlation-id: 87d1a7c3-0efd-473f-894f-89e45c2440a8
x-trace: 2B77F89031433CEB7FD464C9347BB5368672C9867D000000000000000000
set-cookie: __cf_bm=cFx5YTuIbPuOi54zhR5UZV83IBHKxBluwcYooB7G2yc-1664898037-0-ATTS3Dgq83XR5gVF+IDYtD03oL8i4yTL1hlHIu+kRcinyUEo3iu0ifU1Y8ACpDdE0MORjUqdAiJZsairtOTAjhw=; path=/; expires=Tue, 04-Oct-22 16:10:37 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LwW0oU4xWrLcigY4ny0Cg15nNCbeJKQ6NJ3bT5gPxnTJ4XR%2F3i%2Bq1jD%2FtM3%2FFZjz1fmEf3KaRVE4y5Olp%2BD%2BNp46pzN9fFUuCdChlfDuuM%2FRWEWo825vCdn2buHHBrz7D2BVjt4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
track-eu1.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=931822577&v=1.1&a=25673195&pu=https%3A%2F%2Fwww.konnexion.io%2Fhome%2Fusps%2Fverification&t=Page+non+trouv%C3%A9e+%E2%80%93+Konnexion&cts=1664898036561&vi=58f3e5d97d58de2ff0794e85ce0dffce&nc=true&u=231229632.58f3e5d97d58de2ff0794e85ce0dffce.1664898036558.1664898036558.1664898036558.1&b=231229632.1.1664898036558&cc=15
200 OK 45 B URL HTTP/2 track-eu1.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=931822577&v=1.1&a=25673195&pu=https%3A%2F%2Fwww.konnexion.io%2Fhome%2Fusps%2Fverification&t=Page+non+trouv%C3%A9e+%E2%80%93+Konnexion&cts=1664898036561&vi=58f3e5d97d58de2ff0794e85ce0dffce&nc=true&u=231229632.58f3e5d97d58de2ff0794e85ce0dffce.1664898036558.1664898036558.1664898036558.1&b=231229632.1.1664898036558&cc=15
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash c8817d472077ebfc04593c1fa019d32d
e1e86f41c86c7b9cd2e8b76c6a925a1a3e7e3247
dc111a70984a9eda00752b06277113029ef288f1125c31eff2477413e15e8aa4
GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=931822577&v=1.1&a=25673195&pu=https%3A%2F%2Fwww.konnexion.io%2Fhome%2Fusps%2Fverification&t=Page+non+trouv%C3%A9e+%E2%80%93+Konnexion&cts=1664898036561&vi=58f3e5d97d58de2ff0794e85ce0dffce&nc=true&u=231229632.58f3e5d97d58de2ff0794e85ce0dffce.1664898036558.1664898036558.1664898036558.1&b=231229632.1.1664898036558&cc=15 HTTP/1.1
Host: track-eu1.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:38 GMT
content-type: image/gif
content-length: 45
cf-ray: 754f0462cf34f162-ARN
accept-ranges: bytes
cache-control: no-cache, no-store, no-transform
last-modified: Tue, 04 Oct 2022 15:40:38 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: false
p3p: CP="NOI CUR ADM OUR NOR STA NID"
x-hubspot-correlation-id: 7957bc67-ec43-4045-8f95-ae1c56fc6e80
x-robots-tag: none
set-cookie: __cf_bm=Afy_nvVuja9cL_P6XpP6.TUprUR8PjFpPjirCiURH64-1664898038-0-AcWkttkx0+sRVm+8isA7xYxpb8sVPySTeaJ9LWAIxHoVVZBBjbKfKSCHyEvEwBqJMVIoimVODM+yXthc6QtvTZ0=; path=/; expires=Tue, 04-Oct-22 16:10:38 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lIAON5UL3YuImMHzOrvL4E4jM5Jq3qRJEc0vJjMTd2jhEO1Iyq%2By%2F%2B%2FatE%2BYNMXSEABh9ZZ8oXIHPzBSpyREX6kyVY04E0A3V2Azu1Vi%2FtfAM%2Fp2bCavRaVM3DCw%2FHLzO2d263Py6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js-eu1.usemessages.com/conversations-embed.js
200 OK 0 B URL HTTP/2 js-eu1.usemessages.com/conversations-embed.js
IP
GET /conversations-embed.js HTTP/1.1
Host: js-eu1.usemessages.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:34 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Fri, 30 Sep 2022 03:28:22 UTC
etag: W/"8f72896eff8de085fc34d4ab80d97463"
x-amz-server-side-encryption: AES256
x-amz-version-id: y24q1zYP7BjLwmSbcrvN2WI7ANyjR6Yj
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 89c822bb1ce1445a7be6d1057088cfbe.cloudfront.net (CloudFront)
x-amz-cf-pop: FRA6-C1
x-amz-cf-id: FVihY9Va90EKpUz6LFofY3BIimOqYtYIhSMQHZw2AOpPq1OJh6l4YA==
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=conversations-embed/static-1.10873/bundles/project.js&cfRay=752e0bce3d3410c1-FRA
x-hs-target-asset: conversations-embed/static-1.10873/bundles/project.js
x-hs-cache-status: MISS
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 347
server: cloudflare
cf-ray: 754f044a5c11b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
js-eu1.hs-banner.com/25673195.js
200 OK 0 B URL HTTP/2 js-eu1.hs-banner.com/25673195.js
IP
GET /25673195.js HTTP/1.1
Host: js-eu1.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:35 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: CTfnP6te2LoY9MBKK4v/jLTLhENmIY+GwP4cAObLUIbk8WQFjDZZltjy+WodW90N2sg6vz2CnRk=
x-amz-request-id: GAVJVT1F0RF882Q5
last-modified: Fri, 02 Sep 2022 15:30:57 GMT
etag: W/"7be7988fb60e7ba04b832bd028a384da"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: vUjteyfUXsjd0LGDaNLumBn7GtiNX_lj
access-control-allow-origin: https://www.konnexion.io
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
expires: Tue, 04 Oct 2022 15:45:35 GMT
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 754f04511f8c990f-ARN
content-encoding: br
X-Firefox-Spdy: h2
forms-eu1.hubspot.com/collected-forms/v1/config/json?portalId=25673195&utk=
200 OK 0 B URL HTTP/2 forms-eu1.hubspot.com/collected-forms/v1/config/json?portalId=25673195&utk=
IP
GET /collected-forms/v1/config/json?portalId=25673195&utk= HTTP/1.1
Host: forms-eu1.hubspot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.konnexion.io
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:36 GMT
content-type: application/json;charset=utf-8
vary: origin
x-hubspot-correlation-id: d91b6163-2870-44b6-b7aa-256ec9b2c8e1
access-control-allow-credentials: false
access-control-allow-origin: https://www.konnexion.io
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=ZcUr9PuIvxyNRmHhQtPQKfSiIpcF8hAK2aA98kAeqOY-1664898036-0-ATJpmJz6G/Ca+3tjU/LUk2W9ch0/UwFjR7gpqngm9aV1I6gXxi2IZ16wu87xtbSzsAXQAL7nrUTlSBQ8Rshae5s=; path=/; expires=Tue, 04-Oct-22 16:10:36 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jXE%2Bf2BDbR8TlTETP9iMAKWiDtt9M70cYeOSo8d1t5Gcbxi2%2F2sXzGSiHRPSiBJrddmHpzYHED7pJIrHJZ5whOn3kI8CAMH4ZrPDmU9rFRbGSZXc088rCl2jANFqaufP4A216gG62A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 754f0458adf1f14a-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hsappstatic.net/conversations-visitor-ui/static-1.11843/sass/visitor.css
200 OK 0 B URL HTTP/2 static.hsappstatic.net/conversations-visitor-ui/static-1.11843/sass/visitor.css
IP
GET /conversations-visitor-ui/static-1.11843/sass/visitor.css HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://app-eu1.hubspot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:36 GMT
content-type: text/css
x-amz-replication-status: PENDING
last-modified: Mon, 15 Nov 2021 19:50:41 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: LgyvJN0nZOCplqIYlCYJJ1cibXdW_3K_
etag: W/"370a89ea102d7b437eb549729472631f"
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 ef25da0c32f918931915d02ad16016b9.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C1
x-amz-cf-id: sozNdfbKXPQ27W1Gh5_Ogz2KizWAagYWFHGF-Qbcer07dank0z_klg==
cf-cache-status: HIT
age: 1208424
expires: Wed, 04 Oct 2023 15:40:36 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hYmqvWXx%2BJcwzoA1355%2BkymgZLwe%2BwKBN9aZFfLAGha9kTwXXVNZ616AOWycnSkcgonbKk93sjjhYgiofijO%2FDn9TMovdRROY9kVj2hwsXVCzmbIReWYD7QaHxzf0k5jgHCD5%2FD6yFQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 754f045a38231bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hsappstatic.net/hubspot-dlb/static-1.323/bundle.production.js
200 OK 0 B URL HTTP/2 static.hsappstatic.net/hubspot-dlb/static-1.323/bundle.production.js
IP
GET /hubspot-dlb/static-1.323/bundle.production.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app-eu1.hubspot.com
Connection: keep-alive
Referer: https://app-eu1.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:36 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 28 Sep 2022 19:48:57 GMT
etag: W/"935799ee774e355e90f1cbb52fd06f07"
x-amz-server-side-encryption: AES256
x-amz-version-id: Ln.tyCbqyOrowcoF3r7BJeIsSNnld2Qd
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 a7ccb4d80699d116fa5cf39b77f68f2e.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-C1
x-amz-cf-id: 18BTpewrmfnOsMeVIdiTFrW7m4t6IgAe1IPbO9VGKe3YEMk9eirV7g==
cf-cache-status: HIT
age: 438448
expires: Wed, 04 Oct 2023 15:40:36 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BX1d6U5mmKEv1iNKhhBLx7ly0BsNJ2uhzKT5G%2BxBAjbPvqtcGZQ%2B9sEE5GSu4p0ux8Who6PSVLnVpBFv%2FM8a5a9iCX8dwM3IV6RfLaJOpBocequ6dJWlFWsc%2BIeP64hKZWwG2J%2F86tE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 754f045a2b13b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js-eu1.hs-analytics.net/analytics/1664898000000/25673195.js
200 OK 0 B URL HTTP/2 js-eu1.hs-analytics.net/analytics/1664898000000/25673195.js
IP
GET /analytics/1664898000000/25673195.js HTTP/1.1
Host: js-eu1.hs-analytics.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.konnexion.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:35 GMT
content-type: text/javascript
x-amz-id-2: N47/JpliLG0qdtZ5dsiLoIK/+fTu5tYqReWMFX5zUakLbZoNuLXFhrvYULURVwwf+HJ+GZDnwkk=
x-amz-request-id: 7PFRGFGJ28V950B1
last-modified: Fri, 02 Sep 2022 15:31:01 GMT
etag: W/"4d553df8fdfbebca287866794b19d52f"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Tue, 04 Oct 2022 15:45:35 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 754f04532e899933-ARN
content-encoding: br
X-Firefox-Spdy: h2
static.hsappstatic.net/conversations-visitor-ui/static-1.13292/i18n-data-data-locales-en-us.js
200 OK 0 B URL HTTP/2 static.hsappstatic.net/conversations-visitor-ui/static-1.13292/i18n-data-data-locales-en-us.js
IP
GET /conversations-visitor-ui/static-1.13292/i18n-data-data-locales-en-us.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app-eu1.hubspot.com
Connection: keep-alive
Referer: https://app-eu1.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:37 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 27 Sep 2022 18:36:30 GMT
etag: W/"90252da4cfd33e680909d40cc81a456b"
x-amz-server-side-encryption: AES256
x-amz-version-id: ceDgXuucQz1PLxRfKSR7xx_vX_2QQY.l
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 f6020f10d519a41b0c116dad7dcb2798.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: gTD_CunMWy-7dzGxhmCGZDxXH1fAtcA19aKQwOEcI2f-j6d5s0MaEQ==
cf-cache-status: HIT
age: 349414
expires: Wed, 04 Oct 2023 15:40:37 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CypOumNvA2jkqmAPrp4mal6AxLzl7h5Rj1k0GhCW3CLaQWqrDBHHs8EBjooe8Wn%2FEqZARIAbS0U5%2BUc9NItDO5bBvcmLEKvtxKAv7hNj0aSzsD6XKD08t%2FHWsn2X0b0zuKiMt0fk7ag%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 754f045b6d19b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.hsappstatic.net/conversations-visitor-ui/static-1.13325/bundles/visitor.js
200 OK 0 B URL HTTP/2 static.hsappstatic.net/conversations-visitor-ui/static-1.13325/bundles/visitor.js
IP
GET /conversations-visitor-ui/static-1.13325/bundles/visitor.js HTTP/1.1
Host: static.hsappstatic.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://app-eu1.hubspot.com
Connection: keep-alive
Referer: https://app-eu1.hubspot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:40:36 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Fri, 30 Sep 2022 15:00:58 GMT
etag: W/"b7314e5c2ccf63c800c5119b6c75b721"
x-amz-server-side-encryption: AES256
x-amz-version-id: alCi0ss_LCvbn4fkk1UpshgP1giGWdic
vary: Origin,Accept-Encoding,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 f13ebb34b9ca74b5ffe9e85709c21a7c.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: b-jgA6jEGyhGp4ZHgBNw29syAlskLl8YSLDlaFeZSH8Ulo1O7PvSUQ==
cf-cache-status: HIT
age: 346314
expires: Wed, 04 Oct 2023 15:40:36 GMT
cache-control: public, max-age=31536000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jqvTE3fOP0si9F4lTt3RcmrMdTFsjkrbg2BHNdIwkQoal%2B38XqC2U8V4YUHrNOlQI86phEw3%2BW8Vd6btXdxuJPpFLmCAD8yw1zgFryVULX%2BBextVusJzyGIaRpSg%2B4REhdmCc8Pcx0E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 754f045a3b17b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
173.212.211.187
104.18.32.68
216.58.207.195
23.36.77.32
52.50.231.210
93.184.220.29
151.101.86.137