Overview

URL rollout.io
IP52.55.16.38
ASNAMAZON-AES
Location United States
Report completed2022-10-04 15:09:37 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter  No alerts detected
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (62)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-10-04 09:37:43 UTC 142.250.74.168
mnemonic passive DNS sentry.io (1) 2743 2016-08-31 05:38:44 UTC 2022-10-04 05:15:34 UTC 35.188.42.15
mnemonic passive DNS px.ads.linkedin.com (1) 522 2017-08-08 16:28:50 UTC 2022-10-04 12:53:34 UTC 13.107.42.14
mnemonic passive DNS region1.analytics.google.com (1) 0 2022-03-17 11:26:33 UTC 2022-10-04 07:23:21 UTC 216.239.34.36 Domain (google.com) ranked at: 1
mnemonic passive DNS stats.g.doubleclick.net (2) 96 2013-06-02 22:47:44 UTC 2022-10-04 05:06:06 UTC 74.125.131.154
mnemonic passive DNS t.co (1) 569 2012-07-25 19:09:44 UTC 2022-10-04 04:43:29 UTC 104.244.42.5
mnemonic passive DNS metrics.api.drift.com (4) 6235 2018-08-07 15:52:06 UTC 2022-10-04 12:55:53 UTC 54.147.21.139
mnemonic passive DNS b.6sc.co (2) 6187 2015-12-15 19:22:13 UTC 2022-10-04 05:52:07 UTC 23.14.5.116
mnemonic passive DNS ocsp.sca1b.amazontrust.com (4) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.39
mnemonic passive DNS presence.api.drift.com (1) 5901 2019-04-22 17:02:08 UTC 2022-10-04 12:55:55 UTC 35.174.210.7
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-10-04 04:29:41 UTC 34.160.144.191
mnemonic passive DNS cdn.mouseflow.com (1) 6644 2012-07-27 09:45:11 UTC 2022-10-04 07:41:56 UTC 151.139.128.11
mnemonic passive DNS e.acuityplatform.com (1) 22160 2019-05-14 15:29:15 UTC 2022-10-04 06:52:47 UTC 154.59.122.94
mnemonic passive DNS targeting.api.drift.com (3) 6312 2019-05-13 05:35:39 UTC 2022-10-04 12:55:55 UTC 54.147.21.139
mnemonic passive DNS id.cloudbees.com (3) 0 2019-04-07 10:24:18 UTC 2022-09-23 03:21:02 UTC 104.16.185.248 Domain (cloudbees.com) ranked at: 144417
mnemonic passive DNS cdn.contentful.com (2) 9250 2014-05-13 15:45:20 UTC 2022-10-04 12:35:13 UTC 151.101.86.49
mnemonic passive DNS c.6sc.co (1) 12150 2017-01-29 23:27:07 UTC 2022-10-04 07:38:12 UTC 23.14.5.116
mnemonic passive DNS fonts.gstatic.com (2) 0 2014-08-29 13:43:22 UTC 2022-10-04 09:46:16 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS images.ctfassets.net (6) 4623 2018-01-04 15:32:22 UTC 2022-10-04 07:01:30 UTC 54.230.111.77
mnemonic passive DNS www.google.no (1) 25607 2016-04-05 19:50:59 UTC 2022-10-04 08:54:14 UTC 142.250.74.3
mnemonic passive DNS www.google.com (1) 7 2016-08-04 12:36:31 UTC 2022-10-04 04:25:35 UTC 142.250.74.164
mnemonic passive DNS pubads.g.doubleclick.net (1) 495 2012-10-03 01:04:21 UTC 2022-10-04 04:27:12 UTC 216.58.211.2
mnemonic passive DNS secure.adnxs.com (1) 396 2012-05-22 16:37:37 UTC 2022-10-04 04:18:05 UTC 37.252.173.22
mnemonic passive DNS cdn.bizible.com (3) 9090 2013-05-30 09:01:09 UTC 2022-10-04 13:25:59 UTC 152.195.15.58
mnemonic passive DNS driftt.imgix.net (1) 14024 2017-01-30 10:46:28 UTC 2022-10-04 13:17:27 UTC 151.101.86.208
mnemonic passive DNS www.google-analytics.com (1) 40 2012-10-03 01:04:21 UTC 2022-10-04 08:39:57 UTC 142.250.74.174
mnemonic passive DNS n2.mouseflow.com (2) 18530 2014-07-12 23:40:53 UTC 2022-10-04 14:56:57 UTC 192.96.202.199
mnemonic passive DNS event.api.drift.com (1) 7238 2016-08-04 07:30:07 UTC 2022-10-04 08:24:51 UTC 54.147.21.139
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-10-04 04:16:51 UTC 34.117.237.239
mnemonic passive DNS www.redditstatic.com (1) 1440 2012-06-30 12:33:28 UTC 2022-10-04 06:14:40 UTC 151.101.85.140
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-10-04 04:18:32 UTC 34.120.237.76
mnemonic passive DNS googleads.g.doubleclick.net (1) 42 2021-02-20 15:43:32 UTC 2022-10-04 09:27:47 UTC 142.250.74.162
mnemonic passive DNS ocsp.digicert.com (6) 86 2012-05-21 07:02:23 UTC 2022-10-04 07:51:20 UTC 93.184.220.29
mnemonic passive DNS build.cloudbees.com (6) 0 2020-10-05 10:09:00 UTC 2022-09-16 12:30:46 UTC 104.17.72.206 Domain (cloudbees.com) ranked at: 144417
mnemonic passive DNS adservice.google.no (1) 96969 2017-09-26 14:23:08 UTC 2022-10-04 04:17:30 UTC 142.250.74.34
mnemonic passive DNS www.facebook.com (2) 99 2017-01-30 05:00:00 UTC 2022-10-04 04:17:03 UTC 31.13.72.36
mnemonic passive DNS cdn.bizibly.com (1) 10686 2017-01-30 06:15:59 UTC 2022-10-04 13:26:01 UTC 152.195.15.58
mnemonic passive DNS j.6sc.co (1) 8237 2015-12-10 09:37:16 UTC 2022-10-04 07:01:19 UTC 23.14.5.116
mnemonic passive DNS 99913-13.chat.api.drift.com (1) 600758 2019-01-21 09:59:23 UTC 2022-09-23 03:21:07 UTC 52.205.1.39
mnemonic passive DNS geolocation.onetrust.com (1) 802 2018-02-07 11:23:41 UTC 2022-10-04 07:59:41 UTC 104.18.41.98
mnemonic passive DNS snap.licdn.com (1) 1044 2014-10-06 08:43:45 UTC 2022-10-04 04:31:36 UTC 23.36.76.210
mnemonic passive DNS origin.acuityplatform.com (1) 19802 2018-07-19 23:17:23 UTC 2022-10-04 10:58:14 UTC 104.110.25.90
mnemonic passive DNS flow.api.drift.com (1) 12085 2020-09-10 12:29:30 UTC 2022-10-04 13:17:26 UTC 54.147.21.139
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-05-27 20:08:30 UTC 2022-10-04 09:13:54 UTC 143.204.55.27
mnemonic passive DNS www.cloudbees.com (2) 520164 2012-09-30 07:33:17 UTC 2022-10-04 14:36:27 UTC 34.149.106.160
mnemonic passive DNS adservice.google.com (1) 76 2021-02-20 16:10:48 UTC 2022-10-04 14:29:35 UTC 216.58.211.2
mnemonic passive DNS js.driftt.com (36) 5753 2018-06-14 15:30:16 UTC 2022-10-04 12:55:51 UTC 54.230.111.67
mnemonic passive DNS ocsp.godaddy.com (1) 698 2012-05-20 19:28:57 UTC 2022-10-04 04:40:22 UTC 192.124.249.22
mnemonic passive DNS munchkin.marketo.net (1) 3550 2012-12-17 00:39:54 UTC 2022-10-04 05:19:15 UTC 88.221.99.189
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-10-04 04:17:22 UTC 23.36.77.32
mnemonic passive DNS 10238004.fls.doubleclick.net (1) 0 2020-09-08 08:19:15 UTC 2022-09-23 03:21:02 UTC 142.250.74.70 Domain (doubleclick.net) ranked at: 2267
mnemonic passive DNS static.ads-twitter.com (1) 614 2017-01-30 05:00:15 UTC 2022-10-04 04:41:32 UTC 151.101.84.157
mnemonic passive DNS ocsp.pki.goog (19) 175 2017-06-14 07:23:31 UTC 2022-10-04 04:17:09 UTC 142.250.74.3
mnemonic passive DNS cdn.cookielaw.org (10) 502 2013-12-28 13:20:36 UTC 2022-10-04 06:04:47 UTC 104.16.149.64
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-10-04 04:45:06 UTC 34.215.107.141
mnemonic passive DNS analytics.twitter.com (1) 526 2013-04-10 19:53:18 UTC 2022-10-04 04:41:33 UTC 104.244.42.67
mnemonic passive DNS alb.reddit.com (1) 1521 2017-06-15 05:33:56 UTC 2022-10-04 14:48:04 UTC 151.101.85.140
mnemonic passive DNS fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-10-04 11:55:48 UTC 142.250.74.10
mnemonic passive DNS js.driftt.com (36) 5753 2018-06-14 15:30:16 UTC 2022-10-04 12:55:51 UTC 35.158.89.114
mnemonic passive DNS rollout.io (1) 16058 2015-02-28 02:35:03 UTC 2022-09-27 10:55:44 UTC 52.55.16.38
mnemonic passive DNS bootstrap.api.drift.com (3) 6517 2020-08-26 10:26:04 UTC 2022-10-04 12:55:53 UTC 54.147.21.139
mnemonic passive DNS static.addtoany.com (2) 4091 2012-05-21 12:58:18 UTC 2022-10-04 07:03:07 UTC 104.22.70.197


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 52.55.16.38

Date UQ / IDS / BL URL IP
2022-10-04 15:09:37 +0000
0 - 0 - 0 rollout.io 52.55.16.38

Last 5 reports on ASN: AMAZON-AES

Date UQ / IDS / BL URL IP
2022-11-27 18:50:07 +0000
0 - 0 - 1 54.173.51.254/customer/Remote%20Support-windo (...) 54.173.51.254
2022-11-27 18:13:25 +0000
0 - 0 - 1 tracking.revvanaplan.com/prod/5b7e3cfb-b561-4 (...) 44.198.6.24
2022-11-27 18:12:15 +0000
0 - 0 - 1 3.84.10.6/apk/0609.apk 3.84.10.6
2022-11-27 18:08:17 +0000
0 - 0 - 43 magic-impartial-table.glitch.me/index.html 54.209.182.143
2022-11-27 17:10:42 +0000
0 - 0 - 2 elated-succinct-magpie.glitch.me/NavyFederalC (...) 52.4.141.177

Last 1 reports on domain: rollout.io

Date UQ / IDS / BL URL IP
2022-10-04 15:09:37 +0000
0 - 0 - 0 rollout.io 52.55.16.38

No other reports with similar screenshot



JavaScript

Executed Scripts (97)


Executed Evals (12)

#1 JavaScript::Eval (size: 104, repeated: 1) - SHA256: 897e2cf242623ee5c1ecce5b131c27bc3ec00a72a2b2efbe41d772fd00a6acac

                                        (function() {
    try {
        return google_tag_manager["GTM-KMJ7D77"].macro(5).split("/")[1]
    } catch (a) {
        return "/"
    }
})();
                                    

#2 JavaScript::Eval (size: 130, repeated: 1) - SHA256: 796103c99299595c9dc96ca006b84a8304fd9de3fa9c45c4abe720ae955b1f3d

                                        (function() {
    try {
        return google_tag_manager["GTM-KMJ7D77"].macro(3).split(".").slice(2, 4).join(".")
    } catch (a) {
        return "not ready"
    }
})();
                                    

#3 JavaScript::Eval (size: 130, repeated: 1) - SHA256: 6e0dbfe83d42d115426f13521f4f3f12b0c435ab75e99e9f277a41e07c9741e1

                                        (function() {
    try {
        return google_tag_manager["GTM-KMJ7D77"].macro(4).split(".").slice(2, 4).join(".")
    } catch (a) {
        return "not ready"
    }
})();
                                    

#4 JavaScript::Eval (size: 131, repeated: 1) - SHA256: f990e7f89634549a6e5193c0f8888a308055608aeeb05e80c717569c074be284

                                        (function() {
    try {
        return google_tag_manager["GTM-KMJ7D77"].macro(11).split(".").slice(2, 4).join(".")
    } catch (a) {
        return "not ready"
    }
})();
                                    

#5 JavaScript::Eval (size: 131, repeated: 1) - SHA256: ff41de67dfe0e8aa9bfc8f0263f39e5a153fabc137f56b856222c0285753b047

                                        (function() {
    try {
        return google_tag_manager["GTM-KMJ7D77"].macro(21).split(".").slice(2, 4).join(".")
    } catch (a) {
        return "not ready"
    }
})();
                                    

#6 JavaScript::Eval (size: 131, repeated: 1) - SHA256: 7573026bc9638ec638e7f73e7b1e16e0f373972d760d2bd8b27d407b542a245c

                                        (function() {
    try {
        return google_tag_manager["GTM-KMJ7D77"].macro(23).split(".").slice(2, 4).join(".")
    } catch (a) {
        return "not ready"
    }
})();
                                    

#7 JavaScript::Eval (size: 131, repeated: 1) - SHA256: 86690bdb6275a8922ee21ed6539bb70e2e23e3ff8aa805b5d16fb3ba2a46f07e

                                        (function() {
    try {
        return google_tag_manager["GTM-KMJ7D77"].macro(25).split(".").slice(2, 4).join(".")
    } catch (a) {
        return "not ready"
    }
})();
                                    

#8 JavaScript::Eval (size: 104, repeated: 1) - SHA256: 9110b6dd757b7bdb182324d2849ec7133210970c1bdad8bef0330ea8b10f46cc

                                        (function() {
    try {
        return google_tag_manager["GTM-KMJ7D77"].macro(6).split("/")[1]
    } catch (a) {
        return "/"
    }
})();
                                    

#9 JavaScript::Eval (size: 131, repeated: 1) - SHA256: 17031cfc409b7c4f43b83b43dc0f0e19e32d04b006bb6637e9105180fedf19fe

                                        (function() {
    try {
        return google_tag_manager["GTM-KMJ7D77"].macro(18).split(".").slice(2, 4).join(".")
    } catch (a) {
        return "not ready"
    }
})();
                                    

#10 JavaScript::Eval (size: 131, repeated: 1) - SHA256: c25f80694e1b128e64ba438c25e6ed110a5fcb607f2809dfb88253c0a9ce928a

                                        (function() {
    try {
        return google_tag_manager["GTM-KMJ7D77"].macro(27).split(".").slice(2, 4).join(".")
    } catch (a) {
        return "not ready"
    }
})();
                                    

#11 JavaScript::Eval (size: 130, repeated: 1) - SHA256: 669fbb8e12d97e8f7383cc1c2c5006f83177a2f3b4342c2f8f02d3c13fe6c931

                                        (function() {
    try {
        return google_tag_manager["GTM-KMJ7D77"].macro(2).split(".").slice(2, 4).join(".")
    } catch (a) {
        return "not ready"
    }
})();
                                    

#12 JavaScript::Eval (size: 131, repeated: 1) - SHA256: 05a51bc6b33abf85f2fec4bdce33064cc0e39c1a749e5a7a034bbe574b0af74d

                                        (function() {
    try {
        return google_tag_manager["GTM-KMJ7D77"].macro(19).split(".").slice(2, 4).join(".")
    } catch (a) {
        return "not ready"
    }
})();
                                    

Executed Writes (0)



HTTP Transactions (171)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 14:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RnnPEG7VVuuGQS3RZUmT1sS6ojk78q_JHrt752N32_pS0Nf93gS6dw==
Age: 1341


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    1b3053fa528e28810f8a2cc9284cc921
Sha1:   cca9eb471d941881a6b9a1793aecb6c281908f6a
Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6976
Expires: Tue, 04 Oct 2022 17:05:41 GMT
Date: Tue, 04 Oct 2022 15:09:25 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "D681A4C2E20A6019C7E2D980CBFA77B34DB9356899099296C3B8B4263CA5FB5F"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8218
Expires: Tue, 04 Oct 2022 17:26:23 GMT
Date: Tue, 04 Oct 2022 15:09:25 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: 6ob9kOmP7gRREd2J6JtpbgISkn15RUJLITISWAF6TDyskdPUy3/8+U61dy9X1YQvMy7Vei8lCeU=
x-amz-request-id: CANQMGRGN612686B
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 04 Oct 2022 14:54:19 GMT
age: 906
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    6113f8408c59aebe188d6af273b90743
Sha1:   7398873bf00f99944eaa77ad3ebc0d43c23dba6b
Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 04 Oct 2022 15:09:25 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: rollout.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         52.55.16.38
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Date: Tue, 04 Oct 2022 15:09:25 GMT
Content-Length: 162
Connection: keep-alive
Server: nginx
Location: https://www.cloudbees.com/products/feature-management


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
                                        
                                            POST /s/gts1d4/M4ZOXkAogRQ HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:25 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 04 Oct 2022 14:29:33 GMT
Expires: Tue, 04 Oct 2022 14:31:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GBt6ZYVy9VQRnEKElJSRQS0FPH77ykORxhV3uoqjPhnOPUwsWA0XOw==
Age: 2393


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /products/feature-management HTTP/1.1 
Host: www.cloudbees.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         34.149.106.160
HTTP/2 301 Moved Permanently
content-type: text/html; charset=utf-8
                                        
location: /capabilities/feature-management
vary: Accept
content-length: 120
date: Tue, 04 Oct 2022 15:09:25 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document, ASCII text, with no line terminators
Size:   120
Md5:    58a98d596d68bdf5c3549cd76c53eb6f
Sha1:   590eecf62b29bbfddae8e0ca2d4952e403dcd479
Sha256: 24b6af37cb088fa0c0f8d80f3856b113891cfb94b48b7cdf8e540e9bffcd89f6
                                        
                                            POST /s/gts1d4/M4ZOXkAogRQ HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:26 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5979
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 15:09:26 GMT
Last-Modified: Tue, 04 Oct 2022 13:29:47 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /scripttemplates/otSDKStub.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 04 Oct 2022 15:09:26 GMT
content-length: 7151
content-encoding: gzip
content-md5: zvDmpz9S9y5z1XhncmOZ/w==
last-modified: Tue, 04 Oct 2022 02:35:27 GMT
etag: 0x8DAA5B119096EDC
x-ms-request-id: f2a38831-301e-00ff-3b9e-d7e57e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5157
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754ed6b03b15b4f4-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21747)
Size:   7151
Md5:    cef0e6a73f52f72e73d57867726399ff
Sha1:   2611e0920611a653446508e5f3de017900cc49f2
Sha256: 97cc12a095136523b16da09953e6f3e405b658978cb37cbc3d3ccb9f94faf0a6
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /9pdXJo40RuMH8kelHLU6A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.215.107.141
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HcS9eEwapu3qeMVP1DbApKt1o8I=

                                        
                                            GET /vtn4rfaw6n2j/1Wqj3yiIt7F87KTM9JSUJ0/afefe3786b63e877467ff14bc0cf0c52/Deliver-Features-Progressively.png HTTP/1.1 
Host: images.ctfassets.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.77
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 225073
date: Tue, 04 Oct 2022 09:59:30 GMT
last-modified: Fri, 16 Sep 2022 16:48:23 GMT
etag: "24b837044883b4b04cf9095a50203316"
cache-control: max-age=31536000
server: Contentful Images API
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: M8jhLma5gleF_wwOBpOm9W1IRqNEWnp5YdjragdbkrlasFAGSmyWew==
age: 18597
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1315 x 561, 8-bit/color RGBA, non-interlaced\012- data
Size:   225073
Md5:    24b837044883b4b04cf9095a50203316
Sha1:   47cf5326df3085508c534be9146cb58a47097a54
Sha256: 58c44abec86e5ed711d26346d7c932fe8f85c7f928ef910678ecacac553856df
                                        
                                            GET /vtn4rfaw6n2j/5EuZtDd4r5l7nEqHVbqjGI/0a2e79f4d8038d9c152e2bdc6139eb51/Accelerate-CI-CD2.png HTTP/1.1 
Host: images.ctfassets.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.77
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 135735
last-modified: Thu, 29 Sep 2022 17:14:15 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Mon, 03 Oct 2022 19:41:14 GMT
cache-control: max-age=31536000
etag: "0f969e70c22f68fb4663b593ccec59d6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hLCv7t0zGdmrTUiro--YqmhNelil0jorECbOBj4fo_KQESMSarBF0g==
age: 70093
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1268 x 570, 8-bit/color RGBA, non-interlaced\012- data
Size:   135735
Md5:    0f969e70c22f68fb4663b593ccec59d6
Sha1:   5f769e2a69ae844964c70774be046b3475a7cd22
Sha256: 5fd19cbbb0a7d6c7f5b040269fbada9f0794d3e62d52afcea1d42cca79a04070
                                        
                                            GET /vtn4rfaw6n2j/2Oks8rbt5WSHrsYmqg116Z/dc8a7b6818f8cf1e0629a468633d0328/Feature_mgmt_hero-desktop.jpg HTTP/1.1 
Host: images.ctfassets.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.77
HTTP/2 200 OK
content-type: image/jpeg
                                        
content-length: 177247
date: Tue, 04 Oct 2022 09:59:30 GMT
last-modified: Tue, 20 Sep 2022 19:00:03 GMT
etag: "1d5fa49d32c24669bfc6cd9304d84f05"
cache-control: max-age=31536000
server: Contentful Images API
access-control-allow-origin: *
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BLLlb8vJtEfk3ki9tOydi7Z4fzuC60FQtJCu9cdYb1Imk60wWs2XjA==
age: 18597
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], comment: "Optimized by JPEGmini 3.18.9.220874607-AV 0xec7c19d0", baseline, precision 8, 2600x1100, components 3\012- data
Size:   177247
Md5:    1d5fa49d32c24669bfc6cd9304d84f05
Sha1:   f8a72abe81a780736870a790884d86fae0b84876
Sha256: edefc40778e3c35922c30acfa7673f22c5a1efc0dd71124fb9f0fc83403cfe94
                                        
                                            GET /vtn4rfaw6n2j/784Bf7IvtLXUohqbHS8gET/a83f90dbbc315f9ad064c8983f04f0f1/Analytics-Predictive-Release.png HTTP/1.1 
Host: images.ctfassets.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.77
HTTP/2 200 OK
content-type: image/png
                                        
content-length: 217151
last-modified: Wed, 21 Sep 2022 19:22:57 GMT
server: Contentful Images API
access-control-allow-origin: *
date: Tue, 04 Oct 2022 09:59:30 GMT
cache-control: max-age=31536000
etag: "4b3df1319bcd0137e4d14095bc315355"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: O4vwSRNRP9BNtBJXWADdSVyhV3zXJSg3CRTTl-klE0Vkr1IdkhnrTQ==
age: 18597
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1268 x 614, 8-bit/color RGBA, non-interlaced\012- data
Size:   217151
Md5:    4b3df1319bcd0137e4d14095bc315355
Sha1:   f3497608e28d66c0d4915350f323806e5496f3cc
Sha256: cd2a8d69dec540aec3a31f73f97bfcc372a867b38b03275a91f2f893b1021b54
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtm.js?id=GTM-KMJ7D77 HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.168
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 15:09:26 GMT
expires: Tue, 04 Oct 2022 15:09:26 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 106320
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (53306)
Size:   106320
Md5:    db44b9e7adf73746f3904cc474a023c7
Sha1:   e83726cb3aceb8c4adafd305ba2828255a035a5c
Sha256: b55feee37a62f0e27b961a94c7422563dacdec91b8db2248ec618d30952b0b8b
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /vtn4rfaw6n2j/7dc8wUxeIQOy3C03hwPXEk/945c8d63d33a3d3ee7eb5f83d7178457/Form-Bkgd.svg HTTP/1.1 
Host: images.ctfassets.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.77
HTTP/2 200 OK
content-type: image/svg+xml
                                        
last-modified: Tue, 20 Sep 2022 22:05:11 GMT
server: Contentful Images API
access-control-allow-origin: *
content-encoding: gzip
date: Tue, 04 Oct 2022 00:17:48 GMT
cache-control: max-age=31536000
etag: W/"0ce3dce6c72e703b518eee2ff86a39b5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bLspgPIdcvY6xpGV9BfqBUzqmc0cCKZPFFm5--AHVNAnhhmxzfInyA==
age: 53499
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   26520
Md5:    3dfba8066f3509151efb2f2b6e1dbfab
Sha1:   8ce40729bd552c6480cce0a47a82d931e5438e2e
Sha256: 22c08924c0018dad77c0b664a20be1e82f1487b285b58a2225bf04ff094a9de9
                                        
                                            GET /ads/pixel.js HTTP/1.1 
Host: www.redditstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.140
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Tue, 19 Jul 2022 22:48:09 GMT
etag: "95212d33cfff78ad59f5af5b20c48c53"
cache-control: public, max-age=60
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 04 Oct 2022 15:09:27 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (25224)
Size:   7722
Md5:    95212d33cfff78ad59f5af5b20c48c53
Sha1:   9b99a4091a6eb716bc68f1428e3c86eca068b25b
Sha256: bd69f250efa08cb2c0a06c35d91fda762779820d87779019c25211f4559ebb1d
                                        
                                            POST /api/1511832/envelope/?sentry_key=eabd2693e5f249f7b2efa8713258073b&sentry_version=7 HTTP/1.1 
Host: sentry.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.cloudbees.com/
Content-Type: text/plain;charset=UTF-8
Origin: https://www.cloudbees.com
Content-Length: 423
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         35.188.42.15
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Server: nginx
Date: Tue, 04 Oct 2022 15:09:27 GMT
Content-Length: 2
Connection: keep-alive
access-control-allow-origin: https://www.cloudbees.com
access-control-expose-headers: x-sentry-error, x-sentry-rate-limits, retry-after
vary: Origin
x-envoy-upstream-service-time: 0
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   2
Md5:    99914b932bd37a50b983c5e7c90ae93b
Sha1:   bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
Sha256: 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
                                        
                                            GET /js/forms2/js/forms2.min.js HTTP/1.1 
Host: build.cloudbees.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

                                         
                                         104.17.72.206
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Tue, 04 Oct 2022 15:09:27 GMT
last-modified: Fri, 23 Sep 2022 03:38:03 GMT
etag: "98056b-33e51-5e94fe7bfc0e8"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
expires: Tue, 04 Oct 2022 19:09:27 GMT
cache-control: public, max-age=14400
set-cookie: __cf_bm=NLAG8o2sBpe6bin9NRoCVZ1SL_puhOFwxrkZZWQE8ws-1664896167-0-AQegEgtmY79bKv40v1OC8E/y6hkaKcMTsRoTKbRq3waswwf89fRYRtX2X/opBui0x6a8A10E6IRc1ATmQ70pX9w=; path=/; expires=Tue, 04-Oct-22 15:39:27 GMT; domain=.build.cloudbees.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 754ed6b4f9d1b529-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   148045
Md5:    13ae1d9121a560663811a925706786f1
Sha1:   3925ff4c277f19784f3da9829090384511619ff1
Sha256: 867e12ba6868914f2fa70a6e954da7e76444236861029a131cad84b4cffe416e
                                        
                                            GET /scripts/bizible.js?account=cloudbees.com HTTP/1.1 
Host: cdn.bizible.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         152.195.15.58
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
age: 64408
cache-control: max-age=86400
date: Tue, 04 Oct 2022 15:09:27 GMT
etag: "8f3894264d7d81:0+gzip"
last-modified: Mon, 03 Oct 2022 20:11:02 GMT
server: ECS (ska/F711)
vary: Accept-Encoding
x-cache: HIT
content-length: 25492
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (576)
Size:   25492
Md5:    0a9fc627ff207aedb7310a49b4824045
Sha1:   f01898c5276d8d7eb6d2d03569eb6babb0c6d679
Sha256: c4675ab0eec9c7146726ae1b2087beb47e6807be559456b9a688863d188d8530
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /activityi;src=10238004;type=pagev0;cat=edrca0;ord=6256836342381;gtm=2wg9s0;auiddc=1613196776.1664896167;~oref=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management? HTTP/1.1 
Host: 10238004.fls.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.70
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 15:09:27 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 375
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 04-Oct-2022 15:24:27 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (482), with no line terminators
Size:   375
Md5:    c502f16072d1fe36ceb4e91daf837d3d
Sha1:   08f764099ba2e3aab5e9f2dca1d1dbea008f5ea3
Sha256: 13354d1afed62ab4987e6114c3bc14501921dc6c9ebbc46b6fbcc288824c00f6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            OPTIONS /spaces/vtn4rfaw6n2j/environments/master/entries?content_type=route&select=fields.url%2Cfields.resourceThankYouPage%2Csys.id%2Csys.type&fields.url%5Bin%5D=%2Fcapabilities%2Ffeature-management&limit=1 HTTP/1.1 
Host: cdn.contentful.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,x-contentful-user-agent
Origin: https://www.cloudbees.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.49
HTTP/2 204 No Content
                                        
x-content-type-options: nosniff
server: Contentful
x-contentful-region: us-east-1
access-control-allow-origin: *
access-control-allow-headers: Accept,Accept-Language,Authorization,Cache-Control,Content-Length,Content-Range,Content-Type,DNT,Destination,Expires,If-Match,If-Modified-Since,If-None-Match,Keep-Alive,Last-Modified,Origin,Pragma,Range,User-Agent,X-Http-Method-Override,X-Mx-ReqToken,X-Requested-With,X-Contentful-Version,X-Contentful-Content-Type,X-Contentful-Organization,X-Contentful-Skip-Transformation,X-Contentful-User-Agent,X-Contentful-Enable-Alpha-Feature
access-control-expose-headers: Etag
access-control-max-age: 86400
access-control-allow-methods: GET,HEAD,OPTIONS
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 04 Oct 2022 15:09:27 GMT
age: 0
x-served-by: cache-ewr18180-EWR, cache-bma1672-BMA
x-cache-hits: 0, 0
x-timer: S1664896168.543032,VS0,VE100
x-cache: MISS
x-contentful-request-id: a7d3b8e4-b4ec-4652-9421-6c8045044548
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ddm/fls/i/src=10238004;type=pagev0;cat=edrca0;ord=6256836342381;gtm=2wg9s0;auiddc=1613196776.1664896167;~oref=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management HTTP/1.1 
Host: adservice.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://10238004.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.2
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 15:09:27 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 375
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (481), with no line terminators
Size:   375
Md5:    1e5cf144033328d7671f7b3715064717
Sha1:   242d6ea0e0d8cf032bf362b9c02bf5dce56a7d85
Sha256: 494bd8c1df645eb05261082d9d46d93b35b23abcf865b016593ec00c769d0aa2
                                        
                                            GET /li.lms-analytics/insight.min.js HTTP/1.1 
Host: snap.licdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.36.76.210
HTTP/2 200 OK
content-type: application/x-javascript;charset=utf-8
                                        
last-modified: Fri, 12 Aug 2022 20:23:36 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=50493
date: Tue, 04 Oct 2022 15:09:27 GMT
content-length: 3063
x-cdn: AKAM
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (7751)
Size:   3063
Md5:    57efbbeb3e1d23c82b677511c67c8b0e
Sha1:   f927ba115ef4be362694c22850ddbdd1c1b054d1
Sha256: 873b38d80c8ff1ffcac23ecdb7fb2d17413ae3c217236d8e1e24574b1c4707c6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /spaces/vtn4rfaw6n2j/environments/master/entries?content_type=route&select=fields.url%2Cfields.resourceThankYouPage%2Csys.id%2Csys.type&fields.url%5Bin%5D=%2Fcapabilities%2Ffeature-management&limit=1 HTTP/1.1 
Host: cdn.contentful.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Contentful-User-Agent: sdk contentful.js/0.0.0-determined-by-semantic-release; platform browser; os Linux;
Authorization: Bearer YLDUtos1GuP-Ul4M0jRS_6Z6p9g2sNsfW2Tmy4QoHLM
Origin: https://www.cloudbees.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         151.101.86.49
HTTP/2 200 OK
content-type: application/vnd.contentful.delivery.v1+json
                                        
cf-environment-id: master
cf-environment-uuid: e4f6b889-d611-4c14-aa7c-6865ede8f3d0
cf-organization-id: 1sWBCeNZ8pemk18oJQLAPV
cf-space-id: vtn4rfaw6n2j
etag: "16580635545019500766"
x-contentful-route: /spaces/:space/environments/:environment/entries
x-content-type-options: nosniff
contentful-api: cda
server: Contentful
x-contentful-region: us-east-1
access-control-allow-origin: *
access-control-allow-headers: Accept,Accept-Language,Authorization,Cache-Control,Content-Length,Content-Range,Content-Type,DNT,Destination,Expires,If-Match,If-Modified-Since,If-None-Match,Keep-Alive,Last-Modified,Origin,Pragma,Range,User-Agent,X-Http-Method-Override,X-Mx-ReqToken,X-Requested-With,X-Contentful-Version,X-Contentful-Content-Type,X-Contentful-Organization,X-Contentful-Skip-Transformation,X-Contentful-User-Agent,X-Contentful-Enable-Alpha-Feature
access-control-expose-headers: Etag
access-control-max-age: 86400
access-control-allow-methods: GET,HEAD,OPTIONS
via: 1.1 varnish, 1.1 varnish
contentful-cache: HIT
accept-ranges: bytes
date: Tue, 04 Oct 2022 15:09:27 GMT
age: 75440
x-served-by: cache-ewr18155-EWR, cache-bma1672-BMA
x-cache-hits: 1, 1
x-timer: S1664896168.657761,VS0,VE98
x-cache: HIT
x-contentful-request-id: f41299e8-09a6-4f6b-9dc0-fc05cc2373df
content-length: 274
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text
Size:   274
Md5:    0a8fb097147c23e6f8a96034af1bd853
Sha1:   cc091eee166bd986a5195af4d191dc2907155a8c
Sha256: f2bda9a136ab6563edd76cb17e77ffee381c8336f68f1223b7d6113141b640fc
                                        
                                            GET /analytics.js HTTP/1.1 
Host: www.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.174
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 04 Oct 2022 14:41:09 GMT
expires: Tue, 04 Oct 2022 16:41:09 GMT
cache-control: public, max-age=7200
age: 1698
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1325)
Size:   20039
Md5:    47e6f374ca946fddd5b59871b325736c
Sha1:   baa9282efc8785e84d247c3bff518eaa45f101c4
Sha256: 16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5636
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 15:09:27 GMT
Last-Modified: Tue, 04 Oct 2022 13:35:32 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /projects/7b6898f9-7116-4db8-87b7-8bceecf84112.js HTTP/1.1 
Host: cdn.mouseflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.139.128.11
HTTP/2 301 Moved Permanently
                                        
date: Tue, 04 Oct 2022 15:09:27 GMT
accept-ranges: bytes
content-length: 0
location: https://cdn.mouseflow.com/projects/7b6898f9-7116-4db8-87b7-8bceecf84112_eu.js
cache-control: max-age=86400
x-hw: 1664896167.cds002.sk1.hn,1664896167.cds208.sk1.c
x-hw-loc: https://cdn.mouseflow.com/projects/7b6898f9-7116-4db8-87b7-8bceecf84112.js
access-control-allow-origin: *
X-Firefox-Spdy: h2

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /uwt.js HTTP/1.1 
Host: static.ads-twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.84.157
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
last-modified: Tue, 30 Aug 2022 20:19:10 GMT
cache-control: no-cache
content-encoding: gzip
etag: "d4de8398858246712016031c834bb061+gzip+gzip"
accept-ranges: bytes
date: Tue, 04 Oct 2022 15:09:27 GMT
x-served-by: cache-iad-kcgs7200165-IAD, cache-bma1661-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15317
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57443), with no line terminators
Size:   15317
Md5:    1e9c4d503a9e162d8b549dc3d9c040e2
Sha1:   1fa99d7d7e878cdd45567af4b0c3c65542036c1d
Sha256: f936c0124c595fe5d0c7858277f3a5f3bd104de39d36ac92557501fa1dec8563
                                        
                                            GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-37TX6SE1FC&cid=804791070.1664896167&gtm=2oe9s0&aip=1&z=155778008 HTTP/1.1 
Host: www.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.3
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 15:09:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            GET /include/1664896200000/4naehny8xdn5.js HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
server: nginx
last-modified: Thu, 29 Sep 2022 20:51:31 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: SZ7PVWogM3kghIUVLb9s.OAFYbg7bx8h
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
date: Tue, 04 Oct 2022 15:09:27 GMT
cache-control: no-cache
etag: W/"061f8924f60ab9b3cf7fe7237e4f211f"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 17e7ALwrxr1JOVcUlFxyLcAcvdk_qZA5UtBSC0vQNcCGICXurbZpBA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   87342
Md5:    62564d4ae251488ee16b7cc587f3d2af
Sha1:   4ffc2038f4386998c5d575ba28292b5c951abe36
Sha256: 190261143447061a14ab696dd0bfc63165170974be270c8976fb083a44ff29f2
                                        
                                            GET /pagead/conversion_async.js HTTP/1.1 
Host: www.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.164
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Tue, 04 Oct 2022 15:09:27 GMT
expires: Tue, 04 Oct 2022 15:09:27 GMT
cache-control: private, max-age=3600
etag: 17557423932572341828
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15187
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1654)
Size:   15187
Md5:    8766c5a801f08afceca9b66ff9097e6a
Sha1:   ce7640d1d166eddeb9d40be642ec34652f790713
Sha256: f448f99b4ad9a9b50daa9c38054cf16ab2b9fcb5d83ddad60571fb6a8a432a99
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /activity;xsp=4962010;ord=6999796197528121? HTTP/1.1 
Host: pubads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.211.2
HTTP/2 200 OK
content-type: image/gif
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 15:09:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 04-Oct-2022 15:24:27 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5636
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 15:09:27 GMT
Last-Modified: Tue, 04 Oct 2022 13:35:32 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /event/v2/pixel.js HTTP/1.1 
Host: origin.acuityplatform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.110.25.90
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Server: nginx/1.14.0
Content-Length: 2159
Last-Modified: Wed, 03 Nov 2021 20:59:24 GMT
ETag: "6182f82c-86f"
Access-Control-Allow-Origin: *
Accept-Ranges: bytes
Date: Tue, 04 Oct 2022 15:09:27 GMT
Connection: keep-alive


--- Additional Info ---
Magic:  HTML document, ASCII text, with very long lines (2158)
Size:   2159
Md5:    443c7fbac7b639cf13dd7a7231665748
Sha1:   bfadb3d10f32292dff00be08bb385613d4bee79f
Sha256: 1823ed6d967b506b110a547735f2e4eae2279a4147925bab4da6e7d676175a5b
                                        
                                            GET /rp.gif?ts=1664896166846&id=t2_1o6awtgl&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=721be0c2-3432-45d5-95c9-be77e3c092c3&aaid=&em=&external_id=&idfa=&integration=gtm&opt_out=0&sh=1280&sw=1024&v=rdt_02c59ad6 HTTP/1.1 
Host: alb.reddit.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.140
HTTP/2 200 OK
content-type: image/gif
                                        
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
accept-ranges: bytes
date: Tue, 04 Oct 2022 15:09:27 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   42
Md5:    d89746888da2d9510b64a9f031eaecd5
Sha1:   d5fceb6532643d0d84ffe09c40c481ecdf59e15a
Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7440
Expires: Tue, 04 Oct 2022 17:13:27 GMT
Date: Tue, 04 Oct 2022 15:09:27 GMT
Connection: keep-alive

                                        
                                            GET /ddm/fls/i/src=10238004;type=pagev0;cat=edrca0;ord=6256836342381;gtm=2wg9s0;auiddc=1613196776.1664896167;~oref=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management HTTP/1.1 
Host: adservice.google.no
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.34
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 15:09:27 GMT
expires: Tue, 04 Oct 2022 15:09:27 GMT
cache-control: private, max-age=0
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 177
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size:   177
Md5:    9393b28661a65a763699c108887882eb
Sha1:   c237ba6491e6fb9ca57da33dd9d048ca8e86cfda
Sha256: 2bdce28c6fb3cb210861d4aba734ab7aedfc979a8fa273512a61d8cf8afc78b0
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7440
Expires: Tue, 04 Oct 2022 17:13:27 GMT
Date: Tue, 04 Oct 2022 15:09:27 GMT
Connection: keep-alive

                                        
                                            GET /css?family=Lato:300,400,700&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 15:09:27 GMT
date: Tue, 04 Oct 2022 15:09:27 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:53 GMT
age: 37594
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6315
Md5:    206fb65e75dbadf119512f71e0b78402
Sha1:   58ff0bf8ce7528b303d28bab01a80ad721705569
Sha256: 56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7440
Expires: Tue, 04 Oct 2022 17:13:27 GMT
Date: Tue, 04 Oct 2022 15:09:27 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11955
x-amzn-requestid: ce6bbe93-95b0-4b6e-a8bc-012796485e67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zcqb9FUtoAMF0WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b577f-59dc0a18523f900a059aa5df;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: tJwzKfs7HnQ7dVcINwnlzxTChXiEi4JPj8jrS8p5KhurRx_o3ZVOZQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
etag: "e2ea2ef6805e391c497e62e101e76a0bdecfce64"
age: 61109
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11955
Md5:    54b3ef7aa50273b78b59c24511b0c1f9
Sha1:   e2ea2ef6805e391c497e62e101e76a0bdecfce64
Sha256: 296e8954022d5160137b3e02ab5085a15cee7c23cd6d4ca61b36880706062457
                                        
                                            GET /scripttemplates/202208.1.0/otBannerSdk.js HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/javascript
                                        
date: Tue, 04 Oct 2022 15:09:28 GMT
content-length: 91152
content-encoding: gzip
content-md5: PoUkurh3GT3DbFeu3QcwyA==
last-modified: Fri, 02 Sep 2022 06:26:19 GMT
etag: 0x8DA8CAC0C067309
x-ms-request-id: 915f4702-c01e-008c-1d9f-be95bd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 13726
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754ed6ba08adb4f4-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   91152
Md5:    3e8524bab877193dc36c57aedd0730c8
Sha1:   1988cfdecc0b670f46074d84ec1afc10ac2704bd
Sha256: ab4cf72ac9525ecfddf3290112055a1be889fd65221b2a64ae4e78886697b052
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 62014
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9917
Md5:    d8c08f8066cc732de8befd6ccd629a95
Sha1:   22aab05208a01ae5def4d63dc145085630f57bcb
Sha256: f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb412b7-1bf6-4a48-b9f1-b171f540e434.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4151
x-amzn-requestid: f709a11e-cbea-4965-8502-94ddbd8768bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvSF3YIAMFdow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-29bfa31d51e8f60b38136dba;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7H1QKlOtoBoVz93G5lddxHSGiTjtMnHJCZX5FhwqhNPkspslaDoFQA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:57:01 GMT
age: 61947
etag: "c20f1fac9020eb4bd6c84583f73872979639b991"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4151
Md5:    24a4a122273ef9f772852031eb13114a
Sha1:   c20f1fac9020eb4bd6c84583f73872979639b991
Sha256: 8e1ffbed5f156637ed2f22e81d03f6d85eff0c28237c1639ea5f977e92ee7b70
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7439
Expires: Tue, 04 Oct 2022 17:13:27 GMT
Date: Tue, 04 Oct 2022 15:09:28 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 61962
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4858
Md5:    6779181f9c06975f2a662da743893939
Sha1:   585e7146fd24cdc2496b05baafea04091dc541e2
Sha256: 8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 60009
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5504
Md5:    6c6882c60d7ca6f918c77104e3ad1d52
Sha1:   20ef861be49c652a938e0145e4ca3a60159367e2
Sha256: 861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3491
Cache-Control: max-age=160999
Date: Tue, 04 Oct 2022 15:09:28 GMT
Etag: "633c10ed-13a"
Expires: Thu, 06 Oct 2022 11:52:47 GMT
Last-Modified: Tue, 04 Oct 2022 10:54:37 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 314

                                        
                                            POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-15819681-1&cid=804791070.1664896167&jid=1478144888&gjid=1885176436&_gid=1238193657.1664896167&_u=YADAAAAAAAAAAC~&z=992894177 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.cloudbees.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         74.125.131.154
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin: https://www.cloudbees.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 04 Oct 2022 15:09:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   4
Md5:    48c0473b7821185d937e685216e2168b
Sha1:   3743e47f8a429a5e87b86cb582d78940733d9d2e
Sha256: 570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
                                        
                                            GET /consent/30e8c8b5-5f2b-4d72-a544-f68ac4b5ebe8/d9c5c2cc-39be-44da-8ae8-1d7eca0538f9/en.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cloudbees.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/x-javascript
                                        
date: Tue, 04 Oct 2022 15:09:28 GMT
content-length: 19961
cache-control: public, max-age=14400
content-encoding: gzip
content-md5: Ft+QnjhcalLNxQOKkWs26Q==
last-modified: Wed, 31 Aug 2022 18:51:08 GMT
etag: 0x8DA8B81C47DE7E0
x-ms-request-id: f733a2b4-a01e-0139-744b-bede17000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 8475
expires: Tue, 04 Oct 2022 19:09:28 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754ed6baaca30b45-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , Unicode text, UTF-8 text, with very long lines (65524), with no line terminators
Size:   19961
Md5:    16df909e385c6a52cdc5038a916b36e9
Sha1:   e53d52b844f32b677ad2d83ded142e57e0ea1216
Sha256: 989ff2bc36426bfc22884c1ff1e2037076212d595dd25ea87fc1451a02f64a1a
                                        
                                            GET /collect?v=2&fmt=js&pid=886540&time=1664896167229&url=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&tm=gtmv2 HTTP/1.1 
Host: px.ads.linkedin.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         13.107.42.14
HTTP/2 200 OK
content-type: application/javascript
                                        
set-cookie: lang=v=2&lang=en-us; Domain=ads.linkedin.com; Path=/; Secure; SameSite=None bcookie="v=2&a2d07312-aa4e-4b34-83b5-af4c35298eb7"; Domain=.linkedin.com; Expires=Wed, 04-Oct-2023 15:09:28 GMT; Path=/; Secure; SameSite=None li_gc=MTswOzE2NjQ4OTYxNjg7MjswMjEbrS99ufl4xgm/VWGGHvag8vPJmJ+XURFu7NeNypPsCw==; Domain=.linkedin.com; Expires=Sun, 02 Apr 2023 15:09:28 GMT; Path=/; Secure; SameSite=None lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2401:u=1:x=1:i=1664896168:t=1664982568:v=2:sig=AQFikr61tnUxfVFHxm8yBqc-dFNxmA_s"; Expires=Wed, 05 Oct 2022 15:09:28 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXqNtivyVSUnoVrZlDuTQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 464759345D014D1E99E870F65F31C1AF Ref B: OSL30EDGE0321 Ref C: 2022-10-04T15:09:28Z
date: Tue, 04 Oct 2022 15:09:27 GMT
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            POST /g/collect?v=2&tid=G-37TX6SE1FC&cid=804791070.1664896167&gtm=2oe9s0&aip=1 HTTP/1.1 
Host: stats.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

                                         
                                         74.125.131.154
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: null
date: Tue, 04 Oct 2022 15:09:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            POST /g/collect?v=2&tid=G-37TX6SE1FC&gtm=2oe9s0&_p=1209666551&_gaz=1&cid=804791070.1664896167&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&dl=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&sid=1664896167&sct=1&seg=0&dt=Feature%20Management&en=page_view&_fv=1&_nsi=1&_ss=1&ep.page_category=capabilities HTTP/1.1 
Host: region1.analytics.google.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: null
date: Tue, 04 Oct 2022 15:09:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=6f5b8de1-586b-4818-ae89-0022d11c0d49&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=19b99ba7-614e-4fbc-a04f-71b83df1cbc2&tw_document_href=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&tw_iframe_status=0&txn_id=nva8a&type=javascript&version=2.3.27 HTTP/1.1 
Host: t.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.244.42.5
HTTP/2 200 OK
content-type: image/gif;charset=utf-8
                                        
date: Tue, 04 Oct 2022 15:09:27 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=2103ae41-24cc-46a0-a745-c7151780a352; Max-Age=63072000; Expires=Thu, 03 Oct 2024 15:09:28 GMT; Path=/; Domain=t.co; Secure; SameSite=None
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 165f82e182b4c08f
strict-transport-security: max-age=0
x-response-time: 105
x-connection-hash: 81ca5cce9005bdd2025d81c62a7f8a8562228b5f74b53c44472e92c3861b517d
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    377d257f2d2e294916143c069141c1c5
Sha1:   b7cae69682cf31dd670b65088db8395acda6ed3e
Sha256: ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
                                        
                                            GET /scripttemplates/202208.1.0/assets/otFlat.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cloudbees.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 04 Oct 2022 15:09:28 GMT
content-length: 3007
content-encoding: gzip
content-md5: ivRWEcgBmKISMHohZLmqHg==
last-modified: Fri, 02 Sep 2022 06:26:11 GMT
etag: 0x8DA8CAC07455974
x-ms-request-id: 715a24db-601e-006f-40b0-be7032000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 8474
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754ed6bb7d780b45-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (11118)
Size:   3007
Md5:    8af45611c80198a212307a2164b9aa1e
Sha1:   eac47167b59a2e19bdd9dd5a0a02ac53ad4c621b
Sha256: e2dd96d688e49517a66d81daaeea756307a911a99b2682d8772ce3d20d68ca2e
                                        
                                            GET /scripttemplates/202208.1.0/assets/v2/otPcCenter.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cloudbees.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 04 Oct 2022 15:09:28 GMT
content-length: 13334
content-encoding: gzip
content-md5: 21cHQ6etMkoj8lO7BcUj3Q==
last-modified: Fri, 02 Sep 2022 06:26:13 GMT
etag: 0x8DA8CAC08E9A378
x-ms-request-id: 450e2cfc-b01e-0044-39b0-be048a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 8474
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754ed6bb8d7d0b45-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (51786)
Size:   13334
Md5:    db570743a7ad324a23f253bb05c523dd
Sha1:   38e66cd22a9812e1c9c9ee6a847c17f70c0e6af0
Sha256: 61b52736adc82c5ed804e23861c62a6a216f30457e02d3a74418777e9f83958e
                                        
                                            GET /scripttemplates/202208.1.0/assets/otCookieSettingsButton.json HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cloudbees.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 04 Oct 2022 15:09:28 GMT
content-length: 1767
content-encoding: gzip
content-md5: HAaeEWh/bRaDPkKeeaGcaA==
last-modified: Fri, 02 Sep 2022 06:26:13 GMT
etag: 0x8DA8CAC089D3C7A
x-ms-request-id: a8a78fbe-d01e-0039-0bc2-be9842000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 8474
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754ed6bb8d7f0b45-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (3079)
Size:   1767
Md5:    1c069e11687f6d16833e429e79a19c68
Sha1:   6f7716ba979bf532598aa7c0831d935d63bf0856
Sha256: 9de56f234f98aa220da4726a30507b736fe35212f94dfaf0ae33cc6527a33e8e
                                        
                                            GET /logos/static/ot_logo.png HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 15:09:28 GMT
content-length: 13077
content-md5: 8WyO+79CLtcTX81zrcTfgg==
last-modified: Tue, 04 Oct 2022 02:35:35 GMT
etag: 0x8DAA5B11E185E24
x-ms-request-id: 802591c2-501e-00ab-4aba-d70ff4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5112
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754ed6bc3c83b4f4-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 496 x 136, 8-bit/color RGBA, non-interlaced\012- data
Size:   13077
Md5:    f16c8efbbf422ed7135fcd73adc4df82
Sha1:   79d9f3c7d3f43eefc059f0a18642a09c195eb135
Sha256: 61e7a7943f7444e87b2af6295044b34292a537a23dd3d9436886e3a2ccf620ca
                                        
                                            GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1 
Host: cdn.cookielaw.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         104.16.149.64
HTTP/2 200 OK
content-type: image/svg+xml
                                        
date: Tue, 04 Oct 2022 15:09:28 GMT
content-md5: LpuayL42jB78xRllx0vkOw==
last-modified: Tue, 04 Oct 2022 02:35:35 GMT
x-ms-request-id: b03a2b09-001e-0056-279f-d73096000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 5158
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 754ed6bc3c89b4f4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (57123), with CRLF line terminators
Size:   56885
Md5:    776f36d1b90ead5321ca5a774c431c0b
Sha1:   40a18ecdb2503d3986514319283dccf6e0088568
Sha256: 90fed9fdf28778bf20988f95b50819358317286b4eb35bd13a76d0ccc5b32c61
                                        
                                            GET /pagead/viewthroughconversion/982065192/?random=1664896167334&cv=9&fst=1664896167334&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2wg9s0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&tiba=Feature%20Management&auid=1613196776.1664896167&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 
Host: googleads.g.doubleclick.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.162
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 04 Oct 2022 15:09:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1029
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 04-Oct-2022 15:24:28 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2244), with no line terminators
Size:   1029
Md5:    daaad8f897f46a49595dc2d319c9e367
Sha1:   06d078fefe6ba30e58dd2b4b0dd03f08132d3693
Sha256: a7022dd405f8b38d5d7bc814b3a70f56f7ab33fe3a5aa5d4429b8bae3ce1c0d2
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4573
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 15:09:28 GMT
Last-Modified: Tue, 04 Oct 2022 13:53:15 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 313

                                        
                                            GET /js/forms2/css/forms2.css HTTP/1.1 
Host: build.cloudbees.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _gcl_au=1.1.1613196776.1664896167; __cf_bm=NLAG8o2sBpe6bin9NRoCVZ1SL_puhOFwxrkZZWQE8ws-1664896167-0-AQegEgtmY79bKv40v1OC8E/y6hkaKcMTsRoTKbRq3waswwf89fRYRtX2X/opBui0x6a8A10E6IRc1ATmQ70pX9w=; _rdt_uuid=1664896166845.721be0c2-3432-45d5-95c9-be77e3c092c3; _biz_uid=fc8708f114cf434edcab6a34e6e7bf0e; _biz_sid=66be69; _biz_nA=1; _biz_pendingA=%5B%22m%2Fipv%3F_biz_r%3D%26_biz_h%3D-1777624096%26_biz_u%3Dfc8708f114cf434edcab6a34e6e7bf0e%26_biz_s%3D66be69%26_biz_l%3Dhttps%253A%252F%252Fwww.cloudbees.com%252Fcapabilities%252Ffeature-management%26_biz_t%3D1664896166923%26_biz_i%3DFeature%2520Management%26_biz_n%3D0%26a%3Dcloudbees.com%26rnd%3D804266%22%5D; _ga_37TX6SE1FC=GS1.1.1664896167.1.0.1664896167.60.0.0; _ga=GA1.2.804791070.1664896167; _gid=GA1.2.1238193657.1664896167; _gat_UA-15819681-1=1; _gat_UA-15819681-12=1; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Oct+04+2022+15%3A09%3A27+GMT%2B0000+(Coordinated+Universal+Time)&version=202208.1.0&isIABGlobal=false&hosts=&landingPath=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0; BIGipServerab44web-nginx-app_https=!fjA1VDQ092imlDbn/+ZT2Dlakae2C+NOz0Q9J//WuZe6Se+XkpLe3HBVGPkPoR7z196X5mf5kdKATyI=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.17.72.206
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 04 Oct 2022 15:09:28 GMT
content-length: 2623
strict-transport-security: max-age=31536000; includeSubDomains
last-modified: Tue, 16 Aug 2022 18:54:37 GMT
etag: "9803f2-3437-5e66047a81540"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
expires: Tue, 04 Oct 2022 19:09:28 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 754ed6bd6df7b529-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   2623
Md5:    f00b296d6b75c4cb41395d5027816788
Sha1:   4c597dffc151d27797f4b0400566c0c4b200b648
Sha256: 199ea547c2ebe6b4636754c63187248c951db0ffcaa316d2783fef8f4e3dba8e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.22
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Tue, 04 Oct 2022 15:09:28 GMT
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 03 Oct 2022 23:03:26 GMT
Expires: Tue, 04 Oct 2022 23:03:26 GMT
ETag: "bbfddb4cebc68e4c14d18d9f50959ffee0b3bf13"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1777
Md5:    b098684c2563c9d4ff6ed4965ef1a4f0
Sha1:   bbfddb4cebc68e4c14d18d9f50959ffee0b3bf13
Sha256: df1cb1f9674243e210cbc6258b0e333f9e228a2f536a8fce33e6d749fba07d56
                                        
                                            GET /pj?pk=5090585028271012226&pu=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management HTTP/1.1 
Host: e.acuityplatform.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         154.59.122.94
HTTP/1.1 204 No Content
                                        
Set-Cookie: auid=697035362279; Domain=acuityplatform.com; Expires=Wed, 04-Oct-2023 15:09:28 GMT; Path=/; SameSite=None; Secure
Access-Control-Allow-Origin: *

                                        
                                            GET /1/i/adsct?bci=4&eci=3&event=%7B%7D&event_id=6f5b8de1-586b-4818-ae89-0022d11c0d49&integration=gtm&p_id=Twitter&p_user_id=0&pl_id=19b99ba7-614e-4fbc-a04f-71b83df1cbc2&tw_document_href=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&tw_iframe_status=0&txn_id=nva8a&type=javascript&version=2.3.27 HTTP/1.1 
Host: analytics.twitter.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.244.42.67
HTTP/2 200 OK
content-type: image/gif;charset=utf-8
                                        
date: Tue, 04 Oct 2022 15:09:28 GMT
perf: 7626143928
server: tsa_o
set-cookie: guest_id_marketing=v1%3A166489616865754336; Max-Age=63072000; Expires=Thu, 03 Oct 2024 15:09:28 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None guest_id_ads=v1%3A166489616865754336; Max-Age=63072000; Expires=Thu, 03 Oct 2024 15:09:28 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None personalization_id="v1_kdzNQbLVP+6VEv7qg6sK3Q=="; Max-Age=63072000; Expires=Thu, 03 Oct 2024 15:09:28 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None guest_id=v1%3A166489616865754336; Max-Age=63072000; Expires=Thu, 03 Oct 2024 15:09:28 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: d7576834d5cc88aa
strict-transport-security: max-age=631138519
x-response-time: 102
x-connection-hash: 78182ea1fca49e9ab98b29afa74bbd243dc04726a64359f0dc3dc992183256ae
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    377d257f2d2e294916143c069141c1c5
Sha1:   b7cae69682cf31dd670b65088db8395acda6ed3e
Sha256: ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
                                        
                                            GET /init?v=17.70&p=7b6898f9-7116-4db8-87b7-8bceecf84112&s=baeb50a44e1e414dd3c55d7e7840c106&page=100428246692d99b138a6d1a22dfc76c50a4546f&ret=0&u=0ddcac467c68d5393d8014b9a514aac2&href=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&url=%2Fcapabilities%2Ffeature-management&ref=&title=Feature%20Management&res=1280x1024&tz=0&to=0&dnt=0&ori=&dw=1268&dh=939&time=2316&pxr=1&gdpr=1 HTTP/1.1 
Host: n2.mouseflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Origin: https://www.cloudbees.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.96.202.199
HTTP/2 200 OK
content-type: text/plain; charset=Windows-1252
                                        
date: Tue, 04 Oct 2022 15:09:28 GMT
content-length: 0
cache-control: no-cache
pragma: no-cache
expires: -1
access-control-allow-credentials: true
access-control-allow-origin: https://www.cloudbees.com
server: Mouseflow
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

                                        
                                            GET /js/forms2/css/forms2-theme-round.css HTTP/1.1 
Host: build.cloudbees.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _gcl_au=1.1.1613196776.1664896167; __cf_bm=NLAG8o2sBpe6bin9NRoCVZ1SL_puhOFwxrkZZWQE8ws-1664896167-0-AQegEgtmY79bKv40v1OC8E/y6hkaKcMTsRoTKbRq3waswwf89fRYRtX2X/opBui0x6a8A10E6IRc1ATmQ70pX9w=; _rdt_uuid=1664896166845.721be0c2-3432-45d5-95c9-be77e3c092c3; _biz_uid=fc8708f114cf434edcab6a34e6e7bf0e; _biz_sid=66be69; _biz_nA=1; _biz_pendingA=%5B%22m%2Fipv%3F_biz_r%3D%26_biz_h%3D-1777624096%26_biz_u%3Dfc8708f114cf434edcab6a34e6e7bf0e%26_biz_s%3D66be69%26_biz_l%3Dhttps%253A%252F%252Fwww.cloudbees.com%252Fcapabilities%252Ffeature-management%26_biz_t%3D1664896166923%26_biz_i%3DFeature%2520Management%26_biz_n%3D0%26a%3Dcloudbees.com%26rnd%3D804266%22%5D; _ga_37TX6SE1FC=GS1.1.1664896167.1.0.1664896167.60.0.0; _ga=GA1.2.804791070.1664896167; _gid=GA1.2.1238193657.1664896167; _gat_UA-15819681-1=1; _gat_UA-15819681-12=1; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Oct+04+2022+15%3A09%3A27+GMT%2B0000+(Coordinated+Universal+Time)&version=202208.1.0&isIABGlobal=false&hosts=&landingPath=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0; BIGipServerab44web-nginx-app_https=!fjA1VDQ092imlDbn/+ZT2Dlakae2C+NOz0Q9J//WuZe6Se+XkpLe3HBVGPkPoR7z196X5mf5kdKATyI=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         104.17.72.206
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 04 Oct 2022 15:09:29 GMT
content-length: 968
last-modified: Tue, 16 Aug 2022 18:54:37 GMT
etag: "1ac03b5-e46-5e66047a81540"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
expires: Tue, 04 Oct 2022 19:09:29 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 754ed6bd7e04b529-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   968
Md5:    ad9ad865b53076bac0659c81dbae41de
Sha1:   89ca845bc33af5c005fa019aa63ac443c8cd50f1
Sha256: f3fe3e6ac7ecb60a1f92c0aa76f9e598ce27748337ddfd8a21ffac12929201ca
                                        
                                            GET /js/forms2/images/arrow-down-bk.png HTTP/1.1 
Host: build.cloudbees.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://build.cloudbees.com/js/forms2/css/forms2-theme-round.css
Cookie: _gcl_au=1.1.1613196776.1664896167; __cf_bm=NLAG8o2sBpe6bin9NRoCVZ1SL_puhOFwxrkZZWQE8ws-1664896167-0-AQegEgtmY79bKv40v1OC8E/y6hkaKcMTsRoTKbRq3waswwf89fRYRtX2X/opBui0x6a8A10E6IRc1ATmQ70pX9w=; _rdt_uuid=1664896166845.721be0c2-3432-45d5-95c9-be77e3c092c3; _biz_uid=fc8708f114cf434edcab6a34e6e7bf0e; _biz_sid=66be69; _biz_nA=1; _biz_pendingA=%5B%22m%2Fipv%3F_biz_r%3D%26_biz_h%3D-1777624096%26_biz_u%3Dfc8708f114cf434edcab6a34e6e7bf0e%26_biz_s%3D66be69%26_biz_l%3Dhttps%253A%252F%252Fwww.cloudbees.com%252Fcapabilities%252Ffeature-management%26_biz_t%3D1664896166923%26_biz_i%3DFeature%2520Management%26_biz_n%3D0%26a%3Dcloudbees.com%26rnd%3D804266%22%5D; _ga_37TX6SE1FC=GS1.1.1664896167.1.0.1664896167.60.0.0; _ga=GA1.2.804791070.1664896167; _gid=GA1.2.1238193657.1664896167; _gat_UA-15819681-1=1; _gat_UA-15819681-12=1; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Oct+04+2022+15%3A09%3A27+GMT%2B0000+(Coordinated+Universal+Time)&version=202208.1.0&isIABGlobal=false&hosts=&landingPath=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0; BIGipServerab44web-nginx-app_https=!fjA1VDQ092imlDbn/+ZT2Dlakae2C+NOz0Q9J//WuZe6Se+XkpLe3HBVGPkPoR7z196X5mf5kdKATyI=; mf_7b6898f9-7116-4db8-87b7-8bceecf84112=baeb50a44e1e414dd3c55d7e7840c106|100428246692d99b138a6d1a22dfc76c50a4546f.-14464534428.1664896168034|1664896168024||0|||0|17.70|28.01458; mf_user=0ddcac467c68d5393d8014b9a514aac2|
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         104.17.72.206
HTTP/2 200 OK
content-type: image/png
                                        
date: Tue, 04 Oct 2022 15:09:29 GMT
content-length: 1045
last-modified: Tue, 16 Aug 2022 18:54:37 GMT
etag: "9803fd-415-5e66047a81540"
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
expires: Tue, 04 Oct 2022 15:10:29 GMT
cache-control: public, max-age=60
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754ed6c16b35b529-OSL
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 18 x 9, 8-bit/color RGBA, non-interlaced\012- data
Size:   1045
Md5:    011a792da25f271f20f3afb8a5da9db9
Sha1:   ba9a04abdd55b93de7cd23a8b5c586ed050d4584
Sha256: 56533e637a5c980ba4c1653ed7eea219cdbd2e86f1448c1aa38c538cb1f89285
                                        
                                            GET /tr/?id=458917537824611&ev=PageView&dl=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&rl=&if=false&ts=1664896168719&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664896168719.1258001589&it=1664896167347&coo=false&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.36
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Tue, 04 Oct 2022 15:09:29 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /tr/?id=392223348307895&ev=PageView&dl=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&rl=&if=false&ts=1664896168722&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1664896168719.1258001589&it=1664896167347&coo=false&rqm=GET HTTP/1.1 
Host: www.facebook.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         31.13.72.36
HTTP/2 200 OK
content-type: text/plain
                                        
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Tue, 04 Oct 2022 15:09:29 GMT
X-Firefox-Spdy: h2

                                        
                                            GET /m/ipv?_biz_r=&_biz_h=-1777624096&_biz_u=fc8708f114cf434edcab6a34e6e7bf0e&_biz_s=66be69&_biz_l=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&_biz_t=1664896166923&_biz_i=Feature%20Management&_biz_n=0&a=cloudbees.com&rnd=804266&cdn_o=a&_biz_z=1664896169073 HTTP/1.1 
Host: cdn.bizible.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.195.15.58
HTTP/2 200 OK
content-type: Image/GIF
                                        
accept-ranges: bytes
age: 246491
cache-control: no-cache, no-store
date: Tue, 04 Oct 2022 15:09:29 GMT
expires: -1
last-modified: Sat, 01 Oct 2022 18:41:18 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
pragma: no-cache
server: ECS (ska/F706)
set-cookie: _BUID=fc8708f114cf434edcab6a34e6e7bf0e; domain=.bizible.com; path=/; max-age=31536000; SameSite=None; Secure
x-cache: HIT
content-length: 43
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    6d22e4f2d2057c6e8d6fab098e76e80f
Sha1:   b80b11203d97fe01c5597ca3be70406ea48f5709
Sha256: afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
                                        
                                            GET /u?_biz_u=fc8708f114cf434edcab6a34e6e7bf0e&_biz_s=66be69&_biz_l=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&_biz_t=1664896169083&_biz_i=Feature%20Management&a=cloudbees.com&rnd=539229&cdn_o=a&_biz_z=1664896169083 HTTP/1.1 
Host: cdn.bizibly.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.195.15.58
HTTP/2 200 OK
content-type: Image/GIF
                                        
accept-ranges: bytes
age: 221695
cache-control: no-cache, no-store
date: Tue, 04 Oct 2022 15:09:29 GMT
expires: -1
last-modified: Sun, 02 Oct 2022 01:34:34 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
pragma: no-cache
server: ECS (ska/F70E)
set-cookie: _BUID=b8779539164f97dd854aa33762a2d4c6; domain=.bizibly.com; path=/; max-age=31536000; SameSite=None; Secure
x-cache: HIT
content-length: 43
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    6d22e4f2d2057c6e8d6fab098e76e80f
Sha1:   b80b11203d97fe01c5597ca3be70406ea48f5709
Sha256: afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
                                        
                                            GET /6si.min.js HTTP/1.1 
Host: j.6sc.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         23.14.5.116
HTTP/2 200 OK
content-type: application/javascript
                                        
accept-ranges: bytes
etag: "63360652-7700"
last-modified: Thu, 29 Sep 2022 20:55:46 GMT
pragma: no-cache
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cache-control: private, no-cache, proxy-revalidate
expires: Tue, 04 Oct 2022 15:09:29 GMT
date: Tue, 04 Oct 2022 15:09:29 GMT
content-length: 9869
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (30464), with no line terminators
Size:   9869
Md5:    38464864f877ada0b389fe8a6351aff3
Sha1:   5b7c93a98cb0dda7b384b3b3934565836886367e
Sha256: 734af076269c4367d8366ddf2103db9f429c32bccd5eb0a72d6c9ebdd394dae2
                                        
                                            GET / HTTP/1.1 
Host: c.6sc.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cloudbees.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.14.5.116
HTTP/2 200 OK
content-type: text/html
                                        
content-length: 7
date: Tue, 04 Oct 2022 15:09:29 GMT
access-control-allow-origin: https://www.cloudbees.com
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   7
Md5:    d97623d172f087d9640da9acd38830ff
Sha1:   515bd358bb7d990930f0e2b3de399db1787a2567
Sha256: fe04a9dc88d3f3be8d4f6bc63a9a80f45a4c6d8460e7551dab849457c091920a
                                        
                                            GET /core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684 HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
server: nginx
last-modified: Thu, 29 Sep 2022 20:51:19 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: BJ7ODUpgQdFjia3.ffmSednvEtJZqE1u
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
date: Tue, 04 Oct 2022 15:09:29 GMT
cache-control: no-cache
etag: W/"4519713053ff4f339d5ff27dec4ce009"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K7l_kvF4f9ofFar0D-hhffGFQRkoG6vFOvzVRWvMpkKvZYDersMQTw==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   86529
Md5:    5a51c98a2bb81090c9fcceb7a23fcc05
Sha1:   6ff13730c11d75b36d1df2319da4e6b5ca80006d
Sha256: 7d5551316c79d8585e270dda85ced94df58a1ff6a5df0e1e613996abd26f57e1
                                        
                                            GET /core/assets/js/13.3e86f1f6.chunk.js HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
content-length: 92674
date: Sat, 03 Sep 2022 02:20:14 GMT
server: nginx
last-modified: Thu, 01 Sep 2022 13:18:43 GMT
etag: "fdee1a560ca08e3d3702e14d8f1f0b82"
x-amz-server-side-encryption: AES256
x-amz-version-id: tL0mO7lwTQOm1OEDR9eN1LSlBkEAt593
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ptVrYdx_BQCLxgXfwYH_P7LFw-PDqtSxoT5kihEPS4auBiWWAu429g==
age: 2724554
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   92674
Md5:    fdee1a560ca08e3d3702e14d8f1f0b82
Sha1:   aefcec40414215f0863e37cd16177fcd07f4dadb
Sha256: 81e6b4ec22135fd2056e29456e32539e21876266ab0bf8438b87117f70c0f827
                                        
                                            GET /xdc.js?_biz_u=fc8708f114cf434edcab6a34e6e7bf0e&_biz_h=-1777624096&cdn_o=a&jsVer=4.22.08.11&a=cloudbees.com HTTP/1.1 
Host: cdn.bizible.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _BUID=fc8708f114cf434edcab6a34e6e7bf0e
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         152.195.15.58
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: private, must-revalidate, max-age=21600
date: Tue, 04 Oct 2022 15:09:29 GMT
etag: 2DE22072
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
server: ECS (ska/F717)
set-cookie: ARRAffinity=990cce9c6722aa62758ad3e96c52c601158c7da520bf9d412b5f910c37c33aaf;Path=/;HttpOnly;Secure;Domain=acct.bizible.com ARRAffinitySameSite=990cce9c6722aa62758ad3e96c52c601158c7da520bf9d412b5f910c37c33aaf;Path=/;HttpOnly;SameSite=None;Secure;Domain=acct.bizible.com
content-length: 116
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  gzip compressed data, from Unix\012- data
Size:   86101
Md5:    a6f0ab8fcc88e7a72e251878b3276753
Sha1:   528e2af26c19436eb1f3e536dbe8addd891969f5
Sha256: 0b7fbd6d96841be69c1b6795f749903335714d2007b8048df3e83d6045325aef
                                        
                                            GET /core/assets/js/37.9da17c94.chunk.js HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
content-length: 11808
date: Fri, 02 Sep 2022 06:16:53 GMT
server: nginx
last-modified: Thu, 01 Sep 2022 13:18:44 GMT
etag: "e5c98ad7a7e70a1957477e33db39149c"
x-amz-server-side-encryption: AES256
x-amz-version-id: woU_NMwXT9PlBFgNTXSbQAfLwa5D1lHO
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: H5WP9HyU8lz2pPUsmtbnpyqu6kGoYgotgih8m5CYP_01b5_nAnPpXA==
age: 2796756
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (11808), with no line terminators
Size:   11808
Md5:    e5c98ad7a7e70a1957477e33db39149c
Sha1:   dc1d67efa32909c51c3a40a272b0c75a084d16f1
Sha256: 46959f0ff8db28a2e76b7bcd57953ead9ec578260c21cad5c5354a46f7890cf7
                                        
                                            GET /core/assets/css/17.22abfce0.chunk.css HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: text/css
                                        
content-length: 24
date: Tue, 30 Aug 2022 01:42:03 GMT
server: nginx
last-modified: Thu, 25 Aug 2022 21:13:13 GMT
etag: "0c5dad92482d9a7c7c253510f5082465"
x-amz-server-side-encryption: AES256
x-amz-version-id: 5UwSmZqQrlAmjqCNab6YwRajrlZZuPZ.
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jULBy388yr0j6eEjksv6jdCRwTnbhe8I_VdSUOOgM8sfHSA7rSbyVg==
age: 3072446
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   24
Md5:    0c5dad92482d9a7c7c253510f5082465
Sha1:   534b458f99b4d0bb90c2cf2c4bb3703ef44a52bf
Sha256: 5dbaf0a4ff0f8ac8c1b67550eee84390b089604ffaf71183e417636c7e183ac5
                                        
                                            GET /getuidj HTTP/1.1 
Host: secure.adnxs.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.cloudbees.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         37.252.173.22
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
                                        
Server: nginx/1.21.3
Date: Tue, 04 Oct 2022 15:09:29 GMT
Content-Length: 11
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.cloudbees.com
AN-X-Request-Uuid: 5e9f1051-c5d3-4ecb-b6b8-a3244a8075cb
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 536.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   11
Md5:    096dc398f48c9a61584478fea3ee50a1
Sha1:   7d0a5f87833db711b2eb52c73638c5e14538a969
Sha256: 31b45c462302ac175bfa43f9e5591491db780ca094f6ecdd2907f25ad578448d
                                        
                                            GET /core/assets/js/9.aec5ae1e.chunk.js HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 29 Sep 2022 20:51:18 GMT
server: nginx
last-modified: Thu, 29 Sep 2022 20:38:56 GMT
etag: W/"a6fea5b51572ff8b49ecfa51f1d6b222"
x-amz-server-side-encryption: AES256
x-amz-version-id: RcGjz84EopTVannwrQjbyu.XebyJ_Kcs
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SF-rn7OBK4K-xAjI0cusksBUNuoyTsjMUXF42DXCRjPcDT6o5fSkRQ==
age: 411491
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   23187
Md5:    9ef6934746ef9c207b4aef1459bcd80d
Sha1:   3ba8416b1629c1184c07e3e394606240a6d2dc90
Sha256: 3cfe27354667593cd3d465a4aad6a08b83032fc30abf4b9a3e4bb8b4c507646d
                                        
                                            GET /munchkin.js HTTP/1.1 
Host: munchkin.marketo.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         88.221.99.189
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Accept-Ranges: bytes
ETag: "92b41a298690c047b0c4602dd843cba4:1662686319.691662"
Last-Modified: Fri, 09 Sep 2022 01:18:39 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 04 Oct 2022 15:09:29 GMT
Content-Length: 728
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"


--- Additional Info ---
Magic:  ASCII text, with very long lines (521)
Size:   728
Md5:    51a92d8c69733d719447dea0416ed039
Sha1:   69f4c1e0b7ebba812bc096708d57627927dff265
Sha256: cb483c0ea4012ac512bcba6204b37622b388c1aefd4ae9028f60abb965f23d29
                                        
                                            GET /core?embedId=4naehny8xdn5&region=US&forceShow=false&skipCampaigns=false&sessionId=855a77ea-22d0-465d-84fe-6853ce9ef62f&sessionStarted=1664896169.06&campaignRefreshToken=8a851d2f-25e4-45ca-96e5-ee3258ab481d&hideController=false&pageLoadStartTime=1664896165684&mode=CHAT&driftEnableLog=false&secureIframe=false HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: text/html; charset=utf-8
                                        
server: nginx
last-modified: Thu, 29 Sep 2022 20:51:19 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: BJ7ODUpgQdFjia3.ffmSednvEtJZqE1u
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
date: Tue, 04 Oct 2022 15:09:29 GMT
cache-control: no-cache
etag: W/"4519713053ff4f339d5ff27dec4ce009"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DEzdUPtDTEPkyba9YlPbIM8zIifmXJJbMmcfPOOkDgplL4Htplp8iA==
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   14860
Md5:    dd374dda541f726083dabd726a09228e
Sha1:   c86e6001cb05ee6b18c8a8ab614208c12a0858ec
Sha256: 6056cf7aed2603c3d8e33fd5360f186a2d8626bdfe8b8131ddcfbb05782bc72e
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.39
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 15:09:30 GMT
Last-Modified: Tue, 04 Oct 2022 14:54:10 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: KKH0u_UH841IBgX--npsiAyaWNMqzTNcuWmFoZNS6rFDCzo0VMesng==
Age: 920

                                        
                                            GET /core/assets/js/15.1b3fbd8f.chunk.js HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 29 Sep 2022 20:51:18 GMT
server: nginx
last-modified: Thu, 29 Sep 2022 20:38:54 GMT
etag: W/"40d2b5d0a1ca426f433d694062189f6d"
x-amz-server-side-encryption: AES256
x-amz-version-id: 0ig3zFgrTOeUZfcfcGZ0S3T9s5CNCZUS
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dzoVt-oO0Hxn6kLrFP-BnQq3nNShfgzW7WwMiC1TCnNUcqorzyXy9g==
age: 411491
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   12846
Md5:    bfc6b3b79b16fdc9c21584691b02a5fc
Sha1:   11b1c33a2fb4580945e4a5e936a929759af903bb
Sha256: 917c414b8d9a250299bf94b23a3a6a2f8dd83fb10a14c581400c4951da445137
                                        
                                            GET /core/assets/js/0.0b2ebd4a.chunk.js HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         35.158.89.114
HTTP/2 200 OK
content-type: application/json
                                        
date: Tue, 04 Oct 2022 15:09:30 GMT
content-length: 257
server: nginx
access-control-allow-origin: https://www.cloudbees.com
access-control-allow-credentials: true
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9258), with no line terminators
Size:   2886
Md5:    f28a54867ea5d715161b25305b8d29ce
Sha1:   e3d0335b56a43191598eb664864be82cb88afd9c
Sha256: 1620d137b07402256587aa44213d3c1fcea1cf219bb962ed18bfe648295b76f5
                                        
                                            GET /core/assets/js/32.d5d47ece.chunk.js HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 27 Sep 2022 13:07:11 GMT
server: nginx
last-modified: Tue, 27 Sep 2022 12:54:37 GMT
etag: W/"eeddb065f27c76dc4eec2ca704676575"
x-amz-server-side-encryption: AES256
x-amz-version-id: wXCfB9nghzbvqtVACieGZDuOZ6xciMKI
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ggmSQzcoXwD2GLsIcQe2wxeXuNcy2d6ROsdGLx_JhuJ-C6gVpBVXGw==
age: 612139
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12566)
Size:   9148
Md5:    7f6390da8988f5c67a3b74e3ff45f43a
Sha1:   59b2f5816f5b3834525a285e360dad272394a613
Sha256: 9f4869e9862cc3a2a1c6862ae1db1b1509e296e3376e60037174d5bac8d80f51
                                        
                                            GET /core/assets/css/34.11d2b6a7.chunk.css HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: text/css
                                        
date: Tue, 06 Sep 2022 07:00:31 GMT
server: nginx
last-modified: Thu, 01 Sep 2022 13:18:42 GMT
etag: W/"87532c4db85f1429fa6d759bc3332f36"
x-amz-server-side-encryption: AES256
x-amz-version-id: rxRgEAXAQ8YU3stqfNk8baaCfNLByKA1
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qVanQHE6k4cG8vgoVKC4yb3okwf49Vf9xMBrTrsv2bT49xRDPLCmOg==
age: 2448539
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   3232
Md5:    680bac1f5bbd53d8f672caf28a8e0a65
Sha1:   2dde398b53532c6c12d3400b4bb87357a11a6051
Sha256: e165df1b3fa4140e5b4179c2d1855f90d987c9916971c1e07a5fc4f61bb8f38f
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6195
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 15:09:30 GMT
Last-Modified: Tue, 04 Oct 2022 13:26:15 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.39
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 15:09:30 GMT
Last-Modified: Tue, 04 Oct 2022 14:59:41 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 4a9PayA4d1m24R_op06Sgz7j9k_F3D2bX3T21G_xMSL4PRq6ZW6vFA==
Age: 589

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.39
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 15:09:30 GMT
Last-Modified: Tue, 04 Oct 2022 13:41:12 GMT
Server: ECS (bsa/EB17)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: mF2QhZOadoxDfxOl-sI2U4E-fKAtOoAgutAjUKfxwK2H_mzuGdkyfg==
Age: 5298

                                        
                                            GET /core/assets/css/3.07aa08a5.chunk.css HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: text/css
                                        
date: Fri, 30 Sep 2022 02:58:51 GMT
server: nginx
last-modified: Thu, 29 Sep 2022 20:45:23 GMT
etag: W/"189aeffd571884559dababa22c66d75a"
x-amz-server-side-encryption: AES256
x-amz-version-id: Bme3Ff3iPGc5WQiLnlmHV5B7d_GvIfWo
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5NaVD3kUMCBlQYd81HoQ97h2SekABq6Y8pwxjOTAclBhYguaCrZE2A==
age: 389439
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   27027
Md5:    e832f8c0d327fc47cd53689cefc2a924
Sha1:   deca6d08dc331c6aa5d59dd882db473649f85afd
Sha256: f5e454771693d1b8c177ff5726a4b06319dbf6e64633defecd53766b30acc3a0
                                        
                                            OPTIONS /monitoring/metrics/widget/init/v2 HTTP/1.1 
Host: metrics.api.drift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.147.21.139
HTTP/2 200 OK
content-type: text/plain
                                        
date: Tue, 04 Oct 2022 15:09:30 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
allow: POST,OPTIONS
requestid: drift52f1f5b49eea4fad781212d5929
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   13
Md5:    1424eb76249899d757e4d168341a50dc
Sha1:   42101e71440abd46c8112a96d4d5c0dd445120ce
Sha256: 16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
                                        
                                            GET /core/assets/js/main~493df0b3.36fddc5f.chunk.js HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 26 Sep 2022 18:51:29 GMT
server: nginx
last-modified: Mon, 26 Sep 2022 18:38:51 GMT
etag: W/"d67b9f21a56510a527a7f7537b00473f"
x-amz-server-side-encryption: AES256
x-amz-version-id: 9EnD3a2xqmtsRD1N0L0ke0M639lGWwZ6
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: stGoXFl7-EEQDdSbv5WX4uKPxjPsHj_-6_8bBzTSkqJLCCxl34Sy6A==
age: 677880
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   2067
Md5:    2f54b27db2049e934eea0c013e2b2b3e
Sha1:   798f3232db3bfcfb466dbba63e8576de51639447
Sha256: 10a581defbe80461396d811bc866bba641cf91c845d58d05db3848d29c4ecf52
                                        
                                            POST /monitoring/metrics/widget/init/v2 HTTP/1.1 
Host: metrics.api.drift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization:
Content-Length: 138
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.147.21.139
HTTP/2 200 OK
content-type: application/json;charset=utf-8
                                        
date: Tue, 04 Oct 2022 15:09:30 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
requestid: 6902c055922bf7fd
vary: Accept-Encoding
content-length: 25
x-envoy-upstream-service-time: 13
server: istio-envoy
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   25
Md5:    61228f8f544358e9ea1f463f01b5853c
Sha1:   582766f30c82dc2df6938c8e16455fa5e329afb1
Sha256: f8c91e009d219173c41b4c0b6e43ad28081f7580df6cb99a76aa0a476390ca47
                                        
                                            POST /html?website=7b6898f9-7116-4db8-87b7-8bceecf84112&session=baeb50a44e1e414dd3c55d7e7840c106&page=100428246692d99b138a6d1a22dfc76c50a4546f&gz=1 HTTP/1.1 
Host: n2.mouseflow.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 66645
Origin: https://www.cloudbees.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         192.96.202.199
HTTP/2 200 OK
content-type: text/plain; charset=Windows-1252
                                        
date: Tue, 04 Oct 2022 15:09:31 GMT
content-length: 0
cache-control: no-cache
pragma: no-cache
expires: -1
access-control-allow-credentials: true
access-control-allow-origin: https://www.cloudbees.com
server: Mouseflow
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2

                                        
                                            OPTIONS /widget_bootstrap/ping HTTP/1.1 
Host: bootstrap.api.drift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.147.21.139
HTTP/2 200 OK
content-type: text/plain
                                        
date: Tue, 04 Oct 2022 15:09:31 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
allow: POST,OPTIONS
requestid: drift85d7b384bc7852ddf06205416be
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   13
Md5:    1424eb76249899d757e4d168341a50dc
Sha1:   42101e71440abd46c8112a96d4d5c0dd445120ce
Sha256: 16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
                                        
                                            POST /widget_bootstrap/ping HTTP/1.1 
Host: bootstrap.api.drift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 96
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.147.21.139
HTTP/2 200 OK
content-type: application/json;charset=utf-8
                                        
date: Tue, 04 Oct 2022 15:09:31 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
requestid: 81f3bc6ff22d5362
vary: Accept-Encoding
content-length: 147
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   147
Md5:    235fcf8eb2e51db8bd39e2cc9682904f
Sha1:   51f81f4369e016ec23c8356828e01651d9fac531
Sha256: 3db0bece09106ab49586c1ebc1fca743d649037ed05bddf3d81a9ae87dadf890
                                        
                                            GET /v1/beacon/img.gif?token=ae91a7abd2376c44712fb1a7f8353686&svisitor=null&visitor=b505a8af-9aa8-41b8-8fc3-f619a85a3280&session=1774596e-3791-4abb-81ee-1e253b769924&event=active_time_track&q=%7B%22currentTime%22%3A%22Tue%2C%2004%20Oct%202022%2015%3A09%3A31%20GMT%22%2C%22lastTrackTime%22%3A%22Tue%2C%2004%20Oct%202022%2015%3A09%3A30%20GMT%22%2C%22timeSpent%22%3A%221002%22%2C%22totalTimeSpent%22%3A%222025%22%7D&isIframe=false&m=%7B%22description%22%3A%22Bring%20more%20innovation%20to%20market%20faster%20with%20less%20risk%20using%20CloudBees%20Feature%20Management%2C%20an%20enterprise%20feature%20flag%20management%20solution%20integrated%20across%20the%20CloudBees%20software%20delivery%20platform.%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Feature%20Management%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&pageViewId=49ce1b8f-d595-422b-8cf2-620f1b60d0f6&an_uid=0 HTTP/1.1 
Host: b.6sc.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: 6suuid=1c985468285b0000aa4c3c6398000000bc6f0000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.14.5.116
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
etag: "5e502810-2b"
expires: Wed, 19 Apr 2000 11:43:00 GMT
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
pragma: no-cache
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
date: Tue, 04 Oct 2022 15:09:32 GMT
set-cookie: 6suuid=1c985468285b0000aa4c3c6398000000bc6f0000; expires=Thu, 03-Oct-2024 15:09:32 GMT; path=/; domain=.6sc.co; SameSite=None; secure
access-control-allow-origin:
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    f837aa60b6fe83458f790db60d529fc9
Sha1:   14af87ccec7f81bb28d53c84da2fd5a9d5925cda
Sha256: dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         54.230.245.39
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 15:09:32 GMT
Last-Modified: Tue, 04 Oct 2022 14:19:20 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: G-_ZaUyYJgKg-iCtZrH4IKJy0C4Nb7HeUXpz5QX4f7-pKLP94uh5XA==
Age: 3012

                                        
                                            GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAATOTk5MTMtMTU4NDgyNzEzNjItNGQABm9yZ19pZG0AAAAFOTk5MTNkAAlzY29wZV9zZXRtAAAABGxlYWRkAAd1c2VyX2lkbQAAAAsxNTg0ODI3MTM2MmQACXVzZXJfdHlwZWQABGxlYWRuBgDbf4ujgwFiAAFRgA.vVzIR4fRIz_JwU8n-nTUEkGC3RkG8dH3LLFwuoxiE1Q&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1 
Host: 99913-13.chat.api.drift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://js.driftt.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lOgmXFUAcUV6yQ2jWwYXwg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         52.205.1.39
HTTP/1.1 101 Switching Protocols
                                        
Date: Tue, 04 Oct 2022 15:09:32 GMT
Connection: upgrade
cache-control: max-age=0, private, must-revalidate
sec-websocket-accept: 2QrdJ8grlv4fbpIhb29jWZejpS8=
server: Cowboy
upgrade: websocket

                                        
                                            OPTIONS /track HTTP/1.1 
Host: event.api.drift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.147.21.139
HTTP/2 200 OK
content-type: text/plain
                                        
date: Tue, 04 Oct 2022 15:09:32 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
allow: POST,OPTIONS
requestid: driftfd352cf4ec99a38288fe7cda639
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   13
Md5:    1424eb76249899d757e4d168341a50dc
Sha1:   42101e71440abd46c8112a96d4d5c0dd445120ce
Sha256: 16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
                                        
                                            GET /core/assets/js/26.2d4cdbd1.chunk.js HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?embedId=4naehny8xdn5&region=US&forceShow=false&skipCampaigns=false&sessionId=855a77ea-22d0-465d-84fe-6853ce9ef62f&sessionStarted=1664896169.06&campaignRefreshToken=8a851d2f-25e4-45ca-96e5-ee3258ab481d&hideController=false&pageLoadStartTime=1664896165684&mode=CHAT&driftEnableLog=false&secureIframe=false
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Wed, 31 Aug 2022 18:23:27 GMT
server: nginx
last-modified: Wed, 31 Aug 2022 18:10:09 GMT
etag: W/"c55d27c90bd5affbf7c7047151ac3b6a"
x-amz-server-side-encryption: AES256
x-amz-version-id: siv4sYmLp3BEOV5kWKjSS9V7tHMZAkGl
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PrEA9ahBkzLD7cXKYYVRge7pvJ-p9D5P6rkgDYri-CcLY1tXymJDZQ==
age: 2925963
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   9873
Md5:    e0691917836cc15df4312c5056b044ed
Sha1:   0bb78ffefc6c611258179f061b2c7e6a826fa5da
Sha256: 2f4a5752e309bc913edabe96d074660d99610c38787730bf565817c7134bc3c9
                                        
                                            GET /core/assets/css/9.7980313a.chunk.css HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: text/css
                                        
date: Wed, 21 Sep 2022 13:41:58 GMT
server: nginx
last-modified: Wed, 21 Sep 2022 13:23:52 GMT
etag: W/"97ab5d7bf24ef1c4f1e14801b9a510ed"
x-amz-server-side-encryption: AES256
x-amz-version-id: CxerwMRS6CdLERPs5NVshkyA9cHh0Tkt
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4d84PmAPLEYC7yXanD5kkVcPUufswJkpPIPqecHmlnqyZHeATZ5HwQ==
age: 1128451
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   2820
Md5:    9b105ff21f4c64060da30a9dfb0ca31c
Sha1:   bae549998f0b95bb0b450e72c2c4a6fa98fec74b
Sha256: f6940ff3cba2de1d799098542837f48f6deb0eadc1539f490457931f4fa90a30
                                        
                                            GET /core/assets/js/28.190877b8.chunk.js HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Wed, 07 Sep 2022 14:05:25 GMT
server: nginx
last-modified: Tue, 06 Sep 2022 19:38:19 GMT
etag: W/"94c7e7cb2f40e10abeee8e28c0f68eb7"
x-amz-server-side-encryption: AES256
x-amz-version-id: G0DP4jvUaKtIbfyIxWqyC1CIhSHB9xO6
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: yvFRISegrQ3ltM9Kq8Zc6DpzUW4wzjLLCPBNx01dTRqQ8dxaY7ePdg==
age: 2336644
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   5481
Md5:    b39c28f95c4d2098785a1227c186acec
Sha1:   36c78f583ea536148972fbae81626d11f79801c3
Sha256: bab8062e4bdff9f2b17f8fa4a4cb20f36396a02f113ac10d9c8131cdebce4b8a
                                        
                                            POST /targeting/evaluate_with_log HTTP/1.1 
Host: targeting.api.drift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNTg0ODI3MTM2MiIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6Ijk5OTEzIiwiZXhwIjoxNjk2NDMyMTcxLCJpYXQiOjE2NjQ4OTYxNzF9.JSQyKEiuvY1TUEI_WRJLobeCeuf2Yprnf4GemLew8H8O33VRuP1oXTUIBF4ovVB8aEGn8atE_HetOKgzTI9bPA
Content-Length: 1473
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.147.21.139
HTTP/2 200 OK
content-type: application/json;charset=utf-8
                                        
date: Tue, 04 Oct 2022 15:09:33 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
requestid: 8a0682fe0e6acfbb
vary: Accept-Encoding
content-encoding: gzip
content-length: 634
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1411), with no line terminators
Size:   634
Md5:    d89210a28866f62dee916d4aa9d13815
Sha1:   31c357daf34ca43600bd7edc2505d7d8ce5dc739
Sha256: 93733683d72d12cba760fae7a627e4ed7624e279bf8a061e45789681a3d54342
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAEzk5OTEzLTE1ODQ4MjcxMzYyLTRkAAZvcmdfaWRtAAAABTk5OTEzZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMTU4NDgyNzEzNjJkAAl1c2VyX3R5cGVkAARsZWFkZAAGc2lnbmVkbgYA33-Lo4MB.YqiozhUfZ6Ux4QMaBKlPT59E_KVe4mvfDpTJzPOjOzw&remote_ip=3.229.58.120&vsn=2.0.0 HTTP/1.1 
Host: presence.api.drift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://js.driftt.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YvX5n/Jkq07Sn8kmMtWHSA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.174.210.7
HTTP/1.1 101 Switching Protocols
                                        
cache-control: max-age=0, private, must-revalidate
connection: Upgrade
date: Tue, 04 Oct 2022 15:09:32 GMT
sec-websocket-accept: x8bHj6LR2pu9iLAyQ5BlHk+e52g=
server: Cowboy
upgrade: websocket

                                        
                                            GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:10:21 GMT
expires: Wed, 27 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 597552
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size:   23580
Md5:    e1b3b5908c9cf23dfb2b9c52b9a023ab
Sha1:   fcd4136085f2a03481d9958cc6793a5ed98e714c
Sha256: 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
                                        
                                            GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 27 Sep 2022 17:10:21 GMT
expires: Wed, 27 Sep 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 597552
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size:   23040
Md5:    de69cf9e514df447d1b0bb16f49d2457
Sha1:   2ac78601179c3a63ba3f3f3081556b12ddcaf655
Sha256: c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
                                        
                                            GET /core/assets/js/16.fde6fa28.chunk.js HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Tue, 30 Aug 2022 01:42:02 GMT
server: nginx
last-modified: Thu, 25 Aug 2022 21:13:15 GMT
etag: W/"90795af8c950a50300cf801b300db7ab"
x-amz-server-side-encryption: AES256
x-amz-version-id: 4419YFPoRA1JyzCepHPPe9MgW2odb2j5
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: l4-oIpz48i0O7miwvX8a-AWPvwFsYNbp1KZLEUiq2FLBElONt0zJiA==
age: 3072446
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   19332
Md5:    ba99d5a0a566489392b62689373057ab
Sha1:   8c896a9655a820a37568511406862fdfb1b69ed7
Sha256: 9deda3d1f7259518d17bc5b64b0d63012b9d7228307474d17c55c8b5b431d4b1
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 04 Oct 2022 15:09:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /flows/render_initial_v3 HTTP/1.1 
Host: flow.api.drift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNTg0ODI3MTM2MiIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6Ijk5OTEzIiwiZXhwIjoxNjk2NDMyMTcxLCJpYXQiOjE2NjQ4OTYxNzF9.JSQyKEiuvY1TUEI_WRJLobeCeuf2Yprnf4GemLew8H8O33VRuP1oXTUIBF4ovVB8aEGn8atE_HetOKgzTI9bPA
Content-Length: 492
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.147.21.139
HTTP/2 200 OK
content-type: application/json;charset=utf-8
                                        
date: Tue, 04 Oct 2022 15:09:33 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
requestid: 3ebee599914b1e5
vary: Accept-Encoding
content-encoding: gzip
content-length: 1887
x-envoy-upstream-service-time: 57
server: istio-envoy
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (3353), with no line terminators
Size:   1887
Md5:    a051e2050a3f8d91eae641c513178037
Sha1:   e5bdedab51b37fc33e93de511e8ce27582407a7a
Sha256: 5b250f5e2704f5524d630f7876477b703db5506d1ee323164080568cd12a537d
                                        
                                            GET /https%3A%2F%2Fdriftt.imgix.net%2Fhttps%253A%252F%252Fs3.amazonaws.com%252Fcustomer-api-avatars-prod%252F191227%252Ff2cfc9c59bc51df57455b52941126daabvgissvria9g%3Ffit%3Dmax%26fm%3Dpng%26h%3D200%26w%3D200%26s%3D39a7be935007ed78afa3859611cbe429?fit=max&fm=png&h=200&w=200&s=6a175df80caeb48bb3722ff9db2877e6 HTTP/1.1 
Host: driftt.imgix.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.86.208
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Tue, 23 Aug 2022 13:55:40 GMT
cache-control: public, max-age=315360000
server: imgix
x-imgix-id: 648e7e1d2cde638968b1f8d1432bf0fb1b27db7c
x-imgix-render-farm: 01.1
date: Tue, 04 Oct 2022 15:09:33 GMT
age: 3633233
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10042-SJC, cache-bma1631-BMA
x-cache: HIT, HIT
content-length: 4094
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 91 x 88, 8-bit/color RGB, non-interlaced\012- data
Size:   4094
Md5:    651cd25ff8895405e793701705da67ed
Sha1:   814410de66e60fe0570a0262db6d8dc369e1c438
Sha256: eb6ca4c4e70988e084d38a8133a0340e28769bfe58d7679643c1cb11ed2d90af
                                        
                                            OPTIONS /impressions/widget HTTP/1.1 
Host: targeting.api.drift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.147.21.139
HTTP/2 200 OK
content-type: text/plain
                                        
date: Tue, 04 Oct 2022 15:09:33 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
allow: POST,OPTIONS
requestid: drift48f6df84b99856f4ddd51be7caf
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   13
Md5:    1424eb76249899d757e4d168341a50dc
Sha1:   42101e71440abd46c8112a96d4d5c0dd445120ce
Sha256: 16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
                                        
                                            POST /impressions/widget HTTP/1.1 
Host: targeting.api.drift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNTg0ODI3MTM2MiIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6Ijk5OTEzIiwiZXhwIjoxNjk2NDMyMTcxLCJpYXQiOjE2NjQ4OTYxNzF9.JSQyKEiuvY1TUEI_WRJLobeCeuf2Yprnf4GemLew8H8O33VRuP1oXTUIBF4ovVB8aEGn8atE_HetOKgzTI9bPA
Content-Length: 675
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         54.147.21.139
HTTP/2 204 No Content
                                        
date: Tue, 04 Oct 2022 15:09:33 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
requestid: b5646249514d7a0b
x-envoy-upstream-service-time: 8
server: istio-envoy
X-Firefox-Spdy: h2

                                        
                                            GET /core/assets/css/41.e483d03f.chunk.css HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: text/css
                                        
content-length: 900
date: Mon, 05 Sep 2022 00:42:02 GMT
server: nginx
last-modified: Thu, 01 Sep 2022 13:18:42 GMT
etag: "0bd11a8facc0a9d41713c64ed1ba1289"
x-amz-server-side-encryption: AES256
x-amz-version-id: DqgVndF32gtU4foQcFS7C5m04gIYie3b
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: u9TomfFEtdwIy90k8mqPusvU6a7BNS0WsMwTuj9bOVnt4bU5SYTb6Q==
age: 2557651
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (900), with no line terminators
Size:   900
Md5:    0bd11a8facc0a9d41713c64ed1ba1289
Sha1:   23d92b5b9138666f5c33517d53451a6e2e8ec30a
Sha256: 12ffe3ad71f763d9057baf43e0f1c1482bb9a0372602020554c4d52f52b37981
                                        
                                            GET /core/assets/js/41.c2d27989.chunk.js HTTP/1.1 
Host: js.driftt.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?region=US&driftEnableLog=false&pageLoadStartTime=1664896165684
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         54.230.111.67
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
content-length: 303
date: Thu, 01 Sep 2022 01:51:51 GMT
server: nginx
last-modified: Wed, 31 Aug 2022 18:10:10 GMT
etag: "46fb25b61455826d8b73185de5673b04"
x-amz-server-side-encryption: AES256
x-amz-version-id: PtNxG2OJ7oCAH5tg9nxvGtWbLSp0joWH
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jy04Is7EfRzXdxIKR9G6qYW6MnCPHwB8CdA561YggPbZgtWm6ECWTg==
age: 2899062
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (303), with no line terminators
Size:   303
Md5:    46fb25b61455826d8b73185de5673b04
Sha1:   d15a3a86f02f00138438a94e617081380cd58ac1
Sha256: 70164ba4c1b7194f4cc46e423aa055d29e3d927b7e9abe6fecd156dd0270da76
                                        
                                            GET /v1/beacon/img.gif?token=ae91a7abd2376c44712fb1a7f8353686&svisitor=null&visitor=b505a8af-9aa8-41b8-8fc3-f619a85a3280&session=1774596e-3791-4abb-81ee-1e253b769924&event=active_time_track&q=%7B%22currentTime%22%3A%22Tue%2C%2004%20Oct%202022%2015%3A09%3A33%20GMT%22%2C%22lastTrackTime%22%3A%22Tue%2C%2004%20Oct%202022%2015%3A09%3A32%20GMT%22%2C%22timeSpent%22%3A%221031%22%2C%22totalTimeSpent%22%3A%224058%22%7D&isIframe=false&m=%7B%22description%22%3A%22Bring%20more%20innovation%20to%20market%20faster%20with%20less%20risk%20using%20CloudBees%20Feature%20Management%2C%20an%20enterprise%20feature%20flag%20management%20solution%20integrated%20across%20the%20CloudBees%20software%20delivery%20platform.%22%2C%22keywords%22%3A%22%22%2C%22title%22%3A%22Feature%20Management%22%7D&cb=&r=&thirdParty=%7B%7D&v2=1&pageURL=https%3A%2F%2Fwww.cloudbees.com%2Fcapabilities%2Ffeature-management&pageViewId=49ce1b8f-d595-422b-8cf2-620f1b60d0f6&an_uid=0 HTTP/1.1 
Host: b.6sc.co
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: 6suuid=1c985468285b0000aa4c3c6398000000bc6f0000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         23.14.5.116
HTTP/2 200 OK
content-type: image/gif
                                        
accept-ranges: bytes
cache-control: private, no-cache, no-cache=Set-Cookie, proxy-revalidate
etag: "5e502810-2b"
expires: Wed, 19 Apr 2000 11:43:00 GMT
last-modified: Fri, 21 Feb 2020 18:57:20 GMT
pragma: no-cache
server: nginx/1.14.0 (Ubuntu)
x-content-type-options: nosniff
content-length: 43
date: Tue, 04 Oct 2022 15:09:33 GMT
set-cookie: 6suuid=1c985468285b0000aa4c3c6398000000bc6f0000; expires=Thu, 03-Oct-2024 15:09:33 GMT; path=/; domain=.6sc.co; SameSite=None; secure
access-control-allow-origin:
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: GET,POST
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    f837aa60b6fe83458f790db60d529fc9
Sha1:   14af87ccec7f81bb28d53c84da2fd5a9d5925cda
Sha256: dcecab1355b5c2b9ecef281322bf265ac5840b4688748586e9632b473a5fe56b
                                        
                                            OPTIONS /monitoring/metrics/event2/bulk HTTP/1.1 
Host: metrics.api.drift.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site