r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 30c30d01178fc74ac5266ee64c3ee85b
c0c2af8a864c00aa85a8775d55f85ab107150a3b
c15644f69fbfeb99074c7e9711dfc9452ee164fa78eb981b6bae4fb7e3585f2a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C15644F69FBFEB99074C7E9711DFC9452EE164FA78EB981B6BAE4FB7E3585F2A"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13143
Expires: Fri, 18 Nov 2022 10:02:05 GMT
Date: Fri, 18 Nov 2022 06:23:02 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3a38b6dd8a4cc335c026aebf2ed348b6
8a386e0ccb0ca4dc502746c45b2ebc3aa3f83cf8
8b4040a645cec1841a00a22765eb3a74978559daf15c54bd4b41b6b48aab7f95
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B4040A645CEC1841A00A22765EB3A74978559DAF15C54BD4B41B6B48AAB7F95"
Last-Modified: Wed, 16 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16813
Expires: Fri, 18 Nov 2022 11:03:15 GMT
Date: Fri, 18 Nov 2022 06:23:02 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash be1be806b5dca7facbb45a6c3db44652
7ae9380a2f3eca959fe6ff6b3832a17cffd12cf4
1f3338058f8e9cae5c9fdd733c74564312726b01c6efdcd628d851d0c99876b0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4282
Cache-Control: max-age=105583
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:02 GMT
Etag: "63760d7b-1d7"
Expires: Sat, 19 Nov 2022 11:42:45 GMT
Last-Modified: Thu, 17 Nov 2022 10:31:23 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: li0Ou2IWZP5TqIe5VTxpBrzZ4TDTuy2Gmk3ZMiMpE4nFNPY/YAdeqBp7ZOwPeKPMQA8+A12v3cw=
x-amz-request-id: S4JQDV5TFVBTEAVT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 18 Nov 2022 06:15:29 GMT
age: 453
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 18 Nov 2022 05:44:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2296
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 18 Nov 2022 06:23:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
brevacoffee.com/
200 OK 81 kB IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65230), with CRLF line terminators
Hash 7c26e10bebc8da7030b49094920bece9
5526631d901b1504eb10192db8864e3293b74c3d
fd25d7fb0810cd50be77c6343d1a1f5b3f8df79d57246b40a15412bf2ae2afcd
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: brevacoffee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:23:02 GMT
Server: nginx/1.21.6
Content-Type: text/html; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
X-Server-Cache: true
X-Proxy-Cache: HIT
Transfer-Encoding: chunked
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 18 Nov 2022 05:25:01 GMT
cache-control: public,max-age=3600
age: 3482
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
brevacoffee.com/favicon.ico
200 OK 81 kB URL HTTP/1.1 brevacoffee.com/favicon.ico
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65230), with CRLF line terminators
Hash 7c26e10bebc8da7030b49094920bece9
5526631d901b1504eb10192db8864e3293b74c3d
fd25d7fb0810cd50be77c6343d1a1f5b3f8df79d57246b40a15412bf2ae2afcd
GET /favicon.ico HTTP/1.1
Host: brevacoffee.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://brevacoffee.com/
HTTP/1.1 200 OK
Date: Fri, 18 Nov 2022 06:23:03 GMT
Server: nginx/1.21.6
Content-Type: text/html; charset=UTF-8
Vary: Accept-Encoding
Content-Encoding: gzip
X-Server-Cache: true
X-Proxy-Cache: EXPIRED
Transfer-Encoding: chunked
ocsp.digicert.com/
200 OK 471 B IP
Hash c10055ce87434f700ff8b20e3be1f919
477b3c9f1da0c464282bb54572737e76b6e346da
4d78eb296876122e5ff40fcd7667adf1bf8a4b1ee4c8203c88a63ce8d7910a57
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2955
Cache-Control: max-age=99187
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:03 GMT
Etag: "6375f9af-1d7"
Expires: Sat, 19 Nov 2022 09:56:10 GMT
Last-Modified: Thu, 17 Nov 2022 09:06:55 GMT
Server: ECS (ska/F70A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NqGUaxkPZl/kLC4KMX5quw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UagAFaUOmMs0xYot/Zvf92ZSwUc=
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16110
Expires: Fri, 18 Nov 2022 10:51:34 GMT
Date: Fri, 18 Nov 2022 06:23:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16110
Expires: Fri, 18 Nov 2022 10:51:34 GMT
Date: Fri, 18 Nov 2022 06:23:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16110
Expires: Fri, 18 Nov 2022 10:51:34 GMT
Date: Fri, 18 Nov 2022 06:23:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f7c5da16d7c4384a4c2454d6b0d84710
69fd80fdf2f1ce27b25617589c867cd1c6e5d2ab
a80d1b813523e44d2e59d7c2edd6919c0354873637bb15bccc88f66f5c24e05d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A80D1B813523E44D2E59D7C2EDD6919C0354873637BB15BCCC88F66F5C24E05D"
Last-Modified: Thu, 17 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16110
Expires: Fri, 18 Nov 2022 10:51:34 GMT
Date: Fri, 18 Nov 2022 06:23:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp
200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 55801be30fc7e7d24ba2418d00ce4ca2
31935f7d11269f0f4177a48d2c166e09fec1f377
05e58892cab261aca3abe7e29ff482b51f5f7e4261b8579e7b9f85487f53eeda
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4724f84-de93-48d7-8d33-1427f27e15a0.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7539
x-amzn-requestid: 96d0ad29-0b25-4e4b-93ea-da9fde83aa8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9V5E2boAMFbiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8f2-33f7f4592f8574486987e233;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: r1X3PUyrso5VkyphYHqBQdYo6lmmIvTQdA_kPA5I-lds8qn9RtEIpw==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 22:05:38 GMT
etag: "31935f7d11269f0f4177a48d2c166e09fec1f377"
content-type: image/jpeg
age: 29846
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4998f097d23ee5f19cae27d5b938e5fc
4369c8ebe61b9944e639bb2731feb51c5a758fe7
5691c66766c9578e9c4aa71240608653821162c668abc63ee40e553ede2450e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38915691-004a-4ae6-a5c6-fd071040ffba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6339
x-amzn-requestid: 0be5dee5-272d-4577-ba55-5cdb7935ea60
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-MCExBoAMFz6Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa4c-15fd613336aa6fcb165d0b26;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NYs-Nf0PzWqhXP5nkvanTjhJ6vfwRIU--YD06RFIGPEuwDCu6fvEPg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:52:40 GMT
age: 30624
etag: "4369c8ebe61b9944e639bb2731feb51c5a758fe7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d0b6106f00f9fd8b89c2d484a559a1a
399ac393209dcdac7d2188d7aa8d95f04570ef7c
5d8151c9eb558f4a2b8bd2952c6845606ddb0c27e36f6e49aca7e60908cd9fe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1e93b023-2729-4761-a4ea-05612c0917fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3759
x-amzn-requestid: 8c91ac59-89dc-4218-b69f-0cebb29f301b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-wJHgxoAMF-hQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376ab33-4dac305614a92bc52c038222;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:44:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mb2-PTjNmt06Wd5jOjQ5WoLY-0NgI80CKPXtwgzBt4n5km8Pu_WN0Q==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:50:49 GMT
age: 30736
etag: "399ac393209dcdac7d2188d7aa8d95f04570ef7c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F484ffe7b-1073-4220-bf53-ccbfc7e9654e.webp
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F484ffe7b-1073-4220-bf53-ccbfc7e9654e.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 14649d486602810c1b218b96b27b2cc4
96c6cbfe31e7247c64dfa8c3759967627f8c6286
80f5d7573fd2bf4e6a6038ebf1335d159ad37c391ee539918455963d6ee88654
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F484ffe7b-1073-4220-bf53-ccbfc7e9654e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8884
x-amzn-requestid: 3739b8f5-bb0c-4798-a931-e955dd6df81d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw-MiGFxoAMFlxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376aa50-74c24a2f737634b655a5b47c;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:40:32 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: d_bLYyZzi1phYwQ2e5uvUmzO0GuvNu9Ubi2PQ0ChilQJegKr3uUiRw==
via: 1.1 79880188a81becf1687ba18c0e064230.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:53 GMT
etag: "96c6cbfe31e7247c64dfa8c3759967627f8c6286"
content-type: image/jpeg
age: 30432
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 93b326374b3808d0af42e295643cdc14
dd691328acf190c745465208f18a41a75878df18
224ac3995e2e78ee5fcc6c5c3d5fb1f4b0ceca1c42b7a1a493c756aa199bf75f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffad6fa40-abda-4ea3-b899-aef6906a01e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5198
x-amzn-requestid: ba4e00c8-a996-41f3-b15a-1e304907ca2a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bw9UpH1ioAMF6ow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6376a8ea-2f9f794c4de03f8b212e072f;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LPflGHjoeNg1X5EszKAaziaZsKFf5hT6LeNPpZQriZ5H1z7Zhh86Ow==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 21:55:57 GMT
age: 30428
etag: "dd691328acf190c745465208f18a41a75878df18"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZLWa-RphwZqiAmeqffmEE8Mmfsfs9ZYz0bmANBEc5Ru1--VKDL4Fsw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Thu, 17 Nov 2022 15:59:54 GMT
age: 51791
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
freshtools.to/
301 Moved Permanently 231 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 803a960e452ca90d256956b9893e4d43
6a8e5e33d210c2629b71a6891cc68cc319f6a489
db957d3c71b60cce40fedfb2d3a28b00f93957eaaae11f92c615c0f3ebef0291
GET / HTTP/1.1
Host: freshtools.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Fri, 18 Nov 2022 06:23:05 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: none
Location: https://freshtools.net/
Content-Length: 231
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/s/gts1p5/ecBi_As-X0A
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/ecBi_As-X0A
IP
Hash 692299de5feb7a3d50950501e46fadff
b509d5b6f8464a1a142fc641a436443f88c3ea1c
895defec18707238d8a523481c5f2c887fd0cf0de28911ea7afcec7ee37c21ac
POST /s/gts1p5/ecBi_As-X0A HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:06 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
freshtools.net/login
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /login HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 18 Nov 2022 06:23:06 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Fri, 18 Nov 2022 07:23:06 GMT
Location: https://freshtools.net/login
Server-Timing: cf-q-config;dur=6.0000002122251e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RY4dg6E6DuzMHepttXlv3U5F5hwYITUB%2F2Ndjq59CjbLKBjCx0H0leifR%2FltIAKSX1SDk6duJibYiCwJfFVY25yn4uChhlzLYDNA1XpZR8VUbnHHMPSawAQgqb3x1e4n"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76be9d947dc0b4ee-OSL
alt-svc: h2=":443"; ma=60
freshtools.net/uploads/New-Project-(7)-90-(1)-93.png
200 OK 77 kB URL HTTP/2 freshtools.net/uploads/New-Project-(7)-90-(1)-93.png
IP
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash 8cd01f4e6a06f44bfe3adfb7258eeadb
20cb50ef762633682d67d0a12c129e8b58d05ff8
e5b379c755c7f8bcf5aff3c5447f0a47e34332f79732729acb39b3c918601a5f
GET /uploads/New-Project-(7)-90-(1)-93.png HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:23:07 GMT
content-type: image/png
content-length: 77118
last-modified: Thu, 14 Jul 2022 08:37:52 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2576
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fRuGC8txGTPxXxYSEeZnPCLGMgqFTC7%2BCOwQ73R4agwzX%2BbUAAXEO%2BmWPRtyupE%2FF45BEk3d46RSC1dNIXvQsj7pWZCVR3APcQa%2FmkSxibs1zd4THI73ktQYut1qapcn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be9d969ccdb529-OSL
X-Firefox-Spdy: h2
freshtools.net/vendor/select2/select2.min.css
200 OK 2.5 kB URL HTTP/2 freshtools.net/vendor/select2/select2.min.css
IP
File type ASCII text, with very long lines (15063), with CRLF line terminators
Hash 76f97f68dbe95b20dfb5bd74b9073e35
ee3c50eb376e67613443beda12fd58fa68e81c26
230bc05cf7a73a1eb3ba841ce3e1d907851798394f63566a37ff48e29925f6eb
GET /vendor/select2/select2.min.css HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:23:07 GMT
content-type: text/css
last-modified: Mon, 18 Oct 2021 20:32:36 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wvPgS6Ch3JLZ17CJ1mdjNBj1Brb9OpfojZco7QMROEYiaKAlrMul%2FrObsbNfx53SucUXW3Z8rtJ8iYDonR5DZ6ilZ4e3fgoM8EDMu3ODuEO%2F5MWddOx9w54XrYkFodzj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be9d968cc8b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
freshtools.net/js/login.js?id=05e6aef094e9312e2954b725dd73026c
200 OK 722 B URL HTTP/2 freshtools.net/js/login.js?id=05e6aef094e9312e2954b725dd73026c
IP
File type ASCII text, with very long lines (954)
Hash 006b9f2efbff8460d85c84d10cb5e023
e132070f7d46d608bb418b69bec37a68099f663a
304e69f89e359b18caf70b7b89f59e2e45dc082e5a03d9c9f404bbf48d25b73f
GET /js/login.js?id=05e6aef094e9312e2954b725dd73026c HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:23:07 GMT
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 23:13:38 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1Bras9%2F%2BtCbdp7P%2FVeoIQEkLDnlg%2Bpe6cvmMFF81EiCRJJFa1dZWWjs0Nk5ixL%2FQgP5td60RLcencMZWYgF3V%2FfaDNdY3iGeHSaHTWQYfaIHiIu9QW3rrGRGXMePpV%2FE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be9d96cceab529-OSL
content-encoding: br
X-Firefox-Spdy: h2
freshtools.net/vendor/animate/animate.css
200 OK 3.6 kB URL HTTP/2 freshtools.net/vendor/animate/animate.css
IP
File type ASCII text, with CRLF line terminators
Hash 0b37a36c6fcbd0fdc2dc398c4a422253
102c5b0f361235a81784b694e259cbd1bb224505
579d4a6584a39daeb2005f8f0fa39f2529463247aa086eede5c58123afdcb404
GET /vendor/animate/animate.css HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:23:07 GMT
content-type: text/css
last-modified: Mon, 18 Oct 2021 20:32:36 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CAyU8EWcCNh%2FJzDL9xskyGod9WcmOpZXcSt8q%2Fq6C7CF7yxgQGDYHBHN4T5VVgAE%2Be6EMvqeCQAbQdqOpqQFhdISzEDnoP73Qn2JOhJIKibf9iif55%2Fpl8BxJqM27HRS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be9d968cc5b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash d3ba0eba720a8e5904bee6e804873c24
df1f9c79e39f777ab12225af0af60b9f26af6485
76500b32cbac4ad40e3f42c7dfd46832f3854ba88c3a6d5a9d2b5633e8e1f27b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=explicit&onload=onloadCallback
200 OK 580 B URL HTTP/2 www.google.com/recaptcha/api.js?render=explicit&onload=onloadCallback
IP
File type ASCII text, with very long lines (909), with no line terminators
Hash 3b5cb2e60192a07308a766dcb9624633
33f1b1d6a2a04915a8a390840d6a5b3e235bac1c
8f42af31ceb1d5a6d0ab9c028356c93fac83198b5ad0ed2dd39771daaacddc19
GET /recaptcha/api.js?render=explicit&onload=onloadCallback HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 18 Nov 2022 06:23:07 GMT
date: Fri, 18 Nov 2022 06:23:07 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 580
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
freshtools.net/css/loginStyle.css?id=7abd190e74023b3175577bbf86ba8bf6
200 OK 2.3 kB URL HTTP/2 freshtools.net/css/loginStyle.css?id=7abd190e74023b3175577bbf86ba8bf6
IP
File type ASCII text, with very long lines (5424)
Hash 2f015360718850854f6c27fdf938f7b3
3c11e7de82d4776c8f34cb9e22cc8690c343f394
9f013ffd1db39fccd15023fa9408c15b95c47e2fb42c27053a2dfbe210f60e84
GET /css/loginStyle.css?id=7abd190e74023b3175577bbf86ba8bf6 HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:23:07 GMT
content-type: text/css
last-modified: Wed, 05 Oct 2022 03:32:30 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yGkym1eMjqty5byG5MlduZPPv19jU9%2BsPOW6VZ9lv1Ep1RRuOy3rzLqcvbiu0H%2BzAKJ6NutwwOCdoylVOa5UOwfLQA9svrwFWGrCvRtMtnIavDBR2S8vXR9cVqt%2FpE8U"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be9d969ccab529-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Nunito
200 OK 144 kB URL HTTP/2 fonts.googleapis.com/css?family=Nunito
IP
Size 144 kB (143512 bytes)
Hash 07826dba0eb0edf21d8150b09038d5fc
1f65a1a55e37905256555f6e469b1077b1105ae9
fb24dd64dbe0316eb5d0e6cd6c3457c53fd21fe03921a9a3ef9cfa8c5071cf50
GET /css?family=Nunito HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 18 Nov 2022 06:23:07 GMT
date: Fri, 18 Nov 2022 06:23:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash eeab7cac05db82df44ba5530370a7b0c
ba9f2b0bbfd4f12b923106c29369a94d9fc617f1
097d22b35eebb9dff6ca54f1f8550c5ee5e6b99c726d6ac388acf7c5a1356d31
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
freshtools.net/css/util.css
200 OK 6.3 kB URL HTTP/2 freshtools.net/css/util.css
IP
File type ASCII text, with very long lines (65046)
Hash 6e0c240bbe3b99d02e6215e31eb93d4e
7282bf2f8c702b2986ed0ef9a69501ca80b56272
4fb78d3ce4fdc08482acef80873305251a7534b6f727002339d83c1078b0975f
GET /css/util.css HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:23:07 GMT
content-type: text/css
last-modified: Wed, 28 Sep 2022 23:13:38 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7etFd8kMPUxS2uDLSVgpFdyY6AyMtC7ntsW6kAnIa4sekTdPmJPm6DIjj%2FhhQryPlnW6IiS9Qnj8FpiRAlJnuhWmL%2Fre1U1hcnj11yEI3FI9vC6sDOU0iNANZSA2EJmX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be9d968cc9b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Nov 2022 12:31:58 GMT
expires: Sun, 12 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 496269
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js
200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js
IP
File type ASCII text, with very long lines (668)
Size 163 kB (162590 bytes)
Hash 70dc760a0efad09d703883a39f7683b2
2bc70f2a100ff27d27a89d563dfe279590c8336b
2bc59eab94309c59fba62afa40dfd841fb83760714e9ec7248ce3e10ae05fd19
GET /recaptcha/releases/jF-AgDWy8ih0GfLx4Semh9UK/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://freshtools.net
Connection: keep-alive
Referer: https://freshtools.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162590
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 02:22:22 GMT
expires: Sat, 18 Nov 2023 02:22:22 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 07 Nov 2022 23:32:29 GMT
content-type: text/javascript
age: 14445
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
freshtools.net/vendor/select2/select2.min.js
200 OK 34 kB URL HTTP/2 freshtools.net/vendor/select2/select2.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (32046), with CRLF line terminators
Hash 1c2fcf28c37935508cd19a92f1a85f2d
cf92ca0b1946200f47b2bf8f1bd1d6c5c838d7a6
8583fcba2449104ced25904f06c7ff9a471cea2ac0ed914321f0162f82fc9ab1
GET /vendor/select2/select2.min.js HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:23:07 GMT
content-type: application/javascript
last-modified: Mon, 18 Oct 2021 20:32:36 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bH4GgowgW4CfADC9qzih9x%2FAqJjnrxTciKlYsc9Mv2IyFSsQ0vnr5J9uZz13f9xpaZAxlXuKQxLUJ9M%2BlFJ5n7StMsJJCVrK3I6F4CjQXikYbrBwbHHWiwFne9L0XEbt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be9d96bcdeb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 71821131fa0825a241bb6f95ad63a26a
4c676dbf861c2fca225bd1b9620237246ddfc724
f2dbe2a5c73657c35a660931a44cda1c1641c5b277ceea3d8fd7b4bfcacaf5ce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash eaa6a3200eda9bf5788df6d9eb04d84c
12efbb66692df6d76c1103b152808d751c0e49f1
6d815027ae40ea2603c0ed5adac0821cd5526f11c2eeb0ada5294b6f2ec3492d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4ec62279c2b0171ab1d12d11e38a8bb1
a95c73a838695ebad74025f9841f44c67af18454
0582eb214cb1fe089cb4b5e5ba41545fe7e15212282588bf711494d165e88506
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.doubleclick.net/instream/ad_status.js
200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 06:14:05 GMT
expires: Fri, 18 Nov 2022 06:29:05 GMT
cache-control: public, max-age=900
age: 543
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Fri, 18 Nov 2022 06:23:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 18 Nov 2022 06:23:08 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 4ec62279c2b0171ab1d12d11e38a8bb1
a95c73a838695ebad74025f9841f44c67af18454
0582eb214cb1fe089cb4b5e5ba41545fe7e15212282588bf711494d165e88506
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash eaa6a3200eda9bf5788df6d9eb04d84c
12efbb66692df6d76c1103b152808d751c0e49f1
6d815027ae40ea2603c0ed5adac0821cd5526f11c2eeb0ada5294b6f2ec3492d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 02d473b7b8e2aee439059fd79d94ecd1
9d04eeb830e428e9d97a33790635b1e6db81070f
eb8b4a35a909206fb728fae5e8cbd4c091d1decb6123ab2395c1c619d8e0e6ae
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 18 Nov 2022 06:23:08 GMT
server: ESF
cache-control: private
content-length: 30901
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 768459389903caf9d96bef4a81ec631f
6dd9c4371669af4337bed897de4c698109a4eedd
ec9426f541a91bb10eabbced08549bcc07e9e1084fd296ca785dd2a68ff7723d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/2dDbaVsWxsY/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGGUgXCg_MA8=&rs=AOn4CLAfjTTVYX8Xc3z3YUVx3Hqym2IhCg
200 OK 80 kB URL HTTP/2 i.ytimg.com/vi/2dDbaVsWxsY/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGGUgXCg_MA8=&rs=AOn4CLAfjTTVYX8Xc3z3YUVx3Hqym2IhCg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash 8894bdaf38bc7c1b8d9f0e78f07292f3
ece7b1914563f0c18fbde0c23cb4750442cb4787
57a254469af00ba74e93b1569c1eca763a44e338bd365910feb7c132dc161ebe
GET /vi/2dDbaVsWxsY/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGGUgXCg_MA8=&rs=AOn4CLAfjTTVYX8Xc3z3YUVx3Hqym2IhCg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 79956
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 18 Nov 2022 05:40:12 GMT
expires: Fri, 18 Nov 2022 07:40:12 GMT
cache-control: public, max-age=7200
age: 2576
etag: "1658014483"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 768459389903caf9d96bef4a81ec631f
6dd9c4371669af4337bed897de4c698109a4eedd
ec9426f541a91bb10eabbced08549bcc07e9e1084fd296ca785dd2a68ff7723d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 34cdecc86a01fc135cb8a5c4618c3a55
1bfffa5028efbc1c5bf766c50cbf58b9ee1f4e86
4786dbae246f44e3944a1db922a464327ef498da3345670e967ac1b7db827b36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/fnWfZN7v3RRVLHSu3pxGZ5InE2dC48XKAIJPr6VJf-BABs1N4JNoz6HMGgwNBlhVZgdkMF_6=s68-c-k-c0x00ffffff-no-rj
200 OK 3.0 kB URL HTTP/2 yt3.ggpht.com/fnWfZN7v3RRVLHSu3pxGZ5InE2dC48XKAIJPr6VJf-BABs1N4JNoz6HMGgwNBlhVZgdkMF_6=s68-c-k-c0x00ffffff-no-rj
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 7ac6ddd07e8f029c714d87895213d59f
263b8d9db37535840418f7e536ab23b31fd969e1
299b632acdd2cc708fffe4989c21d3b3a2879e45f371f0c630e6dff4d152145f
GET /fnWfZN7v3RRVLHSu3pxGZ5InE2dC48XKAIJPr6VJf-BABs1N4JNoz6HMGgwNBlhVZgdkMF_6=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2966
x-xss-protection: 0
date: Fri, 18 Nov 2022 03:08:25 GMT
expires: Sat, 12 Nov 2022 11:14:37 GMT
cache-control: public, max-age=86400, no-transform
age: 11683
etag: "v1"
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 34cdecc86a01fc135cb8a5c4618c3a55
1bfffa5028efbc1c5bf766c50cbf58b9ee1f4e86
4786dbae246f44e3944a1db922a464327ef498da3345670e967ac1b7db827b36
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 18 Nov 2022 06:23:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
freshtools.net/cdn-cgi/rum?
204 No Content 0 B URL HTTP/2 freshtools.net/cdn-cgi/rum?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 5981
Origin: https://freshtools.net
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 18 Nov 2022 06:23:08 GMT
access-control-allow-origin: https://freshtools.net
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 76be9d9e7b7ab529-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 18 Nov 2022 06:23:08 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 114 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash d253d5aa8e43e859bac6dc9410efc17b
d95535ab5e2c3452628c154fe4490f730312680f
52ac08af7fa0826d89bd0f8ba9acc54808993682d28eb9de02362045b877f8b8
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 911
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 18 Nov 2022 06:23:08 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
freshtools.net/
302 Found 5.1 kB IP
Hash 8440eaee259531b9206592a869ebc8ec
70979d9f8398730026a449ec1e2e2554f72ea160
407f0604c01196a7a176254ac2f6d04f69f85f957ba0534b6b4f162231576c0d
GET / HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Fri, 18 Nov 2022 06:23:06 GMT
content-type: text/html; charset=UTF-8
location: http://freshtools.net/login
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IkFrM3NzcytuSHQzck96TzFub1kxeUE9PSIsInZhbHVlIjoiT01aYjNaaHYwTDliWnVQTjI3bnlseVRuRnEwL0lIYU9TeDFhMENmY1paQklSbjZyK2o1ZlpVRDFYRU9zR1dKWlRYRFplbVppOWprTE5UcmhHUUQ3MXlTc3hVY0NpazJuTWhGQ2gxVURQTnJrZzBRVXh2QVY3SUF0YXFqeTkrOXciLCJtYWMiOiJkYzY4YmFjYWM5ZTZmZjI1MTk0YzdhNTBiODA1MGU2YTgwODAyMmY0YmFiNTNlYzc2MzM1ZDRhY2QzODFmMDJkIiwidGFnIjoiIn0%3D; expires=Sat, 31-Jan-2252 20:55:06 GMT; Max-Age=7232941920; path=/; samesite=lax
freshtools_session=eyJpdiI6IjYvOENJWHpQWGJsejRHZnRtQlYzcVE9PSIsInZhbHVlIjoiUS9GR29RTXlyKzBHRmwvdkk2T1o5SkZCTnJMRWVZdk5sN2VYRGIvNlYzKzZQcEJCQjdIMmtIbjNEdnh2S29NRFBDWG1xMWRBRVRhZlZ0QkVFaDJlWnQ4OUdYY1JPVE5STlE0RFNIMU51VHVMMHpmUmMwaWdLeVYrS29YUnl0MEEiLCJtYWMiOiIwMDJlMWQwNWI4ZThkYThkNzhmMmQ2Y2MyMDM0MDIwNjlkY2VmNmE3YTg4YzM3NjBhM2ZlOWZkNDE3Mjk5MTg0IiwidGFnIjoiIn0%3D; expires=Sat, 31-Jan-2252 20:55:06 GMT; Max-Age=7232941920; path=/; httponly; samesite=lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4AGfExMKyMGwT3lRPd5hq%2FdVduV%2FuNLR0ssbehLLovpr2XExyLF9CU5OXL19EeBipyxHbNZ7KYfAYweufZg9VXPKK5jIQfzUd08pb4G%2Fm8OFOdFY%2Bmqu08pCr06jnuND"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76be9d92f9c6b529-OSL
X-Firefox-Spdy: h2
freshtools.net/cdn-cgi/rum?
204 No Content 0 B URL HTTP/2 freshtools.net/cdn-cgi/rum?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 587
Origin: https://freshtools.net
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Fri, 18 Nov 2022 06:23:11 GMT
access-control-allow-origin: https://freshtools.net
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 76be9db21b49b529-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
freshtools.net/vendor/css-hamburgers/hamburgers.min.css
200 OK 0 B URL HTTP/2 freshtools.net/vendor/css-hamburgers/hamburgers.min.css
IP
GET /vendor/css-hamburgers/hamburgers.min.css HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:23:07 GMT
content-type: text/css
last-modified: Mon, 18 Oct 2021 20:32:36 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SsyigrldNGK1XW5vMdzbLtPCNEkg2maGseK%2BfQIe68Kzr44SuduNjsFjATRR52LvniWokclqCiPEpxi3PDTZqYgKSbSS4Ya83nboo58bRWaWu5htfUqomx0j6soHD1zF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be9d968cc7b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
freshtools.net/css/bootstrap.css
200 OK 0 B URL HTTP/2 freshtools.net/css/bootstrap.css
IP
GET /css/bootstrap.css HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:23:07 GMT
content-type: text/css
last-modified: Wed, 28 Sep 2022 23:13:38 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qELYC5WmOvOpuizUghksgG3RKS3SuOwjFcb6WcdhiEuP9sfjpu5LI8N1ynwQZPy3DvYLR8qrzLYBGxoKkr8sSJ12kLzneB%2BWjtXkoD6%2FRv%2FecNiI8WmjuMNJw%2FHwryo6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be9d968cc4b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
freshtools.net/fonts/font-awesome-4.7.0/css/font-awesome.min.css
200 OK 0 B URL HTTP/2 freshtools.net/fonts/font-awesome-4.7.0/css/font-awesome.min.css
IP
GET /fonts/font-awesome-4.7.0/css/font-awesome.min.css HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:23:07 GMT
content-type: text/css
last-modified: Mon, 18 Oct 2021 20:32:36 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ckrvN2rVC6Ui07Edz%2Bv52Oo0GA34qEi9mFNl2nBJiO8uo9PdNcUZ5voXdm93tvdyOBUp9go2fsVgn%2BolsQd0m%2BOITBSnavxOBWGGQLhVmYFDSaLXOVgJabIXBMkUf10l"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be9d968cc2b529-OSL
content-encoding: br
X-Firefox-Spdy: h2
freshtools.net/vendor/tilt/tilt.jquery.min.js
200 OK 0 B URL HTTP/2 freshtools.net/vendor/tilt/tilt.jquery.min.js
IP
GET /vendor/tilt/tilt.jquery.min.js HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:23:07 GMT
content-type: application/javascript
last-modified: Mon, 18 Oct 2021 20:32:36 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CGc6S%2BvAMZWgiwVafVX8BH98GEMKrpY9WiXxeitgYLgjpU%2Ful7f1yioxWCN9l5s7S%2FliO%2FFz28qNSDgxO%2FvADXLQ%2B3kxqkk%2FmJb73NoLBHKvuo62Qq0Mo537ALAmecPl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be9d96bcdfb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
freshtools.net/js/app.js
200 OK 0 B IP
GET /js/app.js HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6InUxK2JwdlF6d0ZtYUh5R0FJVGVjanc9PSIsInZhbHVlIjoid3NBZkt0VlQxc3ZLaVlrN1c0MnpIeHFwSHlNa1JxeTRaQis2RGZGMjVZZHg3SElzeVVoYnR6cGJzSVhKd3BkQk5DeXIzblN2WnZyU01JSFdyL1pvTG5jYjR4YVNLMTh4azB1bXVZM2s1ZUNFc0lCb3lzRFY4by9LdkM1WTJibmciLCJtYWMiOiIzODIxN2I5NGMyOTJlZTY1N2Y3MWM4NzQ3MDIzYTk5ZDI1M2NiMTgxNjQxYTg3ZDMzZjI5MGJiM2QyMTJhODU3IiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6ImJuTnVwc1A2ZWhmS3ByUlhLT1hXMWc9PSIsInZhbHVlIjoiYjRPZGdyN3JMdzl4c3c5emE1dEVLNWMwa3dqUllvam85elhkc0hWK1RpdVBXcHE0OXZnS2VoRzFycEkrSndVbzY2bWtxQ0h6eHpRS2QvNDRMUGkrQ0N0UmhadjIxNzhtaWpyeHFPVk9DNjY3b2xCb2VFYy9MckF2ZWRtRzBZbWkiLCJtYWMiOiI4ZDExMTUxZDFmNTU4NDMxODUzYWEzODJjYzAwNWNjYjY3ODU5NDM2NGI0OWFlMTdjOGEyMmViYTdiMDM2OTIyIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:23:07 GMT
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 06:19:56 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 2576
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RAOhk6eYNS9gzEWGDEFaBlHtvQa1Tv7kOSHp9OlB64Fncitdq8qxtYvrtVue9pdq5CE%2BLM4ODfGlpS%2BrfgJSN6Hv6Ef0JVftdW0w22So7AINr3FyzFz%2BPPDifGoVXgSO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be9d96bcdcb529-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://freshtools.net
Connection: keep-alive
Referer: https://freshtools.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 18 Nov 2022 06:23:07 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 76be9d96f9941c06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.youtube.com/embed/2dDbaVsWxsY
200 OK 0 B URL HTTP/2 www.youtube.com/embed/2dDbaVsWxsY
IP
GET /embed/2dDbaVsWxsY HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 18 Nov 2022 06:23:07 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=x-8yqvb-2yA; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=Wn7l4Qy7l_Y; Domain=.youtube.com; Expires=Wed, 17-May-2023 06:23:07 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+183; expires=Sun, 17-Nov-2024 06:23:07 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
192.185.79.198
158.85.120.178
93.184.220.29
104.16.56.101
23.36.76.226