r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20952
Expires: Tue, 06 Dec 2022 10:09:33 GMT
Date: Tue, 06 Dec 2022 04:20:21 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3494
Cache-Control: max-age=112152
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:21 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:29:33 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 06 Dec 2022 04:20:21 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 0
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4568
Expires: Tue, 06 Dec 2022 05:36:29 GMT
Date: Tue, 06 Dec 2022 04:20:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: pHR2yvPw+Vc3wajt+zk6qsmPxmKtkR5SCVYPN31ywvESetS8WC3Bc3guSdYd2P5jYKbcC/rrncs=
x-amz-request-id: 2NDY67J8VT723QM7
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 06 Dec 2022 03:46:57 GMT
age: 2004
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Dec 2022 04:20:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 2b9d2db133ccb3fe79d69a74d34b2254
0f67605d0e9e7ffb6a45de1b2dd7f6a3b4324c60
7213aaf79193884a561f331890321885984e9057127be12818bd7924f46c7842
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=161215
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:22 GMT
Etag: "638e95c5-116"
Expires: Thu, 08 Dec 2022 01:07:17 GMT
Last-Modified: Tue, 06 Dec 2022 01:07:17 GMT
Server: nginx
Content-Length: 278
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 06 Dec 2022 04:08:58 GMT
cache-control: public,max-age=3600
age: 684
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3485
Cache-Control: max-age=107075
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:22 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 10:04:57 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 859873dc96eee7ad604995c80749da25
d2e2e9b27c2091e6f23c5e6113e4cf27cbe0b416
e81c6f5a0d32dfc6530a2af94b6315d0977907d5d43c7a1c1d801d15dbfcf77d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:22 GMT
Etag: "638da3bd-117"
Server: ECS (amb/6BBF)
Content-Length: 279
push.services.mozilla.com/
54.149.149.164101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.149.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7wTO/EXgWEEDsPVSv4kziA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Op4R9Ev28ORR4g6BjdQHeANzmcA=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b9e460c077e837add10b7e423b149f6e
cde6854da1c7108d3d6c8184f9a39d2d20ba0c78
874a4babc2bf54d880f94425142d3cce3151d964efd54c8bffec992b064c1be3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3273
Cache-Control: max-age=99326
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:23 GMT
Etag: "638d973c-117"
Expires: Wed, 07 Dec 2022 07:55:49 GMT
Last-Modified: Mon, 05 Dec 2022 07:01:16 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b9e460c077e837add10b7e423b149f6e
cde6854da1c7108d3d6c8184f9a39d2d20ba0c78
874a4babc2bf54d880f94425142d3cce3151d964efd54c8bffec992b064c1be3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3277
Cache-Control: max-age=99329
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:23 GMT
Etag: "638d973c-117"
Expires: Wed, 07 Dec 2022 07:55:52 GMT
Last-Modified: Mon, 05 Dec 2022 07:01:16 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.css
151.101.65.229200 OK 569 B URL HTTP/2 cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.css
IP 151.101.65.229:0
Hash 8089b828484e2269d5dcb1089c4004ba
9b61a0f5bf48ef08890dbae954ee9b5a90015d2c
35c1c8741af6e18aa88caca3d060e26808e1103a29b3ee0415ae3e3b648bcd09
GET /npm/slick-carousel@1.8.1/slick/slick.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"6f0-qUoFmzF4tK3sCeMoGs4oGaMAlaQ"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:20:23 GMT
age: 22734155
x-served-by: cache-fra19155-FRA, cache-bma1675-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 569
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.min.js
151.101.65.229200 OK 10 kB URL HTTP/2 cdn.jsdelivr.net/npm/slick-carousel@1.8.1/slick/slick.min.js
IP 151.101.65.229:0
File type ASCII text, with very long lines (42862)
Hash 9813220cc7ce308c3b615177a704bf73
7ac45f0924a3723bb86b31191dd5181cdf6182e5
e899ddae1fc463f8f57aa9b3eb970526133124c47f27ace1255d261fab56f4cb
GET /npm/slick-carousel@1.8.1/slick/slick.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.8.1
x-jsd-version-type: version
etag: W/"a76f-O0GzvJVmhQFaNHoiOOcdsp36Dbs"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 06 Dec 2022 04:20:23 GMT
age: 8339569
x-served-by: cache-fra19145-FRA, cache-bma1675-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10429
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 3f4ef8a54bffe08abfd72fbbe3b259e8
28770087be63936aabfdd9d802739767c8fca454
642f68596c1c285397713d2b1147f77a94a5e2eadcb8b18632133f1f87276639
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5951
Cache-Control: max-age=150231
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:23 GMT
Etag: "638e539f-118"
Expires: Wed, 07 Dec 2022 22:04:14 GMT
Last-Modified: Mon, 05 Dec 2022 20:25:03 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b9e460c077e837add10b7e423b149f6e
cde6854da1c7108d3d6c8184f9a39d2d20ba0c78
874a4babc2bf54d880f94425142d3cce3151d964efd54c8bffec992b064c1be3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3277
Cache-Control: max-age=99329
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:23 GMT
Etag: "638d973c-117"
Expires: Wed, 07 Dec 2022 07:55:52 GMT
Last-Modified: Mon, 05 Dec 2022 07:01:16 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/animate.css/4.0.0/animate.min.css
104.17.25.14200 OK 4.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/animate.css/4.0.0/animate.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (65346)
Hash 4deedbb31211eaadf8619c3a2b8a3d5b
cb5e296649083d6dee43dca5e14bd36054b031d8
727abfcfbae40e19a33bc29075110d14b1e9f8366c88ab7217b153d287659fd1
GET /ajax/libs/animate.css/4.0.0/animate.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-type: text/css; charset=utf-8
content-length: 4216
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb436a8-11848"
last-modified: Thu, 07 May 2020 16:26:16 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 355086
expires: Sun, 26 Nov 2023 04:20:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wtFeDQSDqkQqrZwmdQIUpFzO1w0u8sOYklU60NsTrPs3VUAoqaJEkvl0PEPwFMRZofgbMdSs7Hdvbo017%2BFYPSaJmOot4rbySmBX6xbvh6cM2aaaD9pjEU35drDJOBM7S2nRUI%2FO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77523a900ba2b4f3-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jqueryui/1.11.2/jquery-ui.min.js
142.250.74.10200 OK 64 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jqueryui/1.11.2/jquery-ui.min.js
IP 142.250.74.10:0
File type ASCII text, with very long lines (32157)
Hash 7756e68f4eb51a103ca4470ef4bced27
acd37eeae2641edac458694a14c6e1a2985e87b6
1798a9b14876b546bb25c1dc964fa574c02538439b716433f1594aad03c3b2e1
GET /ajax/libs/jqueryui/1.11.2/jquery-ui.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 64362
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 14:46:31 GMT
expires: Wed, 29 Nov 2023 14:46:31 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 567232
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
code.jquery.com/jquery-migrate-1.2.1.min.js
69.16.175.42200 OK 3.1 kB URL HTTP/2 code.jquery.com/jquery-migrate-1.2.1.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (7085)
Hash e1084a25976d8b8999acadc7350ffb48
99b723d38b78d8347e8dfa60193b12864a370227
b98359c65420aa3864d5b86ef94c4c9a5fb8c772a905884a5ba4ce55319a3d13
GET /jquery-migrate-1.2.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-encoding: gzip
content-length: 3063
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-1c1f"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670300423.dop214.sk1.t,1670300423.cds257.sk1.hn,1670300423.cds242.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 7dfb548d8f8a99d32050803775fad5d6
8b47999a01db7c2217d76a1cec576809a229cf1b
68dd2a1e5a0002f4d25d3b5884ab55bc6b5a91e38f6dc464c4261b19c6e5887e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
code.jquery.com/jquery-1.11.0.min.js
69.16.175.42200 OK 33 kB URL HTTP/2 code.jquery.com/jquery-1.11.0.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (32341)
Hash 665423f5df5f30d3e991653d594fd1cd
ad2be638c57e37aa00adacc89d233d70d5c5c927
fce13e871876bba3561cf18484a8f4fcab2d1b954079b78c1d8ff7a727583b33
GET /jquery-1.11.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-encoding: gzip
content-length: 33357
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1787d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670300423.dop214.sk1.t,1670300423.cds257.sk1.hn,1670300423.cds206.sk1.c
X-Firefox-Spdy: h2
munchkin.marketo.net//munchkin.js
23.53.51.106200 OK 728 B URL HTTP/1.1 munchkin.marketo.net//munchkin.js
IP 23.53.51.106:0
ASN #1299 Telia Company AB
File type ASCII text, with very long lines (521)
Hash 51a92d8c69733d719447dea0416ed039
69f4c1e0b7ebba812bc096708d57627927dff265
cb483c0ea4012ac512bcba6204b37622b388c1aefd4ae9028f60abb965f23d29
GET //munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "92b41a298690c047b0c4602dd843cba4:1662686319.691662"
Last-Modified: Fri, 09 Sep 2022 01:18:39 GMT
Server: AkamaiNetStorage
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 06 Dec 2022 04:20:23 GMT
Content-Length: 728
Connection: keep-alive
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash c0fc9cb5cffb933db9bad8a49fb959c3
f47df948c2011914c2c77f5a871b68770d2c9601
ea0d43cc822237f8996d6b6a238a5362e0c845d84a57581210baaf00a879d7bd
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Dec 2022 04:20:23 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "599F53480ECBCB5E6D430BB4AFC8AEF2A74C29B1"
Expires: Tue, 06 Dec 2022 15:00:00 GMT
Last-Modified: Tue, 06 Dec 2022 03:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1259
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77523a907b2db511-OSL
ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
142.250.74.10200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
IP 142.250.74.10:0
File type ASCII text, with very long lines (32038)
Hash 103708790db3586027df27ded660f8ef
d3f58fbe6e02cb4b8b34c6fd510e011cb325bc70
fdba876856bb6c2783df94cacb0f17b53fe33f1907135539272c0127b4270ffe
GET /ajax/libs/jquery/1.11.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33507
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:49:02 GMT
expires: Wed, 29 Nov 2023 13:49:02 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 570681
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 3f4ef8a54bffe08abfd72fbbe3b259e8
28770087be63936aabfdd9d802739767c8fca454
642f68596c1c285397713d2b1147f77a94a5e2eadcb8b18632133f1f87276639
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4442
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:23 GMT
Last-Modified: Tue, 06 Dec 2022 03:06:21 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
info.mimecast.com/rs/336-TAU-594/images/PhotoOps-300x300.jpg
104.17.72.206200 OK 29 kB URL HTTP/2 info.mimecast.com/rs/336-TAU-594/images/PhotoOps-300x300.jpg
IP 104.17.72.206:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.0 (Macintosh), datetime=2022:11:07 09:40:22], baseline, precision 8, 300x300, components 3\012- data
Hash b95ba97bb7327a845653720cf7a0cf1f
cf8755560247991ab3d2fbe7c1dfca5c3349e891
bc538b3097c139c51139b3572a9b5ae6c7848a5876d1b4b601fcbb7ce23b6365
GET /rs/336-TAU-594/images/PhotoOps-300x300.jpg HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!YTHv78AiSBKAIMW9jRdq5/AJjPbVzV0/0cqLnTYZuRe6WYxRPQyhjVxMmOxvotvwf0D8i+a9RtxsHQ==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-type: image/jpeg
content-length: 29265
cf-bgj: h2pri
etag: "444084-7251-5ecf9bbee75b8"
last-modified: Tue, 08 Nov 2022 18:30:27 GMT
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
expires: Tue, 06 Dec 2022 04:21:23 GMT
cache-control: public, max-age=60
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77523a8f5a27b50f-OSL
X-Firefox-Spdy: h2
info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
104.17.72.206200 OK 24 kB URL HTTP/2 info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
IP 104.17.72.206:0
Hash 8f9eac0dc88824143532e11a6e0492d8
b7ca2399ef3ede40441effcc0f92ae866624c446
a310dc3ff17a16b79ae71fb606854037c23ff8fbed84d94543efc2dd9f717985
GET /ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://email.mimecast.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-type: text/html; charset=utf-8
p3p: CP="CAO CURa ADMa DEVa TAIa OUR IND UNI COM NAV INT"
x-asset-type: LP
vary: *,Accept-Encoding
x-content-type-options: nosniff
x-cache-status: BYPASS
x-mkto-nginx-cache: false
cf-cache-status: DYNAMIC
set-cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!YTHv78AiSBKAIMW9jRdq5/AJjPbVzV0/0cqLnTYZuRe6WYxRPQyhjVxMmOxvotvwf0D8i+a9RtxsHQ==;Path=/;Version=1;Secure;Httponly
__cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=; path=/; expires=Tue, 06-Dec-22 04:50:23 GMT; domain=.info.mimecast.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77523a8abfd7b50f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash c10bc583c46449dc192a809398b4e814
ff0f7ad905d32d7f3d01e4054552d0ad551503a5
defd2b2559e55c9c6c0f8be9b23c53c4e781a736feae3dd73b4d203b69cfcc57
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
info.mimecast.com/rs/336-TAU-594/images/Image_Placeholder.png
104.17.72.206200 OK 254 kB URL HTTP/2 info.mimecast.com/rs/336-TAU-594/images/Image_Placeholder.png
IP 104.17.72.206:0
File type PNG image data, 1276 x 1028, 8-bit/color RGBA, non-interlaced\012- data
Size 254 kB (253903 bytes)
Hash eb7b4dfe1c4cd49b04b162d18bfb55bd
e6f555ed47b7316da1c411b8ddd39ed849266968
aaa4b610aa673d66bd9df814083fa92821cb4d18f929944f3d437a506a5b8dec
GET /rs/336-TAU-594/images/Image_Placeholder.png HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!YTHv78AiSBKAIMW9jRdq5/AJjPbVzV0/0cqLnTYZuRe6WYxRPQyhjVxMmOxvotvwf0D8i+a9RtxsHQ==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-type: image/png
content-length: 253903
last-modified: Wed, 12 Oct 2022 04:03:51 GMT
etag: "4426f8-3dfcf-5eace7b069aa0"
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
expires: Tue, 06 Dec 2022 04:21:23 GMT
cache-control: public, max-age=60
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77523a8f5a24b50f-OSL
X-Firefox-Spdy: h2
info.mimecast.com/rs/336-TAU-594/images/Nasdaq-logo.png
104.17.72.206200 OK 3.0 kB URL HTTP/2 info.mimecast.com/rs/336-TAU-594/images/Nasdaq-logo.png
IP 104.17.72.206:0
File type PNG image data, 654 x 143, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b23e7f0ccf4eacbf87b1b9ab4fbb333
4bf562763af05fd9f4dfe7ff77796fda93a929bd
b114ad86691740285a76e7e3b3f44fb4972e0774236c1857e1d528993e20885a
GET /rs/336-TAU-594/images/Nasdaq-logo.png HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!YTHv78AiSBKAIMW9jRdq5/AJjPbVzV0/0cqLnTYZuRe6WYxRPQyhjVxMmOxvotvwf0D8i+a9RtxsHQ==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-type: image/png
content-length: 2959
last-modified: Wed, 12 Oct 2022 03:46:44 GMT
etag: "442688-b8f-5eace3dd0aea9"
x-content-type-options: nosniff
cf-cache-status: EXPIRED
expires: Tue, 06 Dec 2022 04:21:23 GMT
cache-control: public, max-age=60
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77523a8f6a2fb50f-OSL
X-Firefox-Spdy: h2
info.mimecast.com/rs/336-TAU-594/images/Thom%20B%20Headshot%20Champagne%20Tasting%20.jpg
104.17.72.206200 OK 36 kB URL HTTP/2 info.mimecast.com/rs/336-TAU-594/images/Thom%20B%20Headshot%20Champagne%20Tasting%20.jpg
IP 104.17.72.206:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, comment: "LEAD Technologies Inc. V1.01", baseline, precision 8, 556x552, components 3\012- data
Hash fa5d7d011bd2dd528e90737767b0a70d
fd0dcd11995394b57be37f015dfb9a0226810708
96137c4aba7c78b04a5483f6cd1fd28e7859d1a2d37565f1f8adfe917b744ea7
GET /rs/336-TAU-594/images/Thom%20B%20Headshot%20Champagne%20Tasting%20.jpg HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!YTHv78AiSBKAIMW9jRdq5/AJjPbVzV0/0cqLnTYZuRe6WYxRPQyhjVxMmOxvotvwf0D8i+a9RtxsHQ==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-type: image/jpeg
content-length: 36170
last-modified: Mon, 05 Dec 2022 19:40:04 GMT
etag: "442b52-8d4a-5ef19daa42983"
x-content-type-options: nosniff
cf-cache-status: EXPIRED
expires: Tue, 06 Dec 2022 04:21:23 GMT
cache-control: public, max-age=60
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77523a8f5a25b50f-OSL
X-Firefox-Spdy: h2
info.mimecast.com/js/stripmkttok.js
104.17.72.206200 OK 678 B URL HTTP/2 info.mimecast.com/js/stripmkttok.js
IP 104.17.72.206:0
Hash 3fdef86d42eeb7dfcfb73a530ee91fc5
2607ea641352760e576457f45118a7669410f985
8a52a2135e190805e486c15721ae5af8a353d2882d515a316aa106e8c0a38099
GET /js/stripmkttok.js HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!YTHv78AiSBKAIMW9jRdq5/AJjPbVzV0/0cqLnTYZuRe6WYxRPQyhjVxMmOxvotvwf0D8i+a9RtxsHQ==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-type: application/x-javascript
content-length: 678
last-modified: Tue, 04 Oct 2022 18:03:50 GMT
etag: "423e16-602-5ea394843ed80"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
expires: Tue, 06 Dec 2022 08:20:23 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 77523a8f6a33b50f-OSL
X-Firefox-Spdy: h2
info.mimecast.com/rs/336-TAU-594/images/PANW_Parent_Brand_Primary_Logo_RGB_Red_White%20%281%29.png
104.17.72.206200 OK 18 kB URL HTTP/2 info.mimecast.com/rs/336-TAU-594/images/PANW_Parent_Brand_Primary_Logo_RGB_Red_White%20%281%29.png
IP 104.17.72.206:0
File type PNG image data, 1312 x 240, 8-bit/color RGBA, non-interlaced\012- data
Hash 8192664cb37d952a2880f33207dd2147
2a5815becfeb8b9577232e25bdb6fcd97022014d
2003684d0dca4a5838a3fa6c7f4a8bcb44f09e64e2758acc30e9b746263f6079
GET /rs/336-TAU-594/images/PANW_Parent_Brand_Primary_Logo_RGB_Red_White%20%281%29.png HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!YTHv78AiSBKAIMW9jRdq5/AJjPbVzV0/0cqLnTYZuRe6WYxRPQyhjVxMmOxvotvwf0D8i+a9RtxsHQ==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-type: image/png
content-length: 17455
last-modified: Tue, 08 Nov 2022 18:21:46 GMT
etag: "444083-442f-5ecf99cde8e46"
x-content-type-options: nosniff
cf-cache-status: EXPIRED
expires: Tue, 06 Dec 2022 04:21:23 GMT
cache-control: public, max-age=60
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77523a8f5a1fb50f-OSL
X-Firefox-Spdy: h2
use.typekit.net/efx1znb.css
23.36.76.122200 OK 1.0 kB URL HTTP/2 use.typekit.net/efx1znb.css
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash 7a92d3a2fca26ca5b0e0c23101434986
e84e30ed46be03b8c6590c260fa1cc77888a463c
8423823ba382029c353bc3b1aa6e7aa7e543c79e6aeac451ae5762ccdbf273e1
GET /efx1znb.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 1043
date: Tue, 06 Dec 2022 04:20:24 GMT
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=efx1znb&ht=tk&f=39473.39474.39475.39476.39477.39478.39479.39480.39481.39482.39483.39484&a=17724356&app=typekit&e=css
23.36.76.184200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=efx1znb&ht=tk&f=39473.39474.39475.39476.39477.39478.39479.39480.39481.39482.39483.39484&a=17724356&app=typekit&e=css
IP 23.36.76.184:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=efx1znb&ht=tk&f=39473.39474.39475.39476.39477.39478.39479.39480.39481.39482.39483.39484&a=17724356&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: text/css
cross-origin-resource-policy: cross-origin
etag: "613bee4d-5"
last-modified: Fri, 10 Sep 2021 23:46:21 GMT
server: nginx
content-length: 5
unused62: 8096267
date: Tue, 06 Dec 2022 04:20:24 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19925
Expires: Tue, 06 Dec 2022 09:52:29 GMT
Date: Tue, 06 Dec 2022 04:20:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19925
Expires: Tue, 06 Dec 2022 09:52:29 GMT
Date: Tue, 06 Dec 2022 04:20:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19925
Expires: Tue, 06 Dec 2022 09:52:29 GMT
Date: Tue, 06 Dec 2022 04:20:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19925
Expires: Tue, 06 Dec 2022 09:52:29 GMT
Date: Tue, 06 Dec 2022 04:20:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19925
Expires: Tue, 06 Dec 2022 09:52:29 GMT
Date: Tue, 06 Dec 2022 04:20:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e1b54923ba506fde6b21c5bfb51ccc8
366aa3ab0790c496ea51bc08d1f2ff3358530d9e
a993ca6dc9a1f854f4542f9221e4f90060825ea863974b5163a9d3e284dc4663
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70fb9d31-10e5-4323-9fbd-ed451a00e6b1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10594
x-amzn-requestid: eee9f193-eef5-44bf-997a-877fa206749e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSyIHpGoAMF1fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64da-0a9190f7698dbf2f73bb1575;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T28mItwomGU8iDJ18lUF7ZrFuyh_P3ZTwUtA4AC5qZ5C5FQurDMgmQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:54:01 GMT
age: 23183
etag: "366aa3ab0790c496ea51bc08d1f2ff3358530d9e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3801236dc22938e1cc18947e90ea5326
5979d7dc3ba0eb61947282a4adeac8208b4148ae
3bd4eab29590ec3c316597abd2be65281cd9a6137add037ad57c093f1fca12e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6aff31b2-ef3e-4782-ae28-38f9aee8b1b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5995
x-amzn-requestid: 25b34277-c486-4642-aea7-21e0598babc3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSzOGGjoAMF4kw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64e1-6f43ab8e0c1a5260327bce11;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YzpOZW9e-54LuSSOigtmFRb0sUGpIRpqZ-UtINp-B_Uzk6lFPnb6dw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 22:25:46 GMT
age: 21278
etag: "5979d7dc3ba0eb61947282a4adeac8208b4148ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a1b8c21-bea6-4053-8dea-90393eea45b7.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a1b8c21-bea6-4053-8dea-90393eea45b7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30d72693680b3ac91c0eee4d47a26196
cd923a5a3810bfe86be2eca4b97c739d76756d93
69ca9e172f6b0c5bf158022d533701b89282630deaa0ce7df27ed459c9bfe75e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a1b8c21-bea6-4053-8dea-90393eea45b7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8656
x-amzn-requestid: cfc71f7f-d1c6-47c9-8107-864701dbf3c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwkEHmIAMFUnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64d0-6705510852d26ae24b3e5ea4;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:24 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: JVEVoNv1w1lqFYG0M8v2GK92-1MfPxn8SnZv5JZitWWEDuXJ4DwmqQ==
via: 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:41 GMT
age: 23503
etag: "cd923a5a3810bfe86be2eca4b97c739d76756d93"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faeae6973-c3cb-4597-8dcc-f36e4cd35fda.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faeae6973-c3cb-4597-8dcc-f36e4cd35fda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5529617b0748f2d8c82ef99c1ac116a8
a862b74508113ae72b56b9b3de0c75ba559b9032
376a82ae4a5b80f59fb746be79bca569b03a74c345845c7bbf15189964b0bb96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faeae6973-c3cb-4597-8dcc-f36e4cd35fda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11469
x-amzn-requestid: f60a3f0d-38f7-4f82-bdd5-9e31814ab1d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSuZGAXIAMFwuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64c2-5b4b99e779a0aaa71a311a1c;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bWcuXixVA50JUynSO7ar3nWfjsTa5iOteSYq88bWPlQvz__1qfv7Uw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:41:49 GMT
age: 23915
etag: "a862b74508113ae72b56b9b3de0c75ba559b9032"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4193f05dfd1de8bf795f433d4387243
b76ea6ae9df756f131ec16b01cdc7ab19b2d01be
b56231f3c788519751528b849a442d5c7ed828ea4ce3321fd629ca27440ea6e3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc696fe00-4af0-41c0-a10e-ba5dcc55c22b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6920
x-amzn-requestid: 05ec2698-a5ee-4046-be77-0036755f2946
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: csSwaEd-IAMF_-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638e64cf-783b236b79b1e9ba22098cb2;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 21:38:23 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RF_AmYN7VQghDpDX6kEyBEBZtvR8dfLpwuqk75bGpn8q2OMc46lVgA==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:31 GMT
age: 23513
etag: "b76ea6ae9df756f131ec16b01cdc7ab19b2d01be"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcb8fe0c4ba323ab2483fa290c291051
6706e02d6b95edc3a33c951f07d04b0fb7415b77
6be68deb3a330955027ec16eaca2cdf4e2776620ffb7cb995922664b24400f02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8749
x-amzn-requestid: ee03c447-299b-45d5-b8c6-12d4d1dc436d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_spHdBIAMFywQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-0c9805c6112ec9ec6b9d1544;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tsL8hmcWaBeKYVG2b4g7ebl-sQ0Z5jZaexEfvldfzq9COcOdzqLhUA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 21:48:49 GMT
age: 23495
etag: "6706e02d6b95edc3a33c951f07d04b0fb7415b77"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 3ba864a4daffd79d4639e98e35cf5a8f
4e2dfdbff3ce773c1c39031bdf854e2b0a31131c
73a684466e34cc6ab4250dbab0c6afb73a92c4239e37076020b9e1c446b69b7e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
use.typekit.net/af/e8ba57/00000000000000003b9b2038/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3
23.36.76.122200 OK 26 kB URL HTTP/2 use.typekit.net/af/e8ba57/00000000000000003b9b2038/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 25900, version 1.0\012- data
Hash 8c2d773af6bbe3d92ea240122ddcd194
64e1acb13f4714f71b315f0bab556d093107c5d1
99c3be2a0eb1736419e732e5674274384595e0ff9ce517cceddf5425c7dadaa2
GET /af/e8ba57/00000000000000003b9b2038/27/l?primer=7cdcb44be4a7db8877ffa5c0007b8dd865b3bbc383831fe2ea177f62257a9191&fvd=n5&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://info.mimecast.com
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 25900
etag: "ae2ad11fd88cb05ce0e1bbe3f931997acde0a89d"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Tue, 06 Dec 2022 04:20:24 GMT
X-Firefox-Spdy: h2
platform-api.sharethis.com/js/sharethis.js
143.204.55.67200 OK 70 kB URL HTTP/2 platform-api.sharethis.com/js/sharethis.js
IP 143.204.55.67:0
Hash 36e2a02be445989e0187fd5ef43d3fd6
d7c0fc97d873ee4fcf6ef3dee2ac102384457c80
67c16b20946561e4acfe4573542279c10c3f3f75a30e58e294e8a8bf9c4f47f7
GET /js/sharethis.js HTTP/1.1
Host: platform-api.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-encoding: gzip
edge-control: cache-maxage=60m,downstream-ttl=60m
x-frame-options: SAMEORIGIN
date: Tue, 06 Dec 2022 04:20:21 GMT
cache-control: max-age=600, public
etag: W/"30217-4R/x1mcbHYoN8J5L8eO1d9Nv/qY"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6QrG9M4XZrVfMDHh7LzAdU59p9d17Mt4kWdTZ6QqMpq2eX9mh7y1hw==
age: 3
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css
104.18.11.207200 OK 21 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css
IP 104.18.11.207:0
File type ASCII text, with very long lines (65371)
Hash 835b645d961f58892a787443a4866455
93ec884a3018c80eb0765fa710eb0af1e81541dd
7cf3e1219ac5f7ae29ddb5941f992173d1995442ef21b9daa32d82a2e33c3258
GET /bootstrap/3.3.6/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"2f624089c65f12185e79925bc5a7fc42"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 02/17/2022 20:27:53
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 860
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 441a5c346e6138207e493340368ec0b9
cdn-cache: HIT
cf-cache-status: HIT
age: 15746784
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77523a903a8eb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://info.mimecast.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Dec 2022 18:52:41 GMT
expires: Tue, 05 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 34063
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-M2787TN
142.250.74.40200 OK 111 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-M2787TN
IP 142.250.74.40:0
File type ASCII text, with very long lines (57043)
Size 111 kB (110746 bytes)
Hash db04ca6228466f40db80fff996f446d9
391b8dd9672ad8dd861cbdbb0fcc1bc4137b72f1
ad23e9b1af1ada848abbcbef7209acdc3bc63cc4f506aafc8e0d15b2b87133ed
GET /gtm.js?id=GTM-M2787TN HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Dec 2022 04:20:24 GMT
expires: Tue, 06 Dec 2022 04:20:24 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Dec 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 110746
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.6/js/bootstrap.min.js
104.18.11.207200 OK 11 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.6/js/bootstrap.min.js
IP 104.18.11.207:0
File type ASCII text, with very long lines (32003)
Hash fb6ea2dade44d917363039613f89ebe8
29d2760eaa059688f4244d36cd86652cdd4d02dd
2b6db321f06c269b9e5d9878c14afa4e3e959a61a55188ee3bffd641434eae65
GET /bootstrap/3.3.6/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 11/05/2021 16:36:29
cdn-edgestorageid: 722
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.0
cdn-requestid: bfa40aed2fbee600eecd4f43bc8c0656
cdn-cache: HIT
cf-cache-status: HIT
age: 15744567
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77523a8faa45b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
info.mimecast.com/rs/336-TAU-594/images/Brian%20%281%29.png
104.17.72.206200 OK 422 kB URL HTTP/2 info.mimecast.com/rs/336-TAU-594/images/Brian%20%281%29.png
IP 104.17.72.206:0
File type PNG image data, 800 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 422 kB (421930 bytes)
Hash 77dd430cadea1273a8efbce36de60104
fed0fc5ef4c8004ed2d03789035182745d8168c2
1ab67188c66acb2628893621019713d800f1efc5d2902ad65fe36a98aa29e47b
GET /rs/336-TAU-594/images/Brian%20%281%29.png HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!YTHv78AiSBKAIMW9jRdq5/AJjPbVzV0/0cqLnTYZuRe6WYxRPQyhjVxMmOxvotvwf0D8i+a9RtxsHQ==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:24 GMT
content-type: image/png
content-length: 421930
last-modified: Tue, 15 Nov 2022 21:02:45 GMT
etag: "444355-6702a-5ed88ad8331dc"
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
expires: Tue, 06 Dec 2022 04:21:23 GMT
cache-control: public, max-age=60
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77523a8f5a26b50f-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash e24f2da4ed2e3cd07b0999a67550d634
6e2277e734fd0015849c3554dd2cf2ae289c2cf2
74dc14d7d9ba8bba4a162680e59801af1d7c2995639df51f32ff2f3d4d0b0051
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash f0ee436cb34a58c2d2818d52cfc7864d
6d60ca3d77060b70178eccdc6777f1040a97a670
5567604a66e822cbc9585200503b99145e15f621821e91734ad5e79ab2d38dd1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3213
Cache-Control: max-age=96752
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:24 GMT
Etag: "638d8d6b-118"
Expires: Wed, 07 Dec 2022 07:12:56 GMT
Last-Modified: Mon, 05 Dec 2022 06:19:23 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 280
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.149.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.149.64:0
File type ASCII text, with very long lines (21747)
Hash 6ca9058d9138dc07d9a378e6f20a8b7b
ff5f65ad24a8e2b3042cbb0136be7edb52215c1a
1561d36bd995a09ea69c243767e196dd2e76a2753b59b78ecbf999161904f86d
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:24 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: bKkFjZE43AfZo3jm8gqLew==
last-modified: Mon, 05 Dec 2022 21:44:15 GMT
etag: 0x8DAD709DB138EFF
x-ms-request-id: 8a53be7b-701e-0119-4f07-09b2db000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 9047
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77523a954ddbb4f7-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3e20a8fc-e9f6-44d7-a3a1-cb59bb69dc93/3e20a8fc-e9f6-44d7-a3a1-cb59bb69dc93.json
104.16.149.64200 OK 1.5 kB URL HTTP/2 cdn.cookielaw.org/consent/3e20a8fc-e9f6-44d7-a3a1-cb59bb69dc93/3e20a8fc-e9f6-44d7-a3a1-cb59bb69dc93.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (3609), with no line terminators
Hash 005c8a79ae0731c7e65023894842b995
47b7af1a1b2ff3bfe2ef9af719321b3b0d66e850
fd27fb25be47c52231d9e16987c5f9b986263bf9c0f149ecdcb54f2ba64a655e
GET /consent/3e20a8fc-e9f6-44d7-a3a1-cb59bb69dc93/3e20a8fc-e9f6-44d7-a3a1-cb59bb69dc93.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://info.mimecast.com
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:24 GMT
content-type: application/x-javascript
content-length: 1506
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: AFyKea4HMcfmUCOJSEK5lQ==
last-modified: Thu, 31 Mar 2022 21:19:13 GMT
etag: 0x8DA135C1B0CE254
x-ms-request-id: 0df1a82d-401e-0155-7246-4575c4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 34324
expires: Wed, 07 Dec 2022 04:20:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77523a958c44fac4-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 8ab7a790cd2edb7ecc8fa7099507009e
be1dc1f767413ae160a7707e58fa6b77b770e377
1154ca1ff71f866b71887c962e0857733a8ce2be9a69abd1c6972379cd8f8166
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2823
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:24 GMT
Last-Modified: Tue, 06 Dec 2022 03:33:21 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 280
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.27.85200 OK 81 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.27.85:0
File type JSON data\012- , ASCII text, with very long lines (65383)
Hash 38e517680dcae46b2de7da0a82bdfe27
d259149805855d6becd76f5e10ac42938eb6d72d
0f78d5a28a0053e52ca52c273dca0ca11a34eda87b259c4f39cdfee1d6dd52fc
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://info.mimecast.com
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:24 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77523a962e9bb4ed-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/3e20a8fc-e9f6-44d7-a3a1-cb59bb69dc93/de611c66-07b2-4a68-bdb8-1d339e269aef/en.json
104.16.149.64200 OK 28 kB URL HTTP/2 cdn.cookielaw.org/consent/3e20a8fc-e9f6-44d7-a3a1-cb59bb69dc93/de611c66-07b2-4a68-bdb8-1d339e269aef/en.json
IP 104.16.149.64:0
File type JSON data\012- HTML document, Unicode text, UTF-8 text, with very long lines (65487), with no line terminators
Hash 9f52c3a3351864918587be189d8cdaf3
5c1826ab30ea4c4637f7f88a39f09fefe0185f86
c7e57ae04f3885944d7c1fd9f6863c606a9216f70d5577c52a654e3b6b7e9ea1
GET /consent/3e20a8fc-e9f6-44d7-a3a1-cb59bb69dc93/de611c66-07b2-4a68-bdb8-1d339e269aef/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.mimecast.com/
Origin: https://info.mimecast.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:24 GMT
content-type: application/x-javascript
content-length: 27506
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: n1LDozUYZJGFh74YnYza8w==
last-modified: Thu, 31 Mar 2022 21:19:19 GMT
etag: 0x8DA135C1E524B83
x-ms-request-id: cb244c9a-401e-00f0-6d4c-450888000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 34322
expires: Wed, 07 Dec 2022 04:20:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77523a96dc9bfac4-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.32.0/assets/otCenterRounded.json
104.16.149.64200 OK 2.6 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.32.0/assets/otCenterRounded.json
IP 104.16.149.64:0
File type JSON data\012- , ASCII text, with very long lines (7547)
Hash d7f8f2443dcd14f79ae7c35ebbec15c8
e2f1930b2188ae6009ce9db98aac969f2f5a0a80
81e3ae2d9d675ac5ef55dde077749bb894678bd430f658d10ba778e113d901c5
GET /scripttemplates/6.32.0/assets/otCenterRounded.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.mimecast.com/
Origin: https://info.mimecast.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:24 GMT
content-type: application/json
content-length: 2585
content-encoding: gzip
content-md5: 1/jyRD3NFPea58Neu+wVyA==
last-modified: Fri, 18 Mar 2022 16:29:15 GMT
etag: 0x8DA08FC7156585E
x-ms-request-id: a9aaa9b5-d01e-0136-794c-4533e1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 27391
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77523a971ca8fac4-OSL
X-Firefox-Spdy: h2
munchkin.marketo.net/162/munchkin.js
23.53.51.106200 OK 4.7 kB URL HTTP/1.1 munchkin.marketo.net/162/munchkin.js
IP 23.53.51.106:0
ASN #1299 Telia Company AB
File type ASCII text, with very long lines (606)
Hash 3e9baed982956735f6e0a0e756d97ed9
9223be6a494a10959101a7942419df7b05b84d73
930a508ed0ea6b4861d19c0738360182514010913c4ebfe9352064ae5006f8a1
GET /162/munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "75daf56f6191efe42577301908659c29:1656637152.894482"
Last-Modified: Fri, 01 Jul 2022 00:59:12 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=8640000
Expires: Thu, 16 Mar 2023 04:20:24 GMT
Date: Tue, 06 Dec 2022 04:20:24 GMT
Content-Length: 4677
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash e0deb933699de00ed0d9d56dedbc4d85
f67e544a8a84110fe20f11a4c5c998a3f5ecdb6a
1d862d07185174c279b40c582c7254b84f741854181b56d105252fcca71f1c19
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=138971
Date: Tue, 06 Dec 2022 04:20:25 GMT
Etag: "638e34ad-1d7"
Expires: Wed, 07 Dec 2022 18:56:36 GMT
Last-Modified: Mon, 05 Dec 2022 18:13:01 GMT
Server: ECS (nyb/1DCD)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: RNDI3QauywCDlpk8joM7SZ7XI2hwW48sqQ207h3oioRVjwSoFtl9aA==
Age: 2615
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash e0deb933699de00ed0d9d56dedbc4d85
f67e544a8a84110fe20f11a4c5c998a3f5ecdb6a
1d862d07185174c279b40c582c7254b84f741854181b56d105252fcca71f1c19
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=139122
Date: Tue, 06 Dec 2022 04:20:25 GMT
Etag: "638e34ad-1d7"
Expires: Wed, 07 Dec 2022 18:59:07 GMT
Last-Modified: Mon, 05 Dec 2022 18:13:01 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: s1UcsK4mEhA-lMk0ny1Jx5lrIRJPxm3RXlrk3GmvzUhxH-o8HifwoA==
Age: 2766
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 693ed9a074b04733b240079076ae7e66
c282a25b6cf0c856977d1036c95b3f4e749fb1b0
df3c74d2ecd1aad143ec5c5bd0e21918fbc03cc8f5d56cc53e129401ce2950e7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5804
Cache-Control: max-age=123074
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:25 GMT
Etag: "638dea1f-1d7"
Expires: Wed, 07 Dec 2022 14:31:39 GMT
Last-Modified: Mon, 05 Dec 2022 12:54:55 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
l.sharethis.com/pview?event=pview&hostname=info.mimecast.com&location=%2Fransomware-risk-mimecast-paloalto-webinar-registration.html&product=inline-share-buttons&url=https%3A%2F%2Finfo.mimecast.com%2Fransomware-risk-mimecast-paloalto-webinar-registration.html%3Fmkt_tok%3DMzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Cloud%20Cybersecurity%20Services%20for%20Email%2C%20Data%20%26%20Web%20%7C%20Mimecast&refDomain=email.mimecast.com&cms=unknown&publisher=5be309d6afad5b00117c8c0b&sop=true&version=st_sop.js&lang=en&description=A%20comprehensive%2C%20integrated%20solution%20that%20solves%20the%20%231%20cybersecurity%20attack%20vector%20%E2%80%93%20email%2C%20and%20reduce%20the%20time%2C%20cost%20and%20complexity%20of%20achieving%20more%20complete%20cybersecurity%2C%20compliance%20and%20resilience%20through%20additional%20modules.
52.29.164.226204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&hostname=info.mimecast.com&location=%2Fransomware-risk-mimecast-paloalto-webinar-registration.html&product=inline-share-buttons&url=https%3A%2F%2Finfo.mimecast.com%2Fransomware-risk-mimecast-paloalto-webinar-registration.html%3Fmkt_tok%3DMzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Cloud%20Cybersecurity%20Services%20for%20Email%2C%20Data%20%26%20Web%20%7C%20Mimecast&refDomain=email.mimecast.com&cms=unknown&publisher=5be309d6afad5b00117c8c0b&sop=true&version=st_sop.js&lang=en&description=A%20comprehensive%2C%20integrated%20solution%20that%20solves%20the%20%231%20cybersecurity%20attack%20vector%20%E2%80%93%20email%2C%20and%20reduce%20the%20time%2C%20cost%20and%20complexity%20of%20achieving%20more%20complete%20cybersecurity%2C%20compliance%20and%20resilience%20through%20additional%20modules.
IP 52.29.164.226:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&hostname=info.mimecast.com&location=%2Fransomware-risk-mimecast-paloalto-webinar-registration.html&product=inline-share-buttons&url=https%3A%2F%2Finfo.mimecast.com%2Fransomware-risk-mimecast-paloalto-webinar-registration.html%3Fmkt_tok%3DMzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc&source=sharethis.js&fcmp=false&fcmpv2=false&has_segmentio=false&title=Cloud%20Cybersecurity%20Services%20for%20Email%2C%20Data%20%26%20Web%20%7C%20Mimecast&refDomain=email.mimecast.com&cms=unknown&publisher=5be309d6afad5b00117c8c0b&sop=true&version=st_sop.js&lang=en&description=A%20comprehensive%2C%20integrated%20solution%20that%20solves%20the%20%231%20cybersecurity%20attack%20vector%20%E2%80%93%20email%2C%20and%20reduce%20the%20time%2C%20cost%20and%20complexity%20of%20achieving%20more%20complete%20cybersecurity%2C%20compliance%20and%20resilience%20through%20additional%20modules. HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://info.mimecast.com
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: https://info.mimecast.com
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 06 Dec 2022 04:20:25 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
104.17.72.206200 OK 16 kB URL HTTP/2 info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
IP 104.17.72.206:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (24728)
Hash 8d50dcfbe18de96fbee649d8afc282d1
eed5199bde6232dea84439a466476d1063d0ead4
789775634d414c352ace12e26bfb3bfad73e639099b9791c33e6b6d32471d613
GET /ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!YTHv78AiSBKAIMW9jRdq5/AJjPbVzV0/0cqLnTYZuRe6WYxRPQyhjVxMmOxvotvwf0D8i+a9RtxsHQ==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:24 GMT
content-type: text/html; charset=utf-8
p3p: CP="CAO CURa ADMa DEVa TAIa OUR IND UNI COM NAV INT"
x-asset-type: LP
vary: *,Accept-Encoding
x-content-type-options: nosniff
x-cache-status: BYPASS
x-mkto-nginx-cache: false
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77523a93cc21b50f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.32.0/assets/otCommonStyles.css
104.16.149.64200 OK 8.4 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.32.0/assets/otCommonStyles.css
IP 104.16.149.64:0
Hash 1b31b2e8e559a194f09c6b763f9470c6
3e8a4930811c556dba3a55f187690998353c8d0c
4b913d6d294bb6c33645587631c2eaa5ed9492a4f7bc09e9e742084b9cc4a69a
GET /scripttemplates/6.32.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://info.mimecast.com/
Origin: https://info.mimecast.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:24 GMT
content-type: text/css
content-md5: SHFDtZO2nDZuiPDW83p1IQ==
last-modified: Fri, 18 Mar 2022 16:29:27 GMT
x-ms-request-id: 5c2c2b2a-a01e-0072-634c-45a9d8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 34322
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 77523a971ca9fac4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
info.mimecast.com/rs/336-TAU-594/images/favicon-16x16.png
104.17.72.206200 OK 823 B URL HTTP/2 info.mimecast.com/rs/336-TAU-594/images/favicon-16x16.png
IP 104.17.72.206:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 9a0fa515dc14a0df6ae04ec33c90c3ac
59242918c4e38c84336ea7016236cd690a62c52d
05f69c9fe7d1ef15f5efd21a26faa07ec37299075bd3bcdf2056552e2982b627
GET /rs/336-TAU-594/images/favicon-16x16.png HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!rLmlyOozOdO1R9dbO1+Oh92Pa3vcj9EYiKrw9OF86e5sgIf36q3yU5dq/E0xVCZlksxScvHZda5I2w==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Dec+06+2022+04%3A20%3A21+GMT%2B0000+(Coordinated+Universal+Time)&version=6.32.0&isIABGlobal=false&hosts=&consentId=8f7630b2-6686-4bb4-97a2-e3ce4a7703ad&interactionCount=0&landingPath=https%3A%2F%2Finfo.mimecast.com%2Fransomware-risk-mimecast-paloalto-webinar-registration.html%3Fmkt_tok%3DMzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:25 GMT
content-type: image/png
content-length: 823
last-modified: Wed, 12 Oct 2022 04:09:30 GMT
etag: "22385e-337-5eace8f377264"
x-content-type-options: nosniff
cf-cache-status: EXPIRED
expires: Tue, 06 Dec 2022 04:21:25 GMT
cache-control: public, max-age=60
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77523a977dc0b50f-OSL
X-Firefox-Spdy: h2
336-tau-594.mktoresp.com/webevents/visitWebPage?_mchNc=1670300422065&_mchCn=ransomware-risk-mimecast-paloalto-webinar-registration&_mchId=336-TAU-594&_mchTk=_mch-mimecast.com-1670300422064-37960&mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc&_mchWs=j1RR&_mchHo=info.mimecast.com&_mchPo=&_mchRu=%2Fransomware-risk-mimecast-paloalto-webinar-registration.html&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=https%3A%2F%2Femail.mimecast.com%2F&_mchQp=mkt_tok%3DMzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
134.213.193.62200 OK 28 B URL HTTP/1.1 336-tau-594.mktoresp.com/webevents/visitWebPage?_mchNc=1670300422065&_mchCn=ransomware-risk-mimecast-paloalto-webinar-registration&_mchId=336-TAU-594&_mchTk=_mch-mimecast.com-1670300422064-37960&mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc&_mchWs=j1RR&_mchHo=info.mimecast.com&_mchPo=&_mchRu=%2Fransomware-risk-mimecast-paloalto-webinar-registration.html&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=https%3A%2F%2Femail.mimecast.com%2F&_mchQp=mkt_tok%3DMzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
IP 134.213.193.62:0
File type ASCII text, with no line terminators
Hash 9dafc521bd59955b4986f0fc3777f77a
5a572b4730d4a2bce2fa35597a0993c649f26c74
e4e90a7b8bacdfe395361149a9fd42f9192b68bdf1497e4454d0ab4c4917f746
POST /webevents/visitWebPage?_mchNc=1670300422065&_mchCn=ransomware-risk-mimecast-paloalto-webinar-registration&_mchId=336-TAU-594&_mchTk=_mch-mimecast.com-1670300422064-37960&mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc&_mchWs=j1RR&_mchHo=info.mimecast.com&_mchPo=&_mchRu=%2Fransomware-risk-mimecast-paloalto-webinar-registration.html&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=https%3A%2F%2Femail.mimecast.com%2F&_mchQp=mkt_tok%3DMzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc HTTP/1.1
Host: 336-tau-594.mktoresp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://info.mimecast.com
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Tue, 06 Dec 2022 04:20:25 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Request-Id: 8ef7aeb7-fe8c-4c01-b401-2bcea016d243
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Set-Cookie: BIGipServerPOOL-134.213.193.62-MUNCHKIN-80=!+/RE85s3NrLH3spbO1+Oh92Pa3vcj66OB3ioRfuyPsXSnW55XxMfAPYV8fxBOoM/84kRJ6DlXIkRRg==; path=/; Httponly; Secure
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
google.com/pagead/form-data/806813429?em=tv.1>m=2wgbu0
142.250.74.78200 OK 0 B URL HTTP/2 google.com/pagead/form-data/806813429?em=tv.1>m=2wgbu0
IP 142.250.74.78:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /pagead/form-data/806813429?em=tv.1>m=2wgbu0 HTTP/1.1
Host: google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://info.mimecast.com
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 06 Dec 2022 04:20:25 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
info.mimecast.com/js/forms2/css/forms2-theme-simple.css
104.17.72.206200 OK 242 B URL HTTP/2 info.mimecast.com/js/forms2/css/forms2-theme-simple.css
IP 104.17.72.206:0
Hash 4720e1ea424406eec04e5d4ede18e205
25109e2837aa426e95c520b559610c634c7ec5f5
2a8ee84e76124d7889489dc64bc710203023c652a6980f3cb17e341fdbc30907
GET /js/forms2/css/forms2-theme-simple.css HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!rLmlyOozOdO1R9dbO1+Oh92Pa3vcj9EYiKrw9OF86e5sgIf36q3yU5dq/E0xVCZlksxScvHZda5I2w==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Dec+06+2022+04%3A20%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.32.0&isIABGlobal=false&hosts=&consentId=8f7630b2-6686-4bb4-97a2-e3ce4a7703ad&interactionCount=0&landingPath=https%3A%2F%2Finfo.mimecast.com%2Fransomware-risk-mimecast-paloalto-webinar-registration.html%3Fmkt_tok%3DMzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0; _mkto_trk=id:336-TAU-594&token:_mch-mimecast.com-1670300422064-37960
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:25 GMT
content-type: text/css
content-length: 242
last-modified: Tue, 04 Oct 2022 18:03:49 GMT
etag: "423dff-33a-5ea394834ab40"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
expires: Tue, 06 Dec 2022 08:20:25 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 77523a981e01b50f-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
info.mimecast.com/index.php/form/getForm?munchkinId=336-TAU-594&form=16112
104.17.72.206200 OK 5.5 kB URL HTTP/2 info.mimecast.com/index.php/form/getForm?munchkinId=336-TAU-594&form=16112
IP 104.17.72.206:0
Hash 99b9e9cbd4defcdf6f79cb2f0fc61cb7
f9c7b16e564f7440cc22ab95d2065d922a73d262
391542082b0070f7dfaf960c82f0f281c2e99969a2a8fba6106f2aeecf462ff0
GET /index.php/form/getForm?munchkinId=336-TAU-594&form=16112 HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!YTHv78AiSBKAIMW9jRdq5/AJjPbVzV0/0cqLnTYZuRe6WYxRPQyhjVxMmOxvotvwf0D8i+a9RtxsHQ==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:24 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 77523a93bc1fb50f-OSL
set-cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!rLmlyOozOdO1R9dbO1+Oh92Pa3vcj9EYiKrw9OF86e5sgIf36q3yU5dq/E0xVCZlksxScvHZda5I2w==;Path=/;Version=1;Secure;Httponly
cf-cache-status: DYNAMIC
cached: false
x-form-service-request-id: 1124d#184e5a9d8b7
x-marketo-source: Form Service
vary: Accept-Encoding
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
info.mimecast.com/js/forms2/css/forms2.css
104.17.72.206200 OK 2.6 kB URL HTTP/2 info.mimecast.com/js/forms2/css/forms2.css
IP 104.17.72.206:0
Hash f00b296d6b75c4cb41395d5027816788
4c597dffc151d27797f4b0400566c0c4b200b648
199ea547c2ebe6b4636754c63187248c951db0ffcaa316d2783fef8f4e3dba8e
GET /js/forms2/css/forms2.css HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!rLmlyOozOdO1R9dbO1+Oh92Pa3vcj9EYiKrw9OF86e5sgIf36q3yU5dq/E0xVCZlksxScvHZda5I2w==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=; OptanonConsent=isGpcEnabled=0&datestamp=Tue+Dec+06+2022+04%3A20%3A22+GMT%2B0000+(Coordinated+Universal+Time)&version=6.32.0&isIABGlobal=false&hosts=&consentId=8f7630b2-6686-4bb4-97a2-e3ce4a7703ad&interactionCount=0&landingPath=https%3A%2F%2Finfo.mimecast.com%2Fransomware-risk-mimecast-paloalto-webinar-registration.html%3Fmkt_tok%3DMzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0; _mkto_trk=id:336-TAU-594&token:_mch-mimecast.com-1670300422064-37960
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:25 GMT
content-type: text/css
content-length: 2623
last-modified: Tue, 04 Oct 2022 18:03:49 GMT
etag: "423dfc-3437-5ea394834ab40"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
expires: Tue, 06 Dec 2022 08:20:25 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 77523a981e00b50f-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 8c9f849dd3f5c34f977fe61426b330cc
d09ff44239903757966d0b1da255ba8ff0eb7d86
35095120386b9b7e8149221f4c5483988b94a9819e9322c22405ca4ee0e29537
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6016
Cache-Control: max-age=160383
Content-Type: application/ocsp-response
Date: Tue, 06 Dec 2022 04:20:30 GMT
Etag: "638e7b0d-117"
Expires: Thu, 08 Dec 2022 00:53:33 GMT
Last-Modified: Mon, 05 Dec 2022 23:13:17 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
104.17.72.206200 OK 0 B URL HTTP/2 info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
IP 104.17.72.206:0
GET /ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!YTHv78AiSBKAIMW9jRdq5/AJjPbVzV0/0cqLnTYZuRe6WYxRPQyhjVxMmOxvotvwf0D8i+a9RtxsHQ==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:24 GMT
content-type: text/html; charset=utf-8
p3p: CP="CAO CURa ADMa DEVa TAIa OUR IND UNI COM NAV INT"
x-asset-type: LP
vary: *,Accept-Encoding
x-content-type-options: nosniff
x-cache-status: BYPASS
x-mkto-nginx-cache: false
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77523a8f5a23b50f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i&display=swap
IP 142.250.74.106:0
GET /css?family=Open+Sans:300,300i,400,400i,600,600i,700,700i,800,800i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Dec 2022 04:20:23 GMT
date: Tue, 06 Dec 2022 04:20:23 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
email.mimecast.com/MzM2LVRBVS01OTQAAAGIgY9Sk8-FMeqp88AuYoSQ6X7Rw2NnDdGPCauii6OxNSBYFdZThRDDmPtVTrT40AoY5k3Rz2o=
104.17.73.206302 Found 0 B URL HTTP/2 email.mimecast.com/MzM2LVRBVS01OTQAAAGIgY9Sk8-FMeqp88AuYoSQ6X7Rw2NnDdGPCauii6OxNSBYFdZThRDDmPtVTrT40AoY5k3Rz2o=
IP 104.17.73.206:0
GET /MzM2LVRBVS01OTQAAAGIgY9Sk8-FMeqp88AuYoSQ6X7Rw2NnDdGPCauii6OxNSBYFdZThRDDmPtVTrT40AoY5k3Rz2o= HTTP/1.1
Host: email.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Tue, 06 Dec 2022 04:20:22 GMT
content-type: text/html;charset=UTF-8
x-request-id: e43a2466396dca65
cache-control: private, no-cache, no-store, max-age=0
referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
content-security-policy: default-src 'self'; img-src 'self';script-src 'self' 'sha256-k/qdR7/l9IYBcICdPzMrnIivT17yWSiR3JcIkMoxtRs=';object-src 'none';form-action:'none';frame-src:'none'
strict-transport-security: max-age=63072000; includeSubDomains
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=F6eA8KmpAcYUV5GDmrD6ErAipelE7UzGbXz9bkziwPg-1670300422-0-AamYdIqPP1erXwy7/bUyFpIoqmVHkaiV8hp+VOW+6Rmq52nCp5mYXgatSnuJt88fXAIpmpC8M2jELEl5EwN6v6M=; path=/; expires=Tue, 06-Dec-22 04:50:22 GMT; domain=.email.mimecast.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77523a86cd88b529-OSL
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
104.18.11.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.18.11.207:0
GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 722, 617
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 2021-03-10 20:26:20
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 121d365db7a9aba3915641185d93b963
cdn-cache: HIT
cf-cache-status: HIT
age: 19611230
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 77523a8fba51b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
info.mimecast.com/js/forms2/js/forms2.min.js
104.17.72.206200 OK 0 B URL HTTP/2 info.mimecast.com/js/forms2/js/forms2.min.js
IP 104.17.72.206:0
GET /js/forms2/js/forms2.min.js HTTP/1.1
Host: info.mimecast.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://info.mimecast.com/ransomware-risk-mimecast-paloalto-webinar-registration.html?mkt_tok=MzM2LVRBVS01OTQAAAGIgY9SkwwUPHIBikl1dOD1Kwtz21DL9JfOf7OXIvgU7J4qrHpvb2HLEzyojclr-f8SAD-vtzlNn7QEB9bxI8YpxBjzKytXN0TZgW9pjEi6wBhVLuc
Cookie: BIGipServerPOOL-94.236.119.26-442-EU-E=!YTHv78AiSBKAIMW9jRdq5/AJjPbVzV0/0cqLnTYZuRe6WYxRPQyhjVxMmOxvotvwf0D8i+a9RtxsHQ==; __cf_bm=jf3evDPpnA4SbwjJ91FVskRKpZH.62jvCYX3uuQz4Rg-1670300423-0-AT9FVR8N7kB8MC3N9oSPVByCkzog23Tar/q4gyjrPQMjSEPpdQt0dG1OnrnwGptAZ097nDdaIQNcFRv946aU80M=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Dec 2022 04:20:23 GMT
content-type: application/x-javascript
last-modified: Tue, 04 Oct 2022 18:03:49 GMT
etag: "423dc1-33e51-5ea394834ab40"
vary: Accept-Encoding
content-encoding: gzip
x-content-type-options: nosniff
cf-cache-status: REVALIDATED
expires: Tue, 06 Dec 2022 08:20:23 GMT
cache-control: public, max-age=14400
server: cloudflare
cf-ray: 77523a8f5a21b50f-OSL
X-Firefox-Spdy: h2