r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17179
Expires: Sat, 26 Nov 2022 05:22:21 GMT
Date: Sat, 26 Nov 2022 00:36:02 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4159
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:02 GMT
Last-Modified: Fri, 25 Nov 2022 23:26:43 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 00:17:29 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1113
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19407
Expires: Sat, 26 Nov 2022 05:59:29 GMT
Date: Sat, 26 Nov 2022 00:36:02 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 6/I7PIjEfhEpoed95q3+B3XvgtQD52Wdxjt+uBvT8nPOB47FkMX0UOVQUuHtGrIu1h3zuJTVUfA=
x-amz-request-id: G78F2ZD185787WKP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 23:40:59 GMT
age: 3303
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 00:36:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
poetafrancisgomes.com.br/
200 OK 79 kB URL HTTP/1.1 poetafrancisgomes.com.br/
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65230), with CRLF line terminators
Hash 77bf807cdbedcaeab3137cc65338908b
527edcb6cfde0edee39b8755a149ca112ce649be
aadb972a1ca0a5bbeba30dc418e213a57dec57dd327dc3460f1eee66730d09a6
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: poetafrancisgomes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 00:36:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 25 Nov 2022 23:33:21 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: text/html
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 00:08:53 GMT
cache-control: public,max-age=3600
age: 1630
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4504
Cache-Control: max-age=121552
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:03 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 10:21:55 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
poetafrancisgomes.com.br/favicon.ico
301 Moved Permanently 0 B URL HTTP/1.1 poetafrancisgomes.com.br/favicon.ico
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: poetafrancisgomes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://poetafrancisgomes.com.br/
HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 00:36:03 GMT
Server: Apache
X-UA-Compatible: IE=edge
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://poetafrancisgomes.com.br/favicon.ico
Content-Length: 0
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 70f91044de6ef6cb7344da8b35f0448c
7093e9ec817ea0988b0c880080a6acd38929875a
cc77a76c609167b01f243a421c427ad8c2ab03a47ba7df48a9bc50b9643b07b8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CC77A76C609167B01F243A421C427AD8C2AB03A47BA7DF48A9BC50B9643B07B8"
Last-Modified: Thu, 24 Nov 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19037
Expires: Sat, 26 Nov 2022 05:53:20 GMT
Date: Sat, 26 Nov 2022 00:36:03 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: N5bYvLzZbjtGPUTByvv8wg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xayIY+syHg4dxyWc59t10ygA1wE=
poetafrancisgomes.com.br/favicon.ico
302 Found 0 B URL HTTP/2 poetafrancisgomes.com.br/favicon.ico
IP
ASN #46606 UNIFIEDLAYER-AS-1
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: poetafrancisgomes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://poetafrancisgomes.com.br/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
x-ua-compatible: IE=edge
link: <https://poetafrancisgomes.com.br/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
location: https://poetafrancisgomes.com.br/wp-includes/images/w-logo-blue-white-bg.png
content-length: 0
content-type: text/html; charset=UTF-8
date: Sat, 26 Nov 2022 00:36:04 GMT
server: Apache
X-Firefox-Spdy: h2
poetafrancisgomes.com.br/wp-includes/images/w-logo-blue-white-bg.png
200 OK 4.1 kB URL HTTP/2 poetafrancisgomes.com.br/wp-includes/images/w-logo-blue-white-bg.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: poetafrancisgomes.com.br
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://poetafrancisgomes.com.br/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 16 Nov 2021 08:34:02 GMT
accept-ranges: bytes
content-length: 4119
content-type: image/png
date: Sat, 26 Nov 2022 00:36:04 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4018
Expires: Sat, 26 Nov 2022 01:43:03 GMT
Date: Sat, 26 Nov 2022 00:36:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4018
Expires: Sat, 26 Nov 2022 01:43:03 GMT
Date: Sat, 26 Nov 2022 00:36:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4018
Expires: Sat, 26 Nov 2022 01:43:03 GMT
Date: Sat, 26 Nov 2022 00:36:05 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4018
Expires: Sat, 26 Nov 2022 01:43:03 GMT
Date: Sat, 26 Nov 2022 00:36:05 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: j_8oVo464QMWMnmkxQJIDRhaIVmwhzCTHe4A57OdmaUr9HcyTtBUjg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 2750b94b402c92287d764b5fa115a042.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 05:04:28 GMT
age: 70297
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b4955-acc7-45b4-957b-f6ff1bb5401e.jpeg
200 OK 4.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b4955-acc7-45b4-957b-f6ff1bb5401e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3559fb6bc7a14549c7bf2509f666f6d1
443bd70c61191b314d0eeb1a035d07aab6238c68
0e3803359766a616c1b9fd6047c49cd428f3623b276d9823a4a2bbe9603e8db2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3f1b4955-acc7-45b4-957b-f6ff1bb5401e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4598
x-amzn-requestid: bfb2c35e-e236-42f2-824f-2b86638d2ea4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVNYFmaIAMF6Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813588-3e808ff327d2e561162a27a3;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: u1-peK-0cR7bNo0Rhdj6nubp7H1NiqcOCMyGCOPDnBQDIS06AuK7ew==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:01:51 GMT
age: 9254
etag: "443bd70c61191b314d0eeb1a035d07aab6238c68"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ac95573-22e8-41b4-a5f2-d8adbaff2829.jpeg
200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ac95573-22e8-41b4-a5f2-d8adbaff2829.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5c135ab961de12d926b94f9abae8adbe
139f48ea60880efc6d2977f4d3141809f22adfef
1578a994e7c4eef451f1c744116caa95e1aa995c4817a13832f1ac3487cea95d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ac95573-22e8-41b4-a5f2-d8adbaff2829.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2944
x-amzn-requestid: 8f1b2573-39ab-442e-8c6e-97538a28aba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWXXEjJIAMFu1Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813762-52f27ff536b0c3b84bdfba8e;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:45:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9hy8v_azPZzuVRv1VN61DoNWbfA83JPs4JcZfRyLo3j6HCtWv_gkNw==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:48:48 GMT
age: 10037
etag: "139f48ea60880efc6d2977f4d3141809f22adfef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5088223f5973e3cd56f03f50a1e84b79
0b6c9b51d10762a4747286ab5b1c2354fa39c622
8159e4f7eec7bea518bb29e3fdb070bab4fb70116205577f7b7d74ad4d0dfbc7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LDrq5UcFhG63XFZhmeS5Z_mEkwrvuQ2bLfT8hV9I3E1s1lJLZF5Dww==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
age: 10181
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc537c2d0-d011-4ed0-a5d4-5f5d2190c49b.webp
200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc537c2d0-d011-4ed0-a5d4-5f5d2190c49b.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash abd79421a3c44a8df11ad2cc50083309
8665e5f3026f2c2b9505eb139c478f4d359851c3
3a66b00498fa1322730705b1c4502614b5a520ac3f884f494d65e27a5bb62c3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc537c2d0-d011-4ed0-a5d4-5f5d2190c49b.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4366
x-amzn-requestid: ce25f5ab-0c92-431e-ae4e-618829594a74
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVNZFjHoAMFXLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813588-6a3a8dff70e717011e3a0606;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 75AMMfa7oq0Y51YPEC_FEDOoNVc9cgfjg9bOSOXwikONPdhW7OG3uQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:48:10 GMT
age: 10075
etag: "8665e5f3026f2c2b9505eb139c478f4d359851c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c125eba-03aa-443e-b99e-10c7890258e8.webp
200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c125eba-03aa-443e-b99e-10c7890258e8.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 95101ded0fe92a85649a086992948008
afed98649590f2524a9e530c53eebbc1ba36da6a
7f754cb2105494045efe657c47313e77bb26361ca45a6f8cbce1fdb52a15ba01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6c125eba-03aa-443e-b99e-10c7890258e8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9787
x-amzn-requestid: 51d9848a-868c-4e51-b1a8-30596d0108b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLUfxHjToAMFeGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813464-749244df2aa06b23445d675c;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:32:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: mSCEUQ3aOXg6rxJV0iWPgFZ6TE2pCucWwOI3KAsdbu_EadcDDa5vwg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:07:47 GMT
age: 8898
etag: "afed98649590f2524a9e530c53eebbc1ba36da6a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
freshtools.to/
301 Moved Permanently 231 B IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 803a960e452ca90d256956b9893e4d43
6a8e5e33d210c2629b71a6891cc68cc319f6a489
db957d3c71b60cce40fedfb2d3a28b00f93957eaaae11f92c615c0f3ebef0291
GET / HTTP/1.1
Host: freshtools.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 00:36:03 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Permitted-Cross-Domain-Policies: none
Location: https://freshtools.net/
Content-Length: 231
Keep-Alive: timeout=5, max=500
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
ocsp.pki.goog/s/gts1p5/ecBi_As-X0A
200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/ecBi_As-X0A
IP
Hash 0910f4a6db13d2b3932d1f3a2fe7fd5c
8dd2cebdb22e683cb0da1906ff65a0bf01576fb2
2595523c730ebf7b21cf309be4479f2d1b7de2deed0fdd677083ffb03e9105c7
POST /s/gts1p5/ecBi_As-X0A HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
freshtools.net/login
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /login HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 00:36:07 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 26 Nov 2022 01:36:07 GMT
Location: https://freshtools.net/login
Server-Timing: cf-q-config;dur=5.0000016926788e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TQIrVpOznRijVj24qQcy5VjVgCkhNi8AnHpFtwDLOnG1047IvP0h0FQewe5GvbgPF0e53lpepJTN%2BTTPkqItdes5dKP8xTL9nUpyATkYnDcTNxVy2J7hkS9W3Xj17iLq"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76fe8c49ce8db51b-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 279 B IP
Hash a130aed83a382264ec43322177a9c014
3a9e6f3d1042d4d7f9a4ef820d87771fed73d0a9
2ccdd60ee29576aebe6879a34b8245ecebf6825ffc87a85f6f6dfdc9893c7522
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3379
Cache-Control: max-age=111773
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:07 GMT
Etag: "638063e1-117"
Expires: Sun, 27 Nov 2022 07:39:00 GMT
Last-Modified: Fri, 25 Nov 2022 06:42:41 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 30f833b25d6e5af2229d9584c6f6cf97
ee79c3fa994d53c1d0687ca61353d63cce459e25
1bc091991c4663dbc86ae735e47ddc3e887a24661050ad9f24b8d458bfd11a6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=explicit&onload=onloadCallback
200 OK 578 B URL HTTP/2 www.google.com/recaptcha/api.js?render=explicit&onload=onloadCallback
IP
File type ASCII text, with very long lines (909), with no line terminators
Hash ec941e5d30fc3bb1d1aaa543ae406681
2c61a6ebfa4f2e36b59c773ef8f3d35378b6959b
6e32c0dc483787dcfab84cdc891c1865104738de265e3f2ae1331a7c8d6013bf
GET /recaptcha/api.js?render=explicit&onload=onloadCallback HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 26 Nov 2022 00:36:07 GMT
date: Sat, 26 Nov 2022 00:36:07 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 578
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
freshtools.net/uploads/New-Project-(7)-90-(1)-93.png
200 OK 77 kB URL HTTP/2 freshtools.net/uploads/New-Project-(7)-90-(1)-93.png
IP
File type PNG image data, 500 x 500, 8-bit/color RGBA, non-interlaced\012- data
Hash 8cd01f4e6a06f44bfe3adfb7258eeadb
20cb50ef762633682d67d0a12c129e8b58d05ff8
e5b379c755c7f8bcf5aff3c5447f0a47e34332f79732729acb39b3c918601a5f
GET /uploads/New-Project-(7)-90-(1)-93.png HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 00:36:07 GMT
content-type: image/png
content-length: 77118
last-modified: Thu, 14 Jul 2022 08:37:52 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AwOclbWynec9IWNvskJzBttLnQeoInMdZ1ZXgNFUgDZrlUKGDQHsKQFoEGhRLhliqE3I5WhTMfVfrnNOgTloH0QQxFpFdb70ryXuixXGARZgV9zuqd4MJJ1z1vDGGAky"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe8c4bd8b1b52d-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
freshtools.net/js/app.js
200 OK 98 kB IP
File type ASCII text, with very long lines (65475)
Hash ec6c1898aa8f9d02a9292075a70f3fea
ded332b1aac08c728d3b49b42b9b11c8aa08ffb1
06aec09f45971c8b7ec22c2f424218a7fb7cca574bc45a12d3bc544df97ed747
GET /js/app.js HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 00:36:07 GMT
content-type: application/javascript
last-modified: Tue, 04 Oct 2022 06:19:56 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2F4XdonwjKwK5W4nYH5khGRMtAUjXU%2B1cDMbLMS84M7IB2dsLueuKtN6yObWc%2FrLH8%2BB79XAfD92rPuRYQGsSpFGfIM3UFUwszMYNIG4ykUD7z6vCbP32HJcw4r3BLdHj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe8c4bd8b7b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
freshtools.net/css/loginStyle.css?id=7abd190e74023b3175577bbf86ba8bf6
200 OK 101 kB URL HTTP/2 freshtools.net/css/loginStyle.css?id=7abd190e74023b3175577bbf86ba8bf6
IP
File type ASCII text, with very long lines (5424)
Size 101 kB (100843 bytes)
Hash f9f10c595aaddfb10756b2dce65c8993
600c51b3e0b810683fd0e24b168c8100d3f34b18
7fcb82ec7a1b8a6bd63b3a94254d1af102bf4805dab03c21405253f186fbcd5c
GET /css/loginStyle.css?id=7abd190e74023b3175577bbf86ba8bf6 HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 00:36:07 GMT
content-type: text/css
last-modified: Wed, 05 Oct 2022 03:32:30 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LBNwi35Y6sCBdsn1%2Feo3BWsgnXJ428%2B6poZ4%2Fe0fZ9K0%2FUczc%2BRMit%2FZmMT4Z%2BKMj7BJ98bSHaJnm7OiVvXBS2302DBvOoKK3WuI1qjK5DfhXdW5VYMKn4JZxyzKM2uJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe8c4bb8a3b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
freshtools.net/vendor/select2/select2.min.js
200 OK 612 kB URL HTTP/2 freshtools.net/vendor/select2/select2.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (32046), with CRLF line terminators
Size 612 kB (611482 bytes)
Hash 102fb15a67b98e7128729bbd0db200a4
b4d8c6d5a3a0590310763b3800a727c1329d5b5d
f97a0ee0616a7645cdbb6f72b103c4f7255449363c2bf032b8c99d3227a14d6f
GET /vendor/select2/select2.min.js HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 00:36:07 GMT
content-type: application/javascript
last-modified: Mon, 18 Oct 2021 20:32:36 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sBMZuQ3QU2TmKtNKpRYGslpafTxnBGAZhUSMfItQMislO1%2FkrQt0TMkXpAjK7Y4MBCwd4LBi5UBjIwH7LTMgXzZaHusMIZxYHl2hphGdyNrr7dOG2NzTY06pRfy8shlh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe8c4bd8beb52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:46:16 GMT
expires: Fri, 24 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 96591
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
freshtools.net/vendor/select2/select2.min.css
200 OK 17 kB URL HTTP/2 freshtools.net/vendor/select2/select2.min.css
IP
File type ASCII text, with very long lines (15063), with CRLF line terminators
Hash ccccb7c96643d35822f0c879ea563272
bf7d3166013732187cfd0aa5631032435defcced
e7ac9dffa2d59b4917a118d853d23b9bc0f12b0aabd6906eed6ae189db15d6e5
GET /vendor/select2/select2.min.css HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 00:36:07 GMT
content-type: text/css
last-modified: Mon, 18 Oct 2021 20:32:36 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9YHxCq2FUGwPqRi9GkEsq4CYrayhyVfyR572G9umYibbpLdSd3K5%2FYK1F2ShDOe38FF4xzgVqNtogbwY09Ig1gC01aGngzsftV1SX7xkSHUoQwv7MBHXEyVjWbOd7AnU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe8c4bb8a1b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 60951c730d96e02c20219f2765873699
64d0ecb0d9001990841e9faa434d9239af4b6927
9eb0e510930409a6eed080afd7759a51ca4ecb58dd30ea04221cea917358f658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://freshtools.net
Connection: keep-alive
Referer: https://freshtools.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 08:12:22 GMT
expires: Sat, 25 Nov 2023 08:12:22 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 59026
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.doubleclick.net/instream/ad_status.js
200 OK 29 B URL HTTP/2 static.doubleclick.net/instream/ad_status.js
IP
Hash 1fa71744db23d0f8df9cce6719defcb7
e4be9b7136697942a036f97cf26ebaf703ad2067
eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 00:30:21 GMT
expires: Sat, 26 Nov 2022 00:45:21 GMT
cache-control: public, max-age=900
age: 347
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/id
302 Found 0 B URL HTTP/2 googleads.g.doubleclick.net/pagead/id
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sat, 26 Nov 2022 00:36:08 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 26 Nov 2022 00:36:08 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 31 kB URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 0a4c46f8325e9033ddec0ddf10e33226
f4891795d1679c0da00155397a82a570a0591f30
d66815a7742d181106607fb02175f7510b26e680dc46a0efdaad90dc4779aae8
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 26 Nov 2022 00:36:08 GMT
server: ESF
cache-control: private
content-length: 30997
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 60951c730d96e02c20219f2765873699
64d0ecb0d9001990841e9faa434d9239af4b6927
9eb0e510930409a6eed080afd7759a51ca4ecb58dd30ea04221cea917358f658
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
freshtools.net/vendor/css-hamburgers/hamburgers.min.css
200 OK 2.6 kB URL HTTP/2 freshtools.net/vendor/css-hamburgers/hamburgers.min.css
IP
File type ASCII text, with very long lines (19499), with CRLF line terminators
Hash 2857fb798ccd2127bc8520f02f656efa
728efc4bc1efe7cbf571a8c47a5f271aeaabe652
b10a799edf5018f23de72b1ab0fea7ee052326d74e592c95c66cfa8f9e256c82
GET /vendor/css-hamburgers/hamburgers.min.css HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 00:36:07 GMT
content-type: text/css
last-modified: Mon, 18 Oct 2021 20:32:36 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4UjSt6K91JA04sw%2FfCaKCUco4bFt9kVc8hCjqpLfIicjKIYuA634Wu5hrXAIQD9XXrY8l%2FTNkUgGnNHB2SxcN0IA%2FCoWf%2FY6ntBu4ESDeUCHePQ8kyHPpWDktD1NGeZE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe8c4bb8a0b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash a166b692e49569f49412a4835a95d3a5
c98c9ca2a1ddc28e49f34eb35c8e3c46aa8487b7
4ed9e17a1d8f15022b4f16a825b670ae1f1d9dfb2aced8746dc60e601c426be3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.ytimg.com/vi/2dDbaVsWxsY/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGGUgXCg_MA8=&rs=AOn4CLAfjTTVYX8Xc3z3YUVx3Hqym2IhCg
200 OK 80 kB URL HTTP/2 i.ytimg.com/vi/2dDbaVsWxsY/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGGUgXCg_MA8=&rs=AOn4CLAfjTTVYX8Xc3z3YUVx3Hqym2IhCg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash 8894bdaf38bc7c1b8d9f0e78f07292f3
ece7b1914563f0c18fbde0c23cb4750442cb4787
57a254469af00ba74e93b1569c1eca763a44e338bd365910feb7c132dc161ebe
GET /vi/2dDbaVsWxsY/maxresdefault.jpg?sqp=-oaymwEmCIAKENAF8quKqQMa8AEB-AH-CYAC0AWKAgwIABABGGUgXCg_MA8=&rs=AOn4CLAfjTTVYX8Xc3z3YUVx3Hqym2IhCg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 79956
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 00:36:08 GMT
expires: Sat, 26 Nov 2022 02:36:08 GMT
cache-control: public, max-age=7200
etag: "1658014483"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 216d858ad02d0f9765e7844973400881
62a1fb9255bfc33b0fbc8960502272a42ecf73f6
f90483fc88bda7a012064641af0cf72c31d2ae7522097e4ac52f0b096b519f79
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b7757171f2e55c37975a5bcdeba7a4ae
1ce146a166c3c1d510d26c855321ca4b2426353d
7675dc8e0d7a554bf286e61db1c9546aa6fc7188cb83c3d9bd5beb80c2351fe5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
yt3.ggpht.com/fnWfZN7v3RRVLHSu3pxGZ5InE2dC48XKAIJPr6VJf-BABs1N4JNoz6HMGgwNBlhVZgdkMF_6=s68-c-k-c0x00ffffff-no-rj
200 OK 3.0 kB URL HTTP/2 yt3.ggpht.com/fnWfZN7v3RRVLHSu3pxGZ5InE2dC48XKAIJPr6VJf-BABs1N4JNoz6HMGgwNBlhVZgdkMF_6=s68-c-k-c0x00ffffff-no-rj
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data
Hash 7ac6ddd07e8f029c714d87895213d59f
263b8d9db37535840418f7e536ab23b31fd969e1
299b632acdd2cc708fffe4989c21d3b3a2879e45f371f0c630e6dff4d152145f
GET /fnWfZN7v3RRVLHSu3pxGZ5InE2dC48XKAIJPr6VJf-BABs1N4JNoz6HMGgwNBlhVZgdkMF_6=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 2966
x-xss-protection: 0
date: Sat, 26 Nov 2022 00:36:08 GMT
expires: Thu, 24 Nov 2022 02:35:57 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash b7757171f2e55c37975a5bcdeba7a4ae
1ce146a166c3c1d510d26c855321ca4b2426353d
7675dc8e0d7a554bf286e61db1c9546aa6fc7188cb83c3d9bd5beb80c2351fe5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 00:36:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sat, 26 Nov 2022 00:36:09 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 110 B URL HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 97a7cf49e7581ac45d395f2972d57533
602f097f32b29c31e3f0adcede8c697e07e6806f
6920c487344f79884dec63d9e3556fe141a6be0ae9f53b9d5f762f20cce6e6cb
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1118
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 26 Nov 2022 00:36:09 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
freshtools.net/js/login.js?id=05e6aef094e9312e2954b725dd73026c
200 OK 78 kB URL HTTP/2 freshtools.net/js/login.js?id=05e6aef094e9312e2954b725dd73026c
IP
File type ASCII text, with very long lines (954)
Hash 03da447d4f66754e0d9f9a65dafd1006
93f53743e3167ab80faad21c29114a429282ef30
4f8e63cc05bb09282c3a2f5d47495eda2951da41fa0d2e707bdb4f4a8cd31260
GET /js/login.js?id=05e6aef094e9312e2954b725dd73026c HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 00:36:07 GMT
content-type: application/javascript
last-modified: Wed, 28 Sep 2022 23:13:38 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tkjl9ZhQNuYdA5MqWlxX7ya8Xs2Lilwea2j2ovsRhdyKNKfH3SSnlKokXGLKCwmlMYNdzEhpfy6hSR7vGxJR400WeS4cvSfprtI81NxdH6InRuHdIWlxvwaczkWVFxdd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe8c4bd8c0b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
freshtools.net/cdn-cgi/rum?
204 No Content 0 B URL HTTP/2 freshtools.net/cdn-cgi/rum?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 6004
Origin: https://freshtools.net
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 00:36:09 GMT
access-control-allow-origin: https://freshtools.net
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 76fe8c562f0cb52d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
freshtools.net/cdn-cgi/rum?
204 No Content 0 B URL HTTP/2 freshtools.net/cdn-cgi/rum?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 587
Origin: https://freshtools.net
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 00:36:11 GMT
access-control-allow-origin: https://freshtools.net
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 76fe8c644fe5b52d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
freshtools.net/css/util.css
200 OK 0 B URL HTTP/2 freshtools.net/css/util.css
IP
GET /css/util.css HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 00:36:07 GMT
content-type: text/css
last-modified: Wed, 28 Sep 2022 23:13:38 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dNNXKBmncR6DXvhGN3zSuJtJaTfJvPOIf%2FGDHG6w9Mul%2BU2oIdqtULUIzyAsvoXr94zxC9KUUlpt%2BRV2UEd1QekPVfN9b0hT3vh%2Fxi%2BZ2xzkxEaOWyXJABL67yq0TnoQ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe8c4bb8a2b52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
freshtools.net/vendor/animate/animate.css
200 OK 0 B URL HTTP/2 freshtools.net/vendor/animate/animate.css
IP
GET /vendor/animate/animate.css HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 00:36:07 GMT
content-type: text/css
last-modified: Mon, 18 Oct 2021 20:32:36 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n%2FSqhyzx7onec6ZQF0HexcU%2FOX%2B%2F0fN9KEytlSGxgW6kyjhQfoyYa%2FDZQq1Szn9PMHW1YOIzCqzlNkHAgC2upEmpNUzsVfcaFg2nWB%2FXhe2YpmyfwGhTtzzxUnR8m9dc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe8c4bb89fb52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.youtube.com/embed/2dDbaVsWxsY
200 OK 0 B URL HTTP/2 www.youtube.com/embed/2dDbaVsWxsY
IP
GET /embed/2dDbaVsWxsY HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 26 Nov 2022 00:36:07 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=aSb_weDDN7w; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=s-IzjTfdA1I; Domain=.youtube.com; Expires=Thu, 25-May-2023 00:36:07 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+186; expires=Mon, 25-Nov-2024 00:36:07 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
freshtools.net/fonts/font-awesome-4.7.0/css/font-awesome.min.css
200 OK 0 B URL HTTP/2 freshtools.net/fonts/font-awesome-4.7.0/css/font-awesome.min.css
IP
GET /fonts/font-awesome-4.7.0/css/font-awesome.min.css HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 00:36:07 GMT
content-type: text/css
last-modified: Mon, 18 Oct 2021 20:32:36 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BjiUZqn3xrUa0GN1piqevStbABfdwCHOaBiG64%2BuaMO24xKVUh2iIoVoEmea70%2F%2FRBbqCjB01KBvoeo%2FgvxrTReoz2S2jh6pkbIY32h6ne60Y458Q2vTd3pbDFHRlYuC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe8c4bb89bb52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
freshtools.net/vendor/tilt/tilt.jquery.min.js
200 OK 0 B URL HTTP/2 freshtools.net/vendor/tilt/tilt.jquery.min.js
IP
GET /vendor/tilt/tilt.jquery.min.js HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 00:36:08 GMT
content-type: application/javascript
last-modified: Mon, 18 Oct 2021 20:32:36 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nhPy1qJSMJFnkEu2RScVnTQzOM4iXbD1ECnQlT3TNIXoill%2FpAGW%2FINjEvlGW361N8hFR77xJnS3C6THo%2FUbLlSFzE08n5Y1ydb6mR0PHrasw3iBUQfT2LNIjTghc5ct"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe8c4bd8bfb52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
freshtools.net/css/bootstrap.css
200 OK 0 B URL HTTP/2 freshtools.net/css/bootstrap.css
IP
GET /css/bootstrap.css HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/login
Cookie: XSRF-TOKEN=eyJpdiI6IjF1Skl0SGVrV0wxS01NWERmSjV5TUE9PSIsInZhbHVlIjoiWDcwT3VTK0tibGlUQ3cvbzFpcVZpb01obDJJbGJaRTYrbU8xbGhNOWRuc01BYUIvNWhuWkk5Nm1nUk1XMmI3OHhrVlFGZW5SbW01clZORjJLZUVERkhvbnJjWnpnYnNNZDRpeDU5YnIvSFY5azUzYnBsOG50bnF1dldsN1VoVXIiLCJtYWMiOiIwNzQ5MzA5YzBiZjA1YWViMDRkNDIwYTg0YTk5MmMwNDlhNDY5NjYxZjg5ODFjYzgwZDExOGI1YmQ4MTY0NGYwIiwidGFnIjoiIn0%3D; freshtools_session=eyJpdiI6IkpyaXB3N04xZU9ub1YwdU56Z3BvNHc9PSIsInZhbHVlIjoiNG4vSU50OFVQT2RXN2QwVFhiNExXYzhUZG45d0tUZ3VKNnluVlhseUViSzJyQ1FuWFA3U0VFcmZlbmFvZ29tVzZ2dmtTK3lHd256Z1FYTEM4OU9OZHpFQm83cml0cnVwb1VwK1ZBZnJORURNZlhhS3FZbXgrWmIxeUNmY2hMTFoiLCJtYWMiOiI2YTFlMDI4Njg0M2Q2NTZiZDg3Y2RhZTVmZjhkNWUwNjRkOWMwOTEwMjc3YjQ0OTkxNDg1NGU4ZWMyMDkxNzJiIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 00:36:07 GMT
content-type: text/css
last-modified: Wed, 28 Sep 2022 23:13:38 GMT
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=79uvBzu0kuVAgYMh%2FjWmt%2FPPlB%2Bd0uS%2FzfAxoqiIpqa5TlRWurStLffNRAqoe675ZoZ%2Bu1uwC2UE15lPxfjZhmIYZ2ZU2tj9fBDMSZVwHlkyCF0d8mIRF0Kqn7kAp0tb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe8c4bb89db52d-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://freshtools.net
Connection: keep-alive
Referer: https://freshtools.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 00:36:07 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 76fe8c4c1bccfab4-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
freshtools.net/
302 Found 0 B IP
GET / HTTP/1.1
Host: freshtools.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 26 Nov 2022 00:36:07 GMT
content-type: text/html; charset=UTF-8
location: http://freshtools.net/login
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IkVkMDV6N0plQzhYV2pjeW90eXV0Z1E9PSIsInZhbHVlIjoiSkxHRmc2MzBHMFR2RGV5ZFp1Vjh6VUU4NjB3NlU2dGVXSzBoZWxtYXg2Tld2MTJkN2hLU2ZtUk53MTlVN0ZWQTY1VWJkSFJuazRqRWQ0d29GcTcvM0hlejNWemZoUXFPaWl1QjVjYnhmR2wzMUluQ2hkRDEybUxXbS9tUCtnWmEiLCJtYWMiOiI3NmNmNzVmNWI2YTc2YWU1YzU2NTAzN2ZmNjNmODk3ZTM5ZDAxZTJlMWUwNDE0NmVlMzkyYWE3Y2NlZDg4ZmI1IiwidGFnIjoiIn0%3D; expires=Sun, 08-Feb-2252 15:08:07 GMT; Max-Age=7232941920; path=/; samesite=lax
freshtools_session=eyJpdiI6IngrVWRUUHFEdWlXa2cwOXExKzc2cEE9PSIsInZhbHVlIjoibFdyZGpFTWZHaEgwQnE4L05MRDIrZ3ppMlRFMHVNTWI5elFEZFI2b0tlVU9rVG9OQVJ1MlVaYVlDTmRzWUJjakNvYlpHQVZRVDFRSUtsRFpKbU02Tk8xUm1rTU42NWg4eTlTbVdSaVNuOFJ5TE1Vd2hKUUx6OG1DUTBDUW8wb0kiLCJtYWMiOiJlM2EyMTJkN2NmYmVkNTVhNWMxYTc1YTU0MWY2OThjNDM5OGYyMzRiZDIwNDY4ODBkZGYyMzlkZjQ0NmYxMDU4IiwidGFnIjoiIn0%3D; expires=Sun, 08-Feb-2252 15:08:07 GMT; Max-Age=7232941920; path=/; httponly; samesite=lax
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=M9T5oxBIB7vwSXbvAcwUZo6Ai5CPcZF78%2BaIN0xHXwms2A7Z6Zw4ukTShIK9QNBH1enfnGRF1tgR2Fq7%2BHIKmPK8UUk7Xv2qhf19Gk%2FVE%2F5ZOnXt861PEKo9o4Tszxln"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76fe8c483e6fb52d-OSL
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Nunito
200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Nunito
IP
GET /css?family=Nunito HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://freshtools.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 00:36:07 GMT
date: Sat, 26 Nov 2022 00:36:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
216.172.172.214
104.16.57.101
93.184.220.29
158.85.120.178
23.36.76.226