| www.citemailer.com/aim.php?id=317&uid=15974681&clid=25&campid=7 | 50.28.17.194 | 302 Moved Temporarily | 0 B |
URL User Request GET HTTP/1.1www.citemailer.com/aim.php?id=317&uid=15974681&clid=25&campid=7 IP50.28.17.194:443
CertificateIssuercPanel, Inc. Subjectcitemailer.com Fingerprint4F:EF:F3:8C:85:31:A4:33:5F:8F:90:7D:74:B7:8A:DB:8E:CB:EB:25 ValiditySun, 04 Feb 2024 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aim.php?id=317&uid=15974681&clid=25&campid=7 HTTP/1.1
Host: www.citemailer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Moved Temporarily
Date: Tue, 16 Apr 2024 09:29:47 GMT
Server: Apache
X-Powered-By: PHP/5.4.45
Cache-Control: no-store, no-cache, must-revalidate, max-age=0
Location: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/css/keka-icons.css?1 | 143.204.55.93 | 200 OK | 1.1 kB |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/css/keka-icons.css?1 IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
Hash66684e661ea457e2f57a8acc4e38bf51 db67caa3c65ff801ff3fead3bd4c3011028cdd9b 80911d1847eabf2c970b40e18ce927eea602da697c919b6497047c887069a39a
GET /static/css/keka-icons.css?1 HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Tue, 22 Aug 2023 11:24:34 GMT
last-modified: Tue, 22 Aug 2023 11:23:39 GMT
etag: W/"64e49abb-f5c"
expires: Wed, 21 Aug 2024 11:24:34 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xGj4OpTCZ49uGJHzWjFqBE7w46iIN3qmzHEbSheKOrtHYcS21Jvq6w==
age: 20556314
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/css/main.css | 143.204.55.93 | 200 OK | 56 kB |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/css/main.css IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeASCII text, with very long lines (1709) Hash0e23db9416442006b785146862f9e07b 8e2e68df1ddb06697a0bd418d72173bbebbb4cf8 f0447730ed113798a4dad9900a3fdf58341ead1e2329da00e33690a89291d6de
GET /static/css/main.css HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 05 Oct 2023 08:20:00 GMT
last-modified: Thu, 05 Oct 2023 07:21:58 GMT
etag: W/"651e6416-b565d"
expires: Fri, 04 Oct 2024 08:20:00 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TCmfE3xzg-IxpuX06MbmohaV3fsLPDqok4OiGbOS7xn0Ik5yXZqbXg==
age: 16765788
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-MQQW762 | 142.250.74.168 | 200 OK | 78 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-MQQW762 IP142.250.74.168:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (7563) Hashb5779a3c0fd6331b9175d5c203e7d993 bc4bf9170bd6b552d2eba1a0b4def4d69cfa35cc c826dbf568be2b1660c6af8f50e1744ed960b3f2a52a0b9f62f0f5d4613de230
GET /gtm.js?id=GTM-MQQW762 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 16 Apr 2024 09:29:49 GMT
expires: Tue, 16 Apr 2024 09:29:49 GMT
cache-control: private, max-age=900
last-modified: Tue, 16 Apr 2024 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77690
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.keka.com/media/2022/12/Logo_Strips_Website-01-scaled.jpg | 35.213.175.146 | 200 OK | 37 kB |
URL GET HTTP/2www.keka.com/media/2022/12/Logo_Strips_Website-01-scaled.jpg IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 2560x152, components 3 Hashb29bfb75dc7f155b6368e8d799fe0161 1a93d45f3d51bab980b26502bd4ced3bde1226d9 63c4e84dbdd06564ee2aa13121b20b98ccc293d72599e00966b319030d214c37
GET /media/2022/12/Logo_Strips_Website-01-scaled.jpg HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:48 GMT
content-type: image/jpeg
content-length: 36550
last-modified: Thu, 22 Dec 2022 05:06:29 GMT
etag: "63a3e5d5-8ec6"
expires: Wed, 16 Apr 2025 09:29:48 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll | 35.213.175.146 | 200 OK | 34 kB |
URL User Request GET HTTP/2www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll IP35.213.175.146:443
CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (13370) Hashec076e6485a3ba5d13fdac46e23124c0 d81a9b93fec7b5dc50db4074aad041a93a2526c9 4268ddf2843cc8f3c0d61799a91b06311804bc51bd2c2c447415bf238a8dd9e2
GET /hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:48 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=(), clipboard-read=(), clipboard-write=(), gamepad=(), speaker-selection=(), conversion-measurement=(), focus-without-user-activation=(), hid=(), idle-detection=(), interest-cohort=(), serial=(), sync-script=(), trust-token-redemption=(), window-placement=(), vertical-scroll=()
expires: Sat, 26 Jul 1997 05:00:00 GMT
last-modified: Tue, 16 Apr 2024 09:29:48 GMT
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
set-cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; expires=Wed, 17-Apr-2024 09:29:48 GMT; Max-Age=86400; path=/; secure; HttpOnly
utm_source=citehr; expires=Sat, 15-Jun-2024 09:29:48 GMT; Max-Age=5184000; domain=.keka.com
utm_medium=citehr_email_payroll; expires=Sat, 15-Jun-2024 09:29:48 GMT; Max-Age=5184000; domain=.keka.com
x-cache-enabled: True
link: <https://www.keka.com/wp-json/>; rel="https://api.w.org/", <https://www.keka.com/wp-json/wp/v2/landing_page/45554>; rel="alternate"; type="application/json", <https://www.keka.com/?p=45554>; rel=shortlink
x-httpd-modphp: 1
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: DENY
referrer-policy: no-referrer-when-downgrade
content-security-policy: upgrade-insecure-requests
host-header: 6b7412fb82ca5edfd0917e3957f05d89
x-proxy-cache: MISS
x-proxy-cache-info: 0 NC:000000 UP:SKIP_CACHE_SET_COOKIE
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.keka.com/media/2021/03/MicrosoftTeams-image-2.png | 35.213.175.146 | 200 OK | 3.9 kB |
URL GET HTTP/2www.keka.com/media/2021/03/MicrosoftTeams-image-2.png IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typePNG image data, 200 x 68, 8-bit/color RGBA, non-interlaced Hash06192d22d2d077563debedfc17ae647b 459da7704216285f47bd27c44c8b0953b80b3aa0 e3b3b99fa980917612fac8c08b7dc09f59662a107561405b46686d4c344e6354
GET /media/2021/03/MicrosoftTeams-image-2.png HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:48 GMT
content-type: image/png
content-length: 3947
last-modified: Thu, 29 Sep 2022 18:14:19 GMT
etag: "6335e07b-f6b"
expires: Wed, 16 Apr 2025 09:29:48 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| js.hsforms.net/forms/embed/v2.js | 104.18.141.119 | 200 OK | 157 kB |
URL GET HTTP/2js.hsforms.net/forms/embed/v2.js IP104.18.141.119:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subjecthsforms.net Fingerprint49:63:68:DE:D1:58:F7:46:97:8D:A9:5F:77:E7:1E:EF:95:DF:EB:E3 ValidityMon, 15 Apr 2024 01:41:40 GMT - Sun, 14 Jul 2024 01:41:39 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size157 kB (157017 bytes) Hashb0047a8901d8ed9f81db3dcb5982114e c8fdf3933cb067d1c2aeb1dd4919a4bc9ffc8e8b f171db8dc0eb7cec86c84ceac278dbf2fbe33770334635a2703186d14f4828b2
GET /forms/embed/v2.js HTTP/1.1
Host: js.hsforms.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Cookie: __cf_bm=.b7jIO188APHYJrAmT8NnjHBIx3GSYRkOUZuqPFEhyM-1713259788-1.0.1.1-8SFyRz32nlYB5fSO2thZW6YCDBWkeXSljdwc6VEUwqPF.m8LWlbsKVJTPzx4WacuFozXtrm03FhUyqYgtLGFXQ
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 03 Apr 2024 11:15:05 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: 4lHA5dnNobe4YqKec9CE2kPtPUzRSBNR
etag: W/"b0047a8901d8ed9f81db3dcb5982114e"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 68a3b1d5c75429221abc685a453afb60.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: zhTtxZBdbH0Qk-COQ9Qw0RAA2fJTne0VCuLnHIre4e1NfNYW2j0okg==
age: 407
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=forms-embed/static-1.5064/bundles/project-v2.js&cfRay=8731ff2a9810b517-OSL
cache-control: s-maxage=600, max-age=300
x-hs-target-asset: forms-embed/static-1.5064/bundles/project-v2.js
x-content-type-options: nosniff
access-control-allow-origin: *
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 3fab7e66-6735-4248-8212-388bb57c6652
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-68b7f7fbff-275zq
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 3fab7e66-6735-4248-8212-388bb57c6652
cache-tag: staticjsapp-forms-embed-v2-web-prod,staticjsapp-prod
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eV2iajsdWNRowJQNDgF1vtIlBA0liGEbgk4XzdsTeFdgqLfINeAo4dIOuJkOA7s7xp10slfbl0%2B6aPfYDOhHwjW%2BMaBOhTNLqTJgV%2BURBmw0N0ZfD4wvM2F2buMpxc6Q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 87532732c8f40b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.keka.com/media/2021/01/Hartex.png | 35.213.175.146 | 200 OK | 15 kB |
URL GET HTTP/2www.keka.com/media/2021/01/Hartex.png IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typePNG image data, 300 x 100, 8-bit/color RGBA, interlaced Hashb2297d86e149e2935034a6ece0d5d5c6 ef7d8de4fd129292c76b1304bec0028b50adf6ce 891ea24804af404e88323f4600ca52f6641de41c06f7005d4f79e4a6d3d7ea99
GET /media/2021/01/Hartex.png HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: image/png
content-length: 15167
last-modified: Thu, 29 Sep 2022 18:14:19 GMT
etag: "6335e07b-3b3f"
expires: Wed, 16 Apr 2025 09:29:49 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.keka.com/media/2021/06/boodmo.png | 35.213.175.146 | 200 OK | 3.9 kB |
URL GET HTTP/2www.keka.com/media/2021/06/boodmo.png IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typePNG image data, 227 x 103, 8-bit colormap, non-interlaced Hash38237e7ea0601851638a4f0b3b59417a 49d4207a0c38d3ad25d964253fb2fdd6498b57f1 9fca474623fa94194f59a7dabe8b87f15912a436256e5e6317dba7d7114a7660
GET /media/2021/06/boodmo.png HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: image/png
content-length: 3851
last-modified: Thu, 29 Sep 2022 18:14:19 GMT
etag: "6335e07b-f0b"
expires: Wed, 16 Apr 2025 09:29:49 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| forms.hsforms.com/embed/v3/form/3947363/fd8c6caf-8ab3-47ca-8314-46cd670d90c2/json?hs_static_app=forms-embed&hs_static_app_version=1.5064&X-HubSpot-Static-App-Info=forms-embed-1.5064 | 104.18.160.125 | 200 OK | 3.1 kB |
URL GET HTTP/3forms.hsforms.com/embed/v3/form/3947363/fd8c6caf-8ab3-47ca-8314-46cd670d90c2/json?hs_static_app=forms-embed&hs_static_app_version=1.5064&X-HubSpot-Static-App-Info=forms-embed-1.5064 IP104.18.160.125:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT
Hash1113b28e5db40532c54e1c940ef76be2 3fde59800943aad6a8c2aa61ba1c8f70ed6f1ec2 d283d5c90f52b5ac70871e092a43fb4d3c75ec4a9a979dcc9fb460ed60ca26a2
GET /embed/v3/form/3947363/fd8c6caf-8ab3-47ca-8314-46cd670d90c2/json?hs_static_app=forms-embed&hs_static_app_version=1.5064&X-HubSpot-Static-App-Info=forms-embed-1.5064 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.keka.com
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 16 Apr 2024 09:29:49 GMT
Content-Type: application/json;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Origin-Hublet: na1
Vary: origin
Access-Control-Allow-Origin: https://www.keka.com
Access-Control-Allow-Methods: OPTIONS, GET
Access-Control-Allow-Headers: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 180
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-Origin-Hublet
Cache-Control: max-age=0, no-cache, no-store
X-Robots-Tag: none
x-envoy-upstream-service-time: 21
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
X-HubSpot-Correlation-Id: de95d515-a96b-4f55-8de6-f1a24a16bd3a
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-9fd6b4b-mqq5v
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: de95d515-a96b-4f55-8de6-f1a24a16bd3a
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Set-Cookie: __cf_bm=clmssMZ1Z7XOGbr4Qxy0BrQDL1MPhCHUAbGRXfeNjLI-1713259789-1.0.1.1-8ma2.AO9Qx2L.4acrFTWJBrfBP0hfcCoBivbwOgxGvKF1bIpKpYJBXgx_6H3Qsg1ZuW7FzyyLyG65lzX3aJA1g; path=/; expires=Tue, 16-Apr-24 09:59:49 GMT; domain=.hsforms.com; HttpOnly; Secure; SameSite=None
_cfuvid=dpEQMb8bDRtB2UPSw4jn3ZAj2kQbZ1gjlqmaA7YzuxU-1713259789429-0.0.1.1-604800000; path=/; domain=.hsforms.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 875327331e6ab511-OSL
Content-Encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-RFKWJDYLYV&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 101 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-RFKWJDYLYV&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (5955) Size101 kB (100731 bytes) Hashd4301b0305547a4b265c4794a3b6c80e 40b96ea1c519dd9f6fa598ce083e3a96efbb8413 9ff6ec73f9ef2c2dca6da3f85582d55a644d7bb0ff3b15e69f4a326746c5c392
GET /gtag/js?id=G-RFKWJDYLYV&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 16 Apr 2024 09:29:49 GMT
expires: Tue, 16 Apr 2024 09:29:49 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 100731
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-19064LH1ZY&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 94 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-19064LH1ZY&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (3034) Hashafd26d0fd49331899af44a1422e3ac45 a5358f227e58b4784ddd32b4fa2b9155c5eb14e4 395920cda5d9735a9f00d07c83a5f354025fd29a3c629d7cbcf1005d5d998636
GET /gtag/js?id=G-19064LH1ZY&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 16 Apr 2024 09:29:49 GMT
expires: Tue, 16 Apr 2024 09:29:49 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93706
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.keka.com/media/2021/01/EasyPolicy.png | 35.213.175.146 | 200 OK | 15 kB |
URL GET HTTP/2www.keka.com/media/2021/01/EasyPolicy.png IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typePNG image data, 300 x 100, 8-bit/color RGBA, interlaced Hashb8bbd3800ad81f2a4a569bfcfcdf14ef ad6df569130bfd6c64298450b92969860f9d3d46 0250f55652d7c5a2ac7712903c259850bc09f282f2dd2d340056f462d2732f82
GET /media/2021/01/EasyPolicy.png HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: image/png
content-length: 14617
last-modified: Thu, 29 Sep 2022 18:14:19 GMT
etag: "6335e07b-3919"
expires: Wed, 16 Apr 2025 09:29:49 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.keka.com/static/images/logos/KekaLogoBlack.svg | 35.213.175.146 | 200 OK | 34 kB |
URL GET HTTP/2www.keka.com/static/images/logos/KekaLogoBlack.svg IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash03c1732e0191cfee5f6f77863cd3ed63 c56e0078aaa1f07a1ea056a4166f0e675652e27c aea9226818852c10a21844eff6b2bf3b03ddf07eabc6659d08e4563436fa9ef6
GET /static/images/logos/KekaLogoBlack.svg HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:48 GMT
content-type: image/svg+xml
last-modified: Thu, 29 Sep 2022 18:14:21 GMT
vary: Accept-Encoding
etag: W/"6335e07d-1714"
expires: Wed, 16 Apr 2025 09:29:48 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/css/font.css | 143.204.55.93 | 200 OK | 32 kB |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/css/font.css IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hashdffb477fabed2e6f68a42acc660128af 4c4eb2a985b145a7485ea208b7b444506dcc0782 c5cc36513546af7ed01a3fa276fbc77124d08c8ea83a2406a5a21c859c150689
GET /static/css/font.css HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
server: nginx
date: Thu, 20 Jul 2023 02:14:24 GMT
last-modified: Wed, 03 May 2023 15:55:25 GMT
etag: W/"645283ed-2cae"
expires: Fri, 19 Jul 2024 02:14:24 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: M__G-WFJYw7iZkTOn3xzLgHKN7Xma9kUYyf_A1Qd2JbyqqJPt0IY4w==
age: 23440524
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=G-LVR3B71RG5&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 103 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-LVR3B71RG5&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (7711) Size103 kB (102988 bytes) Hasha0016cc9bf8184e5d121922063dbedb5 2c36ec8a068833e6ff023dff6b6c7faacce5cfc8 17609440dd02585c3f0cecd49e3943b5f5dca5b7027f649bf20d0766a83319ad
GET /gtag/js?id=G-LVR3B71RG5&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 16 Apr 2024 09:29:49 GMT
expires: Tue, 16 Apr 2024 09:29:49 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 102988
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.keka.com/static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 | 35.213.175.146 | 200 OK | 31 kB |
URL GET HTTP/2www.keka.com/static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 31052, version 1.0 Hash5c4f357d4926fc197d43abc63b7fca8c 686af7000d038d7479ed36b48a8ebb0ea9b98aea 1393acc632c160def86b45c2521c8ee742b7e6239d0d90fb95f51d55cf48b9c3
GET /static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://d2w2i7rp1a0wob.cloudfront.net/static/css/font.css
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: font/woff2
content-length: 31052
last-modified: Wed, 03 May 2023 15:56:56 GMT
etag: "64528448-794c"
expires: Wed, 16 Apr 2025 09:29:49 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.keka.com/media/2021/12/opening-quote.svg | 35.213.175.146 | 200 OK | 19 kB |
URL GET HTTP/2www.keka.com/media/2021/12/opening-quote.svg IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashebb0f42a0350deba9b1d0878b17cc397 f49f6bd381d9c6d1cd1964e9fee37e1224bae8d6 f26768824e520d30deaf76909d6972d25c25cfc11ac397f063b5f19b9c0f4c78
GET /media/2021/12/opening-quote.svg HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:48 GMT
content-type: image/svg+xml
last-modified: Thu, 29 Sep 2022 18:14:18 GMT
vary: Accept-Encoding
etag: W/"6335e07a-3c7"
expires: Wed, 16 Apr 2025 09:29:48 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/7ebf4817/www-player.css | 216.58.207.206 | 200 OK | 48 kB |
URL GET HTTP/3www.youtube.com/s/player/7ebf4817/www-player.css IP216.58.207.206:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash0ee2a2fead693a415e0fafe77b8eb5b5 9e4071a140b8019e25add69c5ecf3118af26900a a7a5b6803d9439fc3ae01128ac16617eb9df87658b3884b7454353779a729ddf
GET /s/player/7ebf4817/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 Apr 2024 07:35:44 GMT
expires: Thu, 10 Apr 2025 07:35:44 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 Apr 2024 04:18:25 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 525245
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.keka.com/media/2022/01/twitter-light.svg | 35.213.175.146 | 200 OK | 98 kB |
URL GET HTTP/2www.keka.com/media/2022/01/twitter-light.svg IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hasha9eae292d9adbb576552c921f30155b0 9d14d131c4357801246fdeecdfda231ba8bad1be dcda76b79b91406963602cfaf9d7d83e31d9f772a3f0d5bf6b26671ed8fc37a5
GET /media/2022/01/twitter-light.svg HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: image/svg+xml
last-modified: Tue, 21 Nov 2023 05:02:35 GMT
vary: Accept-Encoding
etag: W/"655c39eb-31e"
expires: Wed, 16 Apr 2025 09:29:49 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.keka.com/static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 | 35.213.175.146 | 200 OK | 31 kB |
URL GET HTTP/2www.keka.com/static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 31052, version 1.0 Hash5c4f357d4926fc197d43abc63b7fca8c 686af7000d038d7479ed36b48a8ebb0ea9b98aea 1393acc632c160def86b45c2521c8ee742b7e6239d0d90fb95f51d55cf48b9c3
GET /static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t1R-s.woff2 HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://d2w2i7rp1a0wob.cloudfront.net/static/css/font.css
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: font/woff2
content-length: 31052
last-modified: Wed, 03 May 2023 15:56:56 GMT
etag: "64528448-794c"
expires: Wed, 16 Apr 2025 09:29:49 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| forms.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-DEFINITION_SUCCESS&count=1 | 104.18.160.125 | 200 OK | 35 B |
URL GET HTTP/3forms.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-DEFINITION_SUCCESS&count=1 IP104.18.160.125:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashc2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=forms-embed-v2-DEFINITION_SUCCESS&count=1 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: image/gif
content-length: 35
cache-control: max-age=0, no-cache, no-store
vary: origin
access-control-allow-credentials: false
x-content-type-options: nosniff
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
x-envoy-upstream-service-time: 6
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 6b71efa1-e78f-4a19-b597-e12a77c28c57
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-9fd6b4b-xmfhh
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 6b71efa1-e78f-4a19-b597-e12a77c28c57
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
set-cookie: __cf_bm=t5nSmTgiODko6W3VmACBePO3IhI6A0lYKG0Os8Ol8Go-1713259789-1.0.1.1-9Hn.WkRaGObakAQq0inw1yHq1Sf9QuDSQ3VJNHV.xKqnxz.OEe7UtUDem7xLwYG0Zrhg2F6MnDNdiwsMuHco_A; path=/; expires=Tue, 16-Apr-24 09:59:49 GMT; domain=.hsforms.com; HttpOnly; Secure; SameSite=None
_cfuvid=uXzG2QwJRjzjVeCMgVKVuTX3Lcl_Ga5BvwtDukyjTzU-1713259789797-0.0.1.1-604800000; path=/; domain=.hsforms.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 87532735695e568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1 | 104.18.160.125 | 200 OK | 35 B |
URL GET HTTP/3forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1 IP104.18.160.125:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashc2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1 HTTP/1.1
Host: forms-na1.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: image/gif
content-length: 35
cache-control: max-age=0, no-cache, no-store
vary: origin
access-control-allow-credentials: false
x-content-type-options: nosniff
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
x-envoy-upstream-service-time: 5
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: e600471f-2215-4b64-9e41-3584349de0bf
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-9fd6b4b-t8zkp
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: e600471f-2215-4b64-9e41-3584349de0bf
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
set-cookie: __cf_bm=jnpfFjnwPiq.C1Yv5YktaR8nlseCClR5EmJ_xg960iI-1713259789-1.0.1.1-y2TUcne2FLVOIPNUHREBu_Jxd1WdX.vxN7Vlx4PJTVrTXjO.V8HGKxXbpKdQ38mId55LIWJ0nTdLR51LGi3vGQ; path=/; expires=Tue, 16-Apr-24 09:59:49 GMT; domain=.hsforms.com; HttpOnly; Secure; SameSite=None
_cfuvid=qrDxuFxrHdVminwlrAQBqa8.tOAVQE6K5dOvecEi0K4-1713259789908-0.0.1.1-604800000; path=/; domain=.hsforms.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 875327360a19568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| js.hs-scripts.com/3947363.js | 104.16.138.209 | 200 OK | 809 kB |
URL GET HTTP/2js.hs-scripts.com/3947363.js IP104.16.138.209:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerLet's Encrypt Subjecths-scripts.com Fingerprint10:6A:CE:54:F8:1D:59:1E:1F:7D:DB:76:07:FC:FF:1A:7D:70:E9:BD ValidityMon, 01 Apr 2024 23:22:11 GMT - Sun, 30 Jun 2024 23:22:10 GMT
File typeASCII text, with very long lines (539) Size809 kB (809202 bytes) Hashc2d4966c6594a895a1748c3a5daf95bf 70b4efb33d48a91a5a7fda31716093166f532308 4193a5aaab47588b5e7a2abbc168e46728d67412930b6d7372f63050c2520a3b
GET /3947363.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: application/javascript;charset=utf-8
vary: origin, Accept-Encoding
access-control-allow-credentials: true
x-content-type-options: nosniff
access-control-max-age: 3600
access-control-allow-origin: https://www.keka.com
x-envoy-upstream-service-time: 6
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 00ddd83b-2ee4-49fb-97a0-e173e047a132
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-697677dfc-dhm82
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 00ddd83b-2ee4-49fb-97a0-e173e047a132
last-modified: Tue, 16 Apr 2024 08:59:17 GMT
cf-cache-status: EXPIRED
expires: Tue, 16 Apr 2024 09:31:19 GMT
cache-control: public, max-age=90
server: cloudflare
cf-ray: 875327347a71b50f-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:25:07 GMT
expires: Fri, 11 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 403482
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 02:43:03 GMT
expires: Fri, 11 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 456407
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| api.ipregistry.co/?key=vogku64trmelw4&fields=location.country.code | 104.18.26.170 | 200 OK | 38 B |
URL GET HTTP/2api.ipregistry.co/?key=vogku64trmelw4&fields=location.country.code IP104.18.26.170:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerCloudflare, Inc. Subjectipregistry.co FingerprintFF:E4:98:5E:8F:25:BD:47:D8:14:73:8D:3F:B3:98:3A:6B:01:10:75 ValidityTue, 03 Oct 2023 00:00:00 GMT - Wed, 02 Oct 2024 23:59:59 GMT
Hash2ab403aad0047d75952529bd050cfeb6 4eba41ab8db473326a029c4a26db364e8aa462e6 e7508e08be787871bcbd6ac87942fa4785eedc75da943853f6ec39bf0b597811
GET /?key=vogku64trmelw4&fields=location.country.code HTTP/1.1
Host: api.ipregistry.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.keka.com
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 09:29:50 GMT
content-type: application/json
content-length: 38
access-control-allow-origin: *
access-control-expose-headers: Ipregistry-Credits-Remaining, Ipregistry-Credits-Consumed, Ipregistry-Version, Ipregistry-Pod
ipregistry-credits-consumed: 1
ipregistry-credits-remaining: 271620
ipregistry-pod: ipregistry-api-65ff5846dd-mpng5
ipregistry-version: 1
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 87532737b807b512-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-19064LH1ZY>m=45je44f0v871780210z8860142856za200&_p=1713259789077&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1698475896.1713259790&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713259789&sct=1&seg=0&dl=https%3A%2F%2Fwww.keka.com%2Fhrms-citehr%3Futm_source%3Dcitehr%26utm_medium%3Dcitehr_email_payroll&dt=Keka%20HR%20%E2%80%93%20Cite%20HR%20%7C%20Keka&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2910 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/2region1.analytics.google.com/g/collect?v=2&tid=G-19064LH1ZY>m=45je44f0v871780210z8860142856za200&_p=1713259789077&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1698475896.1713259790&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713259789&sct=1&seg=0&dl=https%3A%2F%2Fwww.keka.com%2Fhrms-citehr%3Futm_source%3Dcitehr%26utm_medium%3Dcitehr_email_payroll&dt=Keka%20HR%20%E2%80%93%20Cite%20HR%20%7C%20Keka&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2910 IP216.239.32.36:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-19064LH1ZY>m=45je44f0v871780210z8860142856za200&_p=1713259789077&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1698475896.1713259790&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713259789&sct=1&seg=0&dl=https%3A%2F%2Fwww.keka.com%2Fhrms-citehr%3Futm_source%3Dcitehr%26utm_medium%3Dcitehr_email_payroll&dt=Keka%20HR%20%E2%80%93%20Cite%20HR%20%7C%20Keka&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2910 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.keka.com
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.keka.com
date: Tue, 16 Apr 2024 09:29:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| forms.hsforms.com/embed/v3/form/3947363/fd8c6caf-8ab3-47ca-8314-46cd670d90c2/json?hs_static_app=forms-embed&hs_static_app_version=1.5064&X-HubSpot-Static-App-Info=forms-embed-1.5064 | 104.18.160.125 | 200 OK | 92 kB |
URL GET HTTP/3forms.hsforms.com/embed/v3/form/3947363/fd8c6caf-8ab3-47ca-8314-46cd670d90c2/json?hs_static_app=forms-embed&hs_static_app_version=1.5064&X-HubSpot-Static-App-Info=forms-embed-1.5064 IP104.18.160.125:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT
Hash5389f047d79107e6cbdf594948162aae 082d1302a217423df0325b68f3ea764502d166ea 94a1f5f2de6681790a4834d187aa8cfc856638a11fbdf315ef4c0507f2341ec7
GET /embed/v3/form/3947363/fd8c6caf-8ab3-47ca-8314-46cd670d90c2/json?hs_static_app=forms-embed&hs_static_app_version=1.5064&X-HubSpot-Static-App-Info=forms-embed-1.5064 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.keka.com
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: application/json;charset=utf-8
x-origin-hublet: na1
vary: origin
access-control-allow-origin: https://www.keka.com
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: *
access-control-allow-credentials: false
access-control-max-age: 180
x-content-type-options: nosniff
access-control-expose-headers: X-Origin-Hublet
cache-control: max-age=0, no-cache, no-store
x-robots-tag: none
x-envoy-upstream-service-time: 24
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: ee2120e5-2086-477a-ab30-96cd491f4168
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-9fd6b4b-mqq5v
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: ee2120e5-2086-477a-ab30-96cd491f4168
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
set-cookie: __cf_bm=tmg1GuRuhT3OZkZsQFeKrb4VW8BA1Qsp6bBlVGB_QxE-1713259789-1.0.1.1-eUoqW7RbOLYwx2a213yamA9eBPlYGEF_aVrt6xulnmRTsTA065ZcoTGWhodb8YivxWZvpTXZXixhkyrH0uqvNQ; path=/; expires=Tue, 16-Apr-24 09:59:49 GMT; domain=.hsforms.com; HttpOnly; Secure; SameSite=None
_cfuvid=oF6pdiFYkXNQy46ZWvqGHHdJRm9pBwnBTFDWisPSNfk-1713259789665-0.0.1.1-604800000; path=/; domain=.hsforms.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 875327345b39712b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=AW-859086804&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 89 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=AW-859086804&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hash2d82a90c917a81b91bf265957d280f0d 22f1f060821e0832e7f83b3afae37b046e2cdd4d 399ffec7aa687d6892fb73335711f801d9f0741d6961958efca75eb4ae1705fd
GET /gtag/js?id=AW-859086804&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 16 Apr 2024 09:29:50 GMT
expires: Tue, 16 Apr 2024 09:29:50 GMT
cache-control: private, max-age=900
last-modified: Tue, 16 Apr 2024 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88912
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| region1.analytics.google.com/g/collect?v=2&tid=G-LVR3B71RG5>m=45je44f0v881765340z8860142856za200&_p=1713259789077&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1698475896.1713259790&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713259789&sct=1&seg=0&dl=https%3A%2F%2Fwww.keka.com%2Fhrms-citehr%3Futm_source%3Dcitehr%26utm_medium%3Dcitehr_email_payroll&dt=Keka%20HR%20%E2%80%93%20Cite%20HR%20%7C%20Keka&en=page_view&_fv=1&_ss=1&ep.debug_mode=true&tfd=3033 | 216.239.32.36 | 204 No Content | 0 B |
URL POST HTTP/3region1.analytics.google.com/g/collect?v=2&tid=G-LVR3B71RG5>m=45je44f0v881765340z8860142856za200&_p=1713259789077&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1698475896.1713259790&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713259789&sct=1&seg=0&dl=https%3A%2F%2Fwww.keka.com%2Fhrms-citehr%3Futm_source%3Dcitehr%26utm_medium%3Dcitehr_email_payroll&dt=Keka%20HR%20%E2%80%93%20Cite%20HR%20%7C%20Keka&en=page_view&_fv=1&_ss=1&ep.debug_mode=true&tfd=3033 IP216.239.32.36:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-LVR3B71RG5>m=45je44f0v881765340z8860142856za200&_p=1713259789077&_gaz=1&gcd=13l3l3l2l1&npa=1&dma_cps=sypham&dma=1&cid=1698475896.1713259790&ul=en-us&sr=1280x1024&pscdl=noapi&_s=1&sid=1713259789&sct=1&seg=0&dl=https%3A%2F%2Fwww.keka.com%2Fhrms-citehr%3Futm_source%3Dcitehr%26utm_medium%3Dcitehr_email_payroll&dt=Keka%20HR%20%E2%80%93%20Cite%20HR%20%7C%20Keka&en=page_view&_fv=1&_ss=1&ep.debug_mode=true&tfd=3033 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.keka.com
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://www.keka.com
date: Tue, 16 Apr 2024 09:29:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=3 | 104.18.160.125 | 200 OK | 35 B |
URL GET HTTP/3forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=3 IP104.18.160.125:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT
File typeGIF image data, version 89a, 1 x 1 Hashc2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=3 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Cookie: __cf_bm=jnpfFjnwPiq.C1Yv5YktaR8nlseCClR5EmJ_xg960iI-1713259789-1.0.1.1-y2TUcne2FLVOIPNUHREBu_Jxd1WdX.vxN7Vlx4PJTVrTXjO.V8HGKxXbpKdQ38mId55LIWJ0nTdLR51LGi3vGQ; _cfuvid=qrDxuFxrHdVminwlrAQBqa8.tOAVQE6K5dOvecEi0K4-1713259789908-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 16 Apr 2024 09:29:50 GMT
content-type: image/gif
content-length: 35
cache-control: max-age=0, no-cache, no-store
vary: origin
access-control-allow-credentials: false
x-content-type-options: nosniff
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
x-envoy-upstream-service-time: 3
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: ebaef9af-756b-4704-8202-c2c91e198979
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-9fd6b4b-qpnsw
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: ebaef9af-756b-4704-8202-c2c91e198979
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8753273b287b568b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.10 | 200 OK | 0 B |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.10:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 16 Apr 2024 09:29:50 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.keka.com/media/2022/01/pinterest-light.svg | 35.213.175.146 | 200 OK | 43 kB |
URL GET HTTP/2www.keka.com/media/2022/01/pinterest-light.svg IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash043b3ed8154d4c3d5d83d4cd5b4ae3c9 f59c9ef32009153a8a227a60060ac240a216da11 0c81deb48c43a10e616ada6d244d1894d9553095df628c8df660bf415ccd65df
GET /media/2022/01/pinterest-light.svg HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: image/svg+xml
last-modified: Thu, 29 Sep 2022 18:14:20 GMT
vary: Accept-Encoding
etag: W/"6335e07c-556"
expires: Wed, 16 Apr 2025 09:29:49 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/YGrV5pq5mWk/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGHIgPyhDMA8=&rs=AOn4CLCKESKguWkJtcK3RH73q4etDF_zWg | 142.250.74.22 | 200 OK | 18 kB |
URL GET HTTP/2i.ytimg.com/vi/YGrV5pq5mWk/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGHIgPyhDMA8=&rs=AOn4CLCKESKguWkJtcK3RH73q4etDF_zWg IP142.250.74.22:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com Fingerprint78:1A:D9:37:F2:33:3C:A9:0F:4C:4A:E8:40:9E:55:8E:02:75:1E:15 ValidityMon, 04 Mar 2024 06:35:07 GMT - Mon, 27 May 2024 06:35:06 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 640x480, components 3 Hash07c8696bd65d5602ea37fc299b1da630 1f98ce099f74e7deaf4ab8d69f37cd4778728c36 f6f044e5622145be6b03102ebe655877d39afa59731706577046ecd04c468278
GET /vi/YGrV5pq5mWk/sddefault.jpg?sqp=-oaymwEmCIAFEOAD8quKqQMa8AEB-AHUBoAC4AOKAgwIABABGHIgPyhDMA8=&rs=AOn4CLCKESKguWkJtcK3RH73q4etDF_zWg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 17759
date: Tue, 16 Apr 2024 09:29:50 GMT
expires: Tue, 16 Apr 2024 11:29:50 GMT
cache-control: public, max-age=7200
etag: "1627660743"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.keka.com/static/js/keka.js | 35.213.175.146 | 200 OK | 43 kB |
URL GET HTTP/2www.keka.com/static/js/keka.js IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (12297) Hash6f0c0626a820360bd46085a2498e32bb 2a1012b9440fd4f8d93dc49a2a636284fc392d5b 4fb353d8f13bd745e9fa1d920226d06d7a4895b9908bb5dce03019d0b07e5852
GET /static/js/keka.js HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: application/javascript
last-modified: Tue, 09 Jan 2024 05:05:41 GMT
vary: Accept-Encoding
etag: W/"659cd425-b98a"
expires: Wed, 16 Apr 2025 09:29:49 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/images/logos/skyhigh.png | 143.204.55.93 | 200 OK | 9.1 kB |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/images/logos/skyhigh.png IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typePNG image data, 105 x 105, 8-bit/color RGBA, non-interlaced Hashc26b92088b8819f0db9ab80d28a28753 9910a6394e3f8992c67357b0e3ec00c0f8842e97 fe2f56c6f58fd7b42d46aaee92c8cc1b947e46155f2794dd13c9e6735287bad0
GET /static/images/logos/skyhigh.png HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 9084
server: nginx
date: Wed, 19 Jul 2023 18:44:31 GMT
last-modified: Thu, 29 Sep 2022 18:14:21 GMT
etag: "6335e07d-237c"
expires: Thu, 18 Jul 2024 18:44:31 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3oX7fbAdbTHd5YC8YEPBuv5FaUNkcGCZM5EVQQA_DZn4SJrilKkfxQ==
age: 23467519
vary: Origin
X-Firefox-Spdy: h2
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/images/logos/soc.png | 143.204.55.93 | 200 OK | 8.3 kB |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/images/logos/soc.png IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typePNG image data, 105 x 105, 8-bit/color RGBA, non-interlaced Hash6aeb25d78e56eb772f7349709a3c01a1 fde4fb14ac2ef33a8375beb47acd2353fc2d1b59 dc41620b37c6e2e4162ab81f791b14a7b3999f294aa83225e9304a41c70a2406
GET /static/images/logos/soc.png HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 8274
server: nginx
date: Sun, 20 Aug 2023 14:23:59 GMT
last-modified: Thu, 29 Sep 2022 18:14:21 GMT
etag: "6335e07d-2052"
expires: Mon, 19 Aug 2024 14:23:59 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6W5wLKSF7aK0JdcZMg8dN-iH5UY8ddZrdgytWmDyV_jumia0cEgOqQ==
age: 20718351
vary: Origin
X-Firefox-Spdy: h2
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/images/logos/iso.png | 143.204.55.93 | 200 OK | 11 kB |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/images/logos/iso.png IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typePNG image data, 105 x 105, 8-bit/color RGBA, non-interlaced Hashe9b54627a9d58d77d38e512dae737280 22b40bac6688f40dce4ae7c070449ed56b8cd6c3 76d7ccf56a633b38c78bbf26409dc90a17307b9e39b43d6cb032244ae54e63cc
GET /static/images/logos/iso.png HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 10739
server: nginx
date: Wed, 05 Jul 2023 09:51:35 GMT
last-modified: Thu, 29 Sep 2022 18:14:21 GMT
etag: "6335e07d-29f3"
expires: Thu, 04 Jul 2024 09:51:35 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VOp_1qeWBHE3fC0tCpsanmQBE9ttGo5l8No6sCejGGKrcBpz_a_HXA==
age: 24709095
vary: Origin
X-Firefox-Spdy: h2
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/images/logos/gdpr.png | 143.204.55.93 | 200 OK | 9.3 kB |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/images/logos/gdpr.png IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typePNG image data, 105 x 105, 8-bit/color RGBA, non-interlaced Hashb1937d863af9baaed2f5aec676bb7835 6de2286a3a1e8b4e8c4362ebc6978eabfe0fde56 7f8321c51e876c69d5b5478acb4ff007e0738c0af1016238479763f2fe209f9c
GET /static/images/logos/gdpr.png HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 9298
server: nginx
date: Thu, 20 Jul 2023 07:11:08 GMT
last-modified: Thu, 29 Sep 2022 18:14:21 GMT
etag: "6335e07d-2452"
expires: Fri, 19 Jul 2024 07:11:08 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: i-tmDJQaFgEQzdY_3mFqY73aEtQnxxcDHtStvNkx468Fylpq_54OWw==
age: 23422722
vary: Origin
X-Firefox-Spdy: h2
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/favicon.png | 143.204.55.93 | 200 OK | 1.2 kB |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/favicon.png IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hash541c145a67e0b0a47f71624a5cc4c490 e5bf2d2b95a69606f96cf1a1eda0a3d5f98ec434 8397d3c6ee1469a2632b9fb4f7ee0d3aac46dd55a5e0689ca86cf6832d87453b
GET /static/favicon.png HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1199
server: nginx
date: Sat, 19 Aug 2023 02:43:34 GMT
last-modified: Thu, 29 Sep 2022 18:14:21 GMT
etag: "6335e07d-4af"
expires: Sun, 18 Aug 2024 02:43:34 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: m-xOn6dwzQe4ct83T2UBhd_TYQuSF1VMN4HxsNmnqrtS-Vbkbfc5ZA==
age: 20846776
vary: Origin
X-Firefox-Spdy: h2
|
|
| www.keka.com/media/2022/01/linkedin-light.svg | 35.213.175.146 | 200 OK | 21 kB |
URL GET HTTP/2www.keka.com/media/2022/01/linkedin-light.svg IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hashcac6c491b667ff86a2d7895940331474 8296d2ef8dacd2d2a433c59e3a19159f19c586c8 876ee1069baf53a94d073a334295f46c0b4f588057dbbaf597a6e1224b42623e
GET /media/2022/01/linkedin-light.svg HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: image/svg+xml
last-modified: Thu, 29 Sep 2022 18:14:20 GMT
vary: Accept-Encoding
etag: W/"6335e07c-37b"
expires: Wed, 16 Apr 2025 09:29:49 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bat.bing.com/bat.js | 13.107.21.237 | 200 OK | 13 kB |
IP13.107.21.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerMicrosoft Corporation Subjectwww.bing.com FingerprintCB:6D:BA:34:FD:F2:DC:E3:FB:8E:FC:0F:65:5C:64:51:41:DB:7E:88 ValidityTue, 16 Apr 2024 02:03:35 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (46429), with no line terminators Hash72bca04fd669eb89fc65d59052d0fc00 27e60aef86f0cb1b2f6b6ed9df9a4e3ba88efd21 823804a7807864b44093a3843788f4cd076e89cf4a6fdeb8d153ae5c2c2df721
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 13261
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 29 Feb 2024 19:58:06 GMT
accept-ranges: bytes
etag: "01b4e9c496bda1:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C831A146594240D59DFE8E426A245B20 Ref B: OSL30EDGE0216 Ref C: 2024-04-16T09:29:50Z
date: Tue, 16 Apr 2024 09:29:50 GMT
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-19064LH1ZY&cid=1698475896.1713259790>m=45je44f0v871780210z8860142856za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=2025085688 | 142.250.74.131 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-19064LH1ZY&cid=1698475896.1713259790>m=45je44f0v871780210z8860142856za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=2025085688 IP142.250.74.131:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint0E:DD:25:54:7B:C3:7F:EC:27:35:B1:EC:15:C4:B7:D2:09:71:3B:68 ValidityMon, 04 Mar 2024 07:26:33 GMT - Mon, 27 May 2024 07:26:32 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-19064LH1ZY&cid=1698475896.1713259790>m=45je44f0v871780210z8860142856za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=2025085688 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 16 Apr 2024 09:29:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LVR3B71RG5&cid=1698475896.1713259790>m=45je44f0v881765340z8860142856za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=843673250 | 142.250.74.131 | 200 OK | 42 B |
URL GET HTTP/2www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LVR3B71RG5&cid=1698475896.1713259790>m=45je44f0v881765340z8860142856za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=843673250 IP142.250.74.131:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subject*.google.no Fingerprint0E:DD:25:54:7B:C3:7F:EC:27:35:B1:EC:15:C4:B7:D2:09:71:3B:68 ValidityMon, 04 Mar 2024 07:26:33 GMT - Mon, 27 May 2024 07:26:32 GMT
File typeGIF image data, version 89a, 1 x 1 Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LVR3B71RG5&cid=1698475896.1713259790>m=45je44f0v881765340z8860142856za200&aip=1&dma=1&dma_cps=sypham&gcd=13l3l3l2l1&npa=1&z=843673250 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 16 Apr 2024 09:29:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.10 | 200 OK | 0 B |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.10:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 16 Apr 2024 09:29:51 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/generate_204?1loIXQ | 216.58.207.206 | 204 No Content | 0 B |
URL GET HTTP/3www.youtube.com/generate_204?1loIXQ IP216.58.207.206:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?1loIXQ HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Tue, 16 Apr 2024 09:29:51 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.10 | 200 OK | 110 B |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.10:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hash6f42a03fb4b93987e14a8b56cce9519f 9aab06b57a9aabc192c175c6d9f5d0643fd1441d 2f89aebdfe3da3f7e1a48f942e26850489a54487b8a4e97dbdb89792014987ff
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1146
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 16 Apr 2024 09:29:51 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| yt3.ggpht.com/k6Kwwm3mCkN_xqh3rDtHP9eCWDspjVLCILs6cbAwt1ypGNTn12AX98kiixw-ZLZMntag90jEv20=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 1.2 kB |
URL GET HTTP/2yt3.ggpht.com/k6Kwwm3mCkN_xqh3rDtHP9eCWDspjVLCILs6cbAwt1ypGNTn12AX98kiixw-ZLZMntag90jEv20=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com FingerprintE0:0C:38:A4:4D:4F:CB:42:05:30:9A:C4:60:B3:64:3F:EF:43:D1:2F ValidityMon, 04 Mar 2024 07:14:32 GMT - Mon, 27 May 2024 07:14:31 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3 Hash2874104abc5f14ff8f59bf7809c11945 4f209a0085c5b7ab83ab71c9c8e92d3dacc272db 6276321660f1caeadf2bfb7dc617f6f8e50566ebb95228a85b1d716b809446d5
GET /k6Kwwm3mCkN_xqh3rDtHP9eCWDspjVLCILs6cbAwt1ypGNTn12AX98kiixw-ZLZMntag90jEv20=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 1208
x-xss-protection: 0
date: Tue, 16 Apr 2024 09:29:51 GMT
expires: Wed, 17 Apr 2024 09:29:51 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
vary: Origin
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/7ebf4817/www-widgetapi.vflset/www-widgetapi.js | 216.58.207.206 | 200 OK | 68 kB |
URL GET HTTP/3www.youtube.com/s/player/7ebf4817/www-widgetapi.vflset/www-widgetapi.js IP216.58.207.206:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (531) Hash1107b7a330627d55520221ef3896bf2f 616c242c609a34459d517a07204c5701a92d2e3a b21c1f8361a4ea371b21bff8c83b80c4b1932a5a83e1c85060d3e6af098b5d82
GET /s/player/7ebf4817/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 68389
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 03:44:26 GMT
expires: Wed, 16 Apr 2025 03:44:26 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 Apr 2024 04:18:25 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 20725
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| bat.bing.com/action/0?ti=343063484&tm=gtm002&Ver=2&mid=7e587215-af0c-467b-b468-aa151bb4cf71&sid=e0142660fbd311eeade13908fd49cf30&vid=e01466f0fbd311ee9f9d83de1ebb0bf1&vids=1&msclkid=N>m_tag_source=1&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Keka%20HR%20%E2%80%93%20Cite%20HR%20%7C%20Keka&p=https%3A%2F%2Fwww.keka.com%2Fhrms-citehr%3Futm_source%3Dcitehr%26utm_medium%3Dcitehr_email_payroll&r=<=3054&evt=pageLoad&sv=1&rn=469066 | 13.107.21.237 | 204 No Content | 0 B |
URL GET HTTP/2bat.bing.com/action/0?ti=343063484&tm=gtm002&Ver=2&mid=7e587215-af0c-467b-b468-aa151bb4cf71&sid=e0142660fbd311eeade13908fd49cf30&vid=e01466f0fbd311ee9f9d83de1ebb0bf1&vids=1&msclkid=N>m_tag_source=1&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Keka%20HR%20%E2%80%93%20Cite%20HR%20%7C%20Keka&p=https%3A%2F%2Fwww.keka.com%2Fhrms-citehr%3Futm_source%3Dcitehr%26utm_medium%3Dcitehr_email_payroll&r=<=3054&evt=pageLoad&sv=1&rn=469066 IP13.107.21.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerMicrosoft Corporation Subjectwww.bing.com FingerprintCB:6D:BA:34:FD:F2:DC:E3:FB:8E:FC:0F:65:5C:64:51:41:DB:7E:88 ValidityTue, 16 Apr 2024 02:03:35 GMT - Thu, 27 Jun 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=343063484&tm=gtm002&Ver=2&mid=7e587215-af0c-467b-b468-aa151bb4cf71&sid=e0142660fbd311eeade13908fd49cf30&vid=e01466f0fbd311ee9f9d83de1ebb0bf1&vids=1&msclkid=N>m_tag_source=1&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=Keka%20HR%20%E2%80%93%20Cite%20HR%20%7C%20Keka&p=https%3A%2F%2Fwww.keka.com%2Fhrms-citehr%3Futm_source%3Dcitehr%26utm_medium%3Dcitehr_email_payroll&r=<=3054&evt=pageLoad&sv=1&rn=469066 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=2090CE5ECC186806355BDA3DCDED697A; domain=.bing.com; expires=Sun, 11-May-2025 09:29:51 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9B8B01121E494F99B34415F7AD2C1339 Ref B: OSL30EDGE0216 Ref C: 2024-04-16T09:29:51Z
date: Tue, 16 Apr 2024 09:29:51 GMT
X-Firefox-Spdy: h2
|
|
| www.keka.com/static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t7R-tCKQ.woff2 | 35.213.175.146 | 200 OK | 27 kB |
URL GET HTTP/2www.keka.com/static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t7R-tCKQ.woff2 IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 27216, version 1.0 Hash1639d3d768b86df1a6c0651ede98758b d05bbca14c3139f93400b4f87c80db8c144b876a c1dbb40c462897a6e1deba145143a9bb0d84c27afc6029b4f83740349d9d1238
GET /static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t7R-tCKQ.woff2 HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://d2w2i7rp1a0wob.cloudfront.net/static/css/font.css
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll; _ga_19064LH1ZY=GS1.1.1713259789.1.0.1713259789.60.0.0; _ga=GA1.1.1698475896.1713259790; _ga_RFKWJDYLYV=GS1.1.1713259789.1.0.1713259789.0.0.0; _ga_LVR3B71RG5=GS1.1.1713259789.1.0.1713259789.60.0.0; comicSortOrder=newest
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:51 GMT
content-type: font/woff2
content-length: 27216
last-modified: Wed, 03 May 2023 15:56:56 GMT
etag: "64528448-6a50"
expires: Wed, 16 Apr 2025 09:29:51 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.keka.com/static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7txR-tCKQ.woff2 | 35.213.175.146 | 200 OK | 16 kB |
URL GET HTTP/2www.keka.com/static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7txR-tCKQ.woff2 IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 16456, version 1.0 Hash809d12f02c9e9bb843726aace54da84b e23393cae24a488948fcfb4f1d2736685903f9fe 7b4b167b91ef75ffef70987432ff073e5d54c80295c5b3dbeecdbbfad0700336
GET /static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7txR-tCKQ.woff2 HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://d2w2i7rp1a0wob.cloudfront.net/static/css/font.css
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll; _ga_19064LH1ZY=GS1.1.1713259789.1.0.1713259789.60.0.0; _ga=GA1.1.1698475896.1713259790; _ga_RFKWJDYLYV=GS1.1.1713259789.1.0.1713259789.0.0.0; _ga_LVR3B71RG5=GS1.1.1713259789.1.0.1713259789.60.0.0; comicSortOrder=newest
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:51 GMT
content-type: font/woff2
content-length: 16456
last-modified: Wed, 03 May 2023 15:56:56 GMT
etag: "64528448-4048"
expires: Wed, 16 Apr 2025 09:29:51 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.keka.com/static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t6R-tCKQ.woff2 | 35.213.175.146 | 200 OK | 10 kB |
URL GET HTTP/2www.keka.com/static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t6R-tCKQ.woff2 IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 10332, version 1.0 Hash371a0671a33a71401a1bea4fc081da10 36c47a12f635b81f7c3689dd298f8691d5289af5 90a7bd4753472cba03204ea6c2cf03f80db64b09824aca67c72fb05ae7328933
GET /static/css/fonts/pe0TMImSLYBIv1o4X1M8ce2xCx3yop4tQpF_MeTm0lfGWVpNn64CL7U8upHZIbMV51Q42ptCp7t6R-tCKQ.woff2 HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://d2w2i7rp1a0wob.cloudfront.net/static/css/font.css
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll; _ga_19064LH1ZY=GS1.1.1713259789.1.0.1713259789.60.0.0; _ga=GA1.1.1698475896.1713259790; _ga_RFKWJDYLYV=GS1.1.1713259789.1.0.1713259789.0.0.0; _ga_LVR3B71RG5=GS1.1.1713259789.1.0.1713259789.60.0.0; comicSortOrder=newest; geo=NO; _gcl_au=1.1.314185051.1713259791; _uetsid=e0142660fbd311eeade13908fd49cf30; _uetvid=e01466f0fbd311ee9f9d83de1ebb0bf1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:51 GMT
content-type: font/woff2
content-length: 10332
last-modified: Wed, 03 May 2023 15:56:56 GMT
etag: "64528448-285c"
expires: Wed, 16 Apr 2025 09:29:51 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 216.58.207.206 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP216.58.207.206:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713259792778
Content-Type: application/json
X-Goog-Visitor-Id: CgszZXAyM19laFdCZyiNivmwBjIOCgJOTxIIEgQSAgsMIGY%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240409.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713259789959&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C550%2C360&vis=1&wgl=true&ca_type=image
Content-Length: 11521
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 16 Apr 2024 09:29:52 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 216.58.207.206 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP216.58.207.206:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713259815394
Content-Type: application/json
X-Goog-Visitor-Id: CgszZXAyM19laFdCZyiNivmwBjIOCgJOTxIIEgQSAgsMIGY%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240409.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713259789959&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C550%2C360&vis=1&wgl=true&ca_type=image
Content-Length: 935
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 16 Apr 2024 09:30:15 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=3947363&utk= | 104.16.107.254 | 200 OK | 115 B |
URL GET HTTP/2forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=3947363&utk= IP104.16.107.254:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerLet's Encrypt Subjecthscollectedforms.net FingerprintEF:89:C2:30:37:FD:9F:8F:60:29:26:CC:C6:88:74:92:2B:ED:68:5C ValidityFri, 29 Mar 2024 03:19:03 GMT - Thu, 27 Jun 2024 03:19:02 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash733617e4cbc80ab444cfb7fd1abe476e 359415efe6f6b10249d9269497367ae8ac8408f1 a89a77a29a743af5098ecafa36ad3708d0096db9691bf7afc6a7348b65d8f5e6
GET /collected-forms/v1/config/json?portalId=3947363&utk= HTTP/1.1
Host: forms.hscollectedforms.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.keka.com
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 09:29:50 GMT
content-type: application/json;charset=utf-8
vary: Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
x-robots-tag: none
access-control-allow-origin: https://www.keka.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-envoy-upstream-service-time: 3
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: e8fe152a-2c98-42c9-bb64-4447287a6e27
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-68b7f7fbff-z4v48
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: e8fe152a-2c98-42c9-bb64-4447287a6e27
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 8753273a0f5db511-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=AW-859086804 | 142.250.74.168 | 200 OK | 258 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=AW-859086804 IP142.250.74.168:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintBF:40:8C:8B:CB:69:1E:3F:E2:3B:B7:8A:8E:C0:D6:98:5F:81:FA:2D ValidityMon, 04 Mar 2024 06:35:45 GMT - Mon, 27 May 2024 06:35:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Size258 kB (258381 bytes) Hash084838b4054ccf2df3d2057e7f691f67 b05cc28f7329a1464a1c0801c5a2693be2ab8d32 3c303d6bde0d8007207e45bad67c5f234eeb79b519dd8c13669c60f9f7b251e5
GET /gtag/js?id=AW-859086804 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 16 Apr 2024 09:29:50 GMT
expires: Tue, 16 Apr 2024 09:29:50 GMT
cache-control: private, max-age=900
last-modified: Tue, 16 Apr 2024 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89027
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/js/bootstrap.bundle.min.js | 143.204.55.93 | 200 OK | 86 kB |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/js/bootstrap.bundle.min.js IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (42119) Hash2a7d069dc92d4f2c996704efe2097608 72b9110fe87d6790cbd2044e9a08166a85baf43f 69f747ec3c056d18273073f2d0eff2d0a4285eff7d7ca6a7a13863077fc67d4c
GET /static/js/bootstrap.bundle.min.js HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Sat, 07 Oct 2023 10:14:50 GMT
last-modified: Thu, 29 Sep 2022 18:14:21 GMT
etag: W/"6335e07d-14ed9"
expires: Sun, 06 Oct 2024 10:14:50 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4Bie-XzfNQjAY8faqHADIjJsWoLn8Ce0CeZHruw0gtzn5pHSGCWYTQ==
age: 16586098
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/7ebf4817/player_ias.vflset/en_US/base.js | 216.58.207.206 | 200 OK | 2.5 MB |
URL GET HTTP/3www.youtube.com/s/player/7ebf4817/player_ias.vflset/en_US/base.js IP216.58.207.206:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Size2.5 MB (2541942 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/player/7ebf4817/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 808582
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 06:37:59 GMT
expires: Wed, 16 Apr 2025 06:37:59 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 Apr 2024 04:18:25 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 10310
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| bat.bing.com/p/action/343063484.js | 13.107.21.237 | 200 OK | 3.7 kB |
URL GET HTTP/2bat.bing.com/p/action/343063484.js IP13.107.21.237:443 ASN#8068 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerMicrosoft Corporation Subjectwww.bing.com FingerprintCB:6D:BA:34:FD:F2:DC:E3:FB:8E:FC:0F:65:5C:64:51:41:DB:7E:88 ValidityTue, 16 Apr 2024 02:03:35 GMT - Thu, 27 Jun 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (3900), with no line terminators Hash1bf7a95b0fd795add541b2bb1d1f54e2 b7b5042e1db87936aa92175673cdea98782971aa 9946e66c88fd563740f537e0984263197df025b4bc406858ea926a1c57ab1cf2
GET /p/action/343063484.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=60
content-type: application/javascript; charset=utf-8
content-encoding: br
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9A1EF5BCB167453AA676B9809889593B Ref B: OSL30EDGE0216 Ref C: 2024-04-16T09:29:51Z
date: Tue, 16 Apr 2024 09:29:51 GMT
X-Firefox-Spdy: h2
|
|
| js.hscollectedforms.net/collectedforms.js | 104.16.107.254 | 200 OK | 70 kB |
URL GET HTTP/2js.hscollectedforms.net/collectedforms.js IP104.16.107.254:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerLet's Encrypt Subjecthscollectedforms.net FingerprintEF:89:C2:30:37:FD:9F:8F:60:29:26:CC:C6:88:74:92:2B:ED:68:5C ValidityFri, 29 Mar 2024 03:19:03 GMT - Thu, 27 Jun 2024 03:19:02 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.keka.com
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 09:29:50 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 10 Apr 2024 18:06:23 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: _rd02ux3UWoVQsATQDf.p_LxkLPJ6umh
etag: W/"020909a609cf986b4a8a88cfb577a8db"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 68a3b1d5c75429221abc685a453afb60.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: WYLavxGzaaHTGzHVZaGYK-ExiYZg15-zd3N7Xu9deDWyuxBpm_Jm4Q==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=collected-forms-embed-js/static-1.491/bundles/project.js&cfRay=87295861ca0e5689-ARN
cache-control: s-maxage=600, max-age=300
x-hs-target-asset: collected-forms-embed-js/static-1.491/bundles/project.js
x-content-type-options: nosniff
x-hs-cache-status: MISS
x-envoy-upstream-service-time: 13
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: eadf19f5-ce7f-4638-9ee4-5fadfb14651f
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-68b7f7fbff-kgjsm
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: eadf19f5-ce7f-4638-9ee4-5fadfb14651f
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 875327378c34b511-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/7ebf4817/player_ias.vflset/en_US/remote.js | 216.58.207.206 | 200 OK | 121 kB |
URL GET HTTP/3www.youtube.com/s/player/7ebf4817/player_ias.vflset/en_US/remote.js IP216.58.207.206:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (543) Size121 kB (120955 bytes) Hash9b6e72dbd9b25baba0dfa7854440cf2b 375a828aff5fa9ccd6b0251bec2b78859034d551 e8cb8df6e5392b3882bfcb18192cff63ce605567a5259e1fd876b04075002d8d
GET /s/player/7ebf4817/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33880
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 14 Apr 2024 07:47:25 GMT
expires: Mon, 14 Apr 2025 07:47:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 Apr 2024 04:18:25 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 178945
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/css/icons/keka-icons.ttf?ddvt7x | 143.204.55.93 | 200 OK | 16 kB |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/css/icons/keka-icons.ttf?ddvt7x IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, keka-icons Hash8cf45faf25c107b59029d3becface721 d5867cb5df2a201bb0f279d4a574240449caadaf c3af1b8842d47441de1812276348ce943994b445b5e7fc9e42265488f0964cf8
GET /static/css/icons/keka-icons.ttf?ddvt7x HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.keka.com
DNT: 1
Connection: keep-alive
Referer: https://d2w2i7rp1a0wob.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-font-ttf
server: nginx
date: Fri, 15 Dec 2023 23:36:12 GMT
last-modified: Tue, 22 Aug 2023 11:22:58 GMT
etag: W/"64e49a92-4024"
expires: Sat, 14 Dec 2024 23:36:12 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: H1SXMT2HsfHnYnr8VXftK9CNJCP_Evb8lmY2M5OK_LCh3rqGjCDWPg==
age: 10576417
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| js.usemessages.com/conversations-embed.js | 104.16.75.142 | 200 OK | 88 kB |
URL GET HTTP/2js.usemessages.com/conversations-embed.js IP104.16.75.142:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerLet's Encrypt Subjectusemessages.com Fingerprint10:23:8B:40:70:5B:AD:73:FE:2B:21:6F:E2:DC:E4:38:FC:77:04:EA ValidityFri, 12 Apr 2024 01:27:22 GMT - Thu, 11 Jul 2024 01:27:21 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashf6f2732f734a25219fb3857683c145d3 20129fcb4ac3c1d2ded802d4f965f27d86799d16 31cafac9c7b9f743c27dd8dc5eaca3c0a41d926f4c6e762705c78682e0395b59
GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Thu, 11 Apr 2024 15:43:26 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: P2QlyIDjib7YmTfsuV6tHRtmiFYiLB89
etag: W/"f6f2732f734a25219fb3857683c145d3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3c43e000c50d5633eb558057710f3c54.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: ynN9q4JSQXVvWvLM2QfWnY30zBS_lDhXqUyd5zGXvx-OZ0onIv3-Fg==
age: 372
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=conversations-embed/static-1.16051/bundles/project.js&cfRay=8731fb208a2956b9-OSL
cache-control: max-age=600
x-hs-target-asset: conversations-embed/static-1.16051/bundles/project.js
x-content-type-options: nosniff
x-hs-cache-status: MISS
x-envoy-upstream-service-time: 15
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: feef47c1-fa99-4971-9d95-21de748a0423
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-68b7f7fbff-kgjsm
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: feef47c1-fa99-4971-9d95-21de748a0423
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 87532737495f56cc-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/images/home/hero-home.svg | 143.204.55.93 | 200 OK | 102 kB |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/images/home/hero-home.svg IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Size102 kB (102091 bytes) Hash4a5da8e8b1f6358eb6592995bd421c92 7eea53aca5e9dffcb120bb4d28f4c2b4047c5ede 99c688ea90838806832e0c9579579df6382905f9208d33448bfff6efe315160c
GET /static/images/home/hero-home.svg HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Mon, 24 Jul 2023 07:15:07 GMT
last-modified: Thu, 29 Sep 2022 18:14:21 GMT
etag: W/"6335e07d-18ecb"
expires: Tue, 23 Jul 2024 07:15:07 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 70hUmLm-azhCDevHBhgPqWTA0-wsULITwjntabliPG48KkEUKdV3Rg==
age: 23076883
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/js/jquery.min.js | 143.204.55.93 | 200 OK | 90 kB |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/js/jquery.min.js IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash7c14a783dfeb3d238ccd3edd840d82ee ad886e472b3557f3dc7dfa2bc43468ab8d1cef5b 80f04717f32ea0320c5e8618fbacedd1fee3a8775ad8292140a6113551d4b5b0
GET /static/js/jquery.min.js HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
server: nginx
date: Mon, 10 Jul 2023 07:33:17 GMT
last-modified: Thu, 29 Sep 2022 18:14:21 GMT
etag: W/"6335e07d-15d9c"
expires: Tue, 09 Jul 2024 07:33:17 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 4m46Fh3l7lrqvp6tT7PQRZhHkD3D3MZKX7MvsrzXgi9YpZuX11UXNQ==
age: 24285391
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| js.hsadspixel.net/fb.js | 104.17.223.152 | 200 OK | 6.3 kB |
IP104.17.223.152:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerLet's Encrypt Subjecthsadspixel.net Fingerprint89:04:B6:FD:E6:3E:5E:C8:E4:39:2D:83:6E:38:CC:9C:BE:A2:08:4D ValidityTue, 16 Apr 2024 02:15:45 GMT - Mon, 15 Jul 2024 02:15:44 GMT
File typeJavaScript source, ASCII text, with very long lines (6478), with no line terminators Hash3ae1cf03d07331973238b40ea2f98563 c9f26d420bdfda6abeec14990cdc2756a177a436 1309cccbb8a6cdf9449b4de395874f52d70fc7cf7d5f8458d93f358f6df7219b
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 15 Apr 2024 17:11:29 UTC
etag: W/"12a97d041f49c166ec4b1644f76ae8fe"
x-amz-server-side-encryption: AES256
x-amz-version-id: TWPsXpJy5mppDy11Ah2d7Z.E9NUoSMax
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 caafbc8a9aa04b09dd564a3ddef60622.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: qQ5mqzggGzbULfglnagpY0NxXcGXrEBdLMIRzSdlaNEJJNEVEY-h0g==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=adsscriptloaderstatic/static-1.547/bundles/pixels-release.js&cfRay=874d9ce26b3e5f10-ARN
cache-control: max-age=600
x-hs-target-asset: adsscriptloaderstatic/static-1.547/bundles/pixels-release.js
x-content-type-options: nosniff
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 2
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 0f5c19a6-cc68-41c0-9e6f-b8adec9a7da9
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-68b7f7fbff-6q8hm
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 0f5c19a6-cc68-41c0-9e6f-b8adec9a7da9
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 382
server: cloudflare
cf-ray: 8753273768a456c7-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| js.hs-banner.com/v2/3947363/banner.js | 172.64.153.27 | 200 OK | 72 kB |
URL GET HTTP/2js.hs-banner.com/v2/3947363/banner.js IP172.64.153.27:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerLet's Encrypt Subjecths-banner.com FingerprintFD:CD:8E:97:D4:7A:91:8A:CF:B0:8D:03:EF:EB:A1:49:9F:F6:62:40 ValidityMon, 01 Apr 2024 01:01:12 GMT - Sun, 30 Jun 2024 01:01:11 GMT
File typeJavaScript source, ASCII text, with very long lines (65002) Hash89791610d562253b93f2dbba2d1a5678 c6441a2633e88367be56a8dfffebc3be54280b72 c54fa1b160414dcb63944f20343f047ce2ad32b6296bef0f89bfbda2856942b8
GET /v2/3947363/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 09:29:50 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: fdTuX71QLCJmQqQNdPQTyQEhcpdXR5Jy8ELBoSfrIc7NR0BXIiEdZnjrKs/TNX6jatEYvsp8a3tKMO4JsBN2lEJLJcIkWQjqUE/tN/7b5Js=
x-amz-request-id: ERW96A75R3DHK1XQ
last-modified: Mon, 15 Apr 2024 14:17:57 GMT
etag: W/"89791610d562253b93f2dbba2d1a5678"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: qKkTg_ExID5KS4EMnmZ51diKxvZArYXe
access-control-allow-origin: https://www.keka.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Tue, 16 Apr 2024 09:32:32 GMT
x-envoy-upstream-service-time: 47
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 35d5c84f-36b5-4b58-b828-0305d06eab58
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-6685c9958f-jg42k
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 35d5c84f-36b5-4b58-b828-0305d06eab58
cf-cache-status: HIT
server: cloudflare
cf-ray: 87532737681f0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js | 142.250.74.164 | 200 OK | 53 kB |
URL GET HTTP/2www.google.com/js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js IP142.250.74.164:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeJavaScript source, ASCII text, with very long lines (52156) Hashe72bebc20c294cb7e62bbccd15c94b1b a83fff70fe780fcbb8738f3d1cf4a7e309879dc6 deaafb8216bbe3662798052922d42a200bb71eb4c80c86835d2dd790f12ae405
GET /js/th/3qr7gha742YnmAUpItQqIAu3HrTIDIaDXS3XkPEq5AU.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20514
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 10 Apr 2024 05:04:22 GMT
expires: Thu, 10 Apr 2025 05:04:22 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 534328
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/iframe_api | 216.58.207.206 | 200 OK | 993 B |
URL GET HTTP/3www.youtube.com/iframe_api IP216.58.207.206:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (1025), with no line terminators Hash32245a4713db3e122dede593c75d5485 5524b30b0b833f23a9d637a5e869c39acd51451a 5059fbe7a612e7718a37912d3f6be6ec64f8d67a2f3fbcef42a37eb110b22271
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Tue, 16 Apr 2024 09:29:50 GMT
date: Tue, 16 Apr 2024 09:29:50 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=nPuSGpn__Fc; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=gPN_OLTg4NU; Domain=.youtube.com; Expires=Sun, 13-Oct-2024 09:29:50 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMICI%3D; Domain=.youtube.com; Expires=Sun, 13-Oct-2024 09:29:50 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.keka.com/media/2022/01/youtube-light.svg | 35.213.175.146 | 200 OK | 1.0 kB |
URL GET HTTP/2www.keka.com/media/2022/01/youtube-light.svg IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash39bed6e16f9066fa1393112781c532f9 417bdae520a8552f78d6a20aac7348884cde9cd8 d3bb04f1c7dc7e3d4e1f3eeee8a5c3679a7b289099dc506e4b1f605fc9475469
GET /media/2022/01/youtube-light.svg HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: image/svg+xml
last-modified: Thu, 29 Sep 2022 18:14:20 GMT
vary: Accept-Encoding
etag: W/"6335e07c-400"
expires: Wed, 16 Apr 2025 09:29:49 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.keka.com/media/2023/03/Creatives.svg | 35.213.175.146 | 200 OK | 1.9 kB |
URL GET HTTP/2www.keka.com/media/2023/03/Creatives.svg IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash16ce65def6b5ae419e11fcdf4fd54389 9920b58cd29cb8b6447caf478173a05afd1e6f8f a59fd691d5fc4a2b22b8de28eb67e5cca20dfd0efcc5fcabeadd795d3b74a836
GET /media/2023/03/Creatives.svg HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: image/svg+xml
last-modified: Thu, 09 Mar 2023 10:36:25 GMT
vary: Accept-Encoding
etag: W/"6409b6a9-771"
expires: Wed, 16 Apr 2025 09:29:49 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/apple-touch-icon.png | 143.204.55.93 | 404 Not Found | 0 B |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/apple-touch-icon.png IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /static/apple-touch-icon.png HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
server: nginx
date: Tue, 16 Apr 2024 09:29:48 GMT
permissions-policy: accelerometer=(), ambient-light-sensor=(), autoplay=(), battery=(), camera=(), cross-origin-isolated=(), display-capture=(), document-domain=(), encrypted-media=(), execution-while-not-rendered=(), execution-while-out-of-viewport=(), fullscreen=(), geolocation=(), gyroscope=(), keyboard-map=(), magnetometer=(), microphone=(), midi=(), navigation-override=(), payment=(), picture-in-picture=(), publickey-credentials-get=(), screen-wake-lock=(), sync-xhr=(), usb=(), web-share=(), xr-spatial-tracking=(), clipboard-read=(), clipboard-write=(), gamepad=(), speaker-selection=(), conversion-measurement=(), focus-without-user-activation=(), hid=(), idle-detection=(), interest-cohort=(), serial=(), sync-script=(), trust-token-redemption=(), window-placement=(), vertical-scroll=()
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-cache-enabled: True
link: <https://www.keka.com/wp-json/>; rel="https://api.w.org/"
x-httpd-modphp: 1
strict-transport-security: max-age=31536000
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-frame-options: DENY
referrer-policy: no-referrer-when-downgrade
content-security-policy: upgrade-insecure-requests
host-header: 6b7412fb82ca5edfd0917e3957f05d89
x-proxy-cache: MISS
x-proxy-cache-info: 0 NC:000000 UP:
content-encoding: br
x-cache: Error from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oQOtri2sEssSIJkcq2CHQMn2B6ayFDXhlD4RgdfR_MJira3tLx_2Lg==
age: 3
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| www.keka.com/media/2022/01/instagram-light.svg | 35.213.175.146 | 200 OK | 3.3 kB |
URL GET HTTP/2www.keka.com/media/2022/01/instagram-light.svg IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash1851d7f7c62cddbcd26f4201f098799e 2e5549cf922a751574f96359edc6f4ff3a3e8bf1 9081706e8dec61947aa7176016640ae17e7c12ab3ee47a09aad40a1f72a0a752
GET /media/2022/01/instagram-light.svg HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: image/svg+xml
last-modified: Thu, 29 Sep 2022 18:14:20 GMT
vary: Accept-Encoding
etag: W/"6335e07c-cc6"
expires: Wed, 16 Apr 2025 09:29:49 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
|
|
| d2w2i7rp1a0wob.cloudfront.net/static/images/logos/KekaLogoWhite.svg | 143.204.55.93 | 200 OK | 5.9 kB |
URL GET HTTP/2d2w2i7rp1a0wob.cloudfront.net/static/images/logos/KekaLogoWhite.svg IP143.204.55.93:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash7d3f3f2506fbf205714869b108f4cef3 726d8f36453af89c33aec53d823f5f378b319a87 37166e6eaa9107c4cb368e6ed3445acd7cee45cb987a666d0db3d27c539a2f9e
GET /static/images/logos/KekaLogoWhite.svg HTTP/1.1
Host: d2w2i7rp1a0wob.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/svg+xml
server: nginx
date: Wed, 04 Oct 2023 07:08:00 GMT
last-modified: Thu, 29 Sep 2022 18:14:21 GMT
etag: W/"6335e07d-171c"
expires: Thu, 03 Oct 2024 07:08:00 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: gzip
x-cache: Hit from cloudfront
via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2vXjjuR9MxhETkHv0VFFmlahyKkIfQZ5QkyoNbfjyNfAzboj78nkpQ==
age: 16856510
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
|
|
| www.keka.com/media/2021/02/1519907464827.png | 35.213.175.146 | 200 OK | 19 kB |
URL GET HTTP/2www.keka.com/media/2021/02/1519907464827.png IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typePNG image data, 300 x 100, 8-bit/color RGBA, interlaced Hash4f31b368ab1fb5f17ac455fc9c056905 ca55daa412b0136636e2d5aeaa797c00bd6c2399 f2b6e4dd3414d38138040cbb72dcc346db3d656623f9245f2650356105536d01
GET /media/2021/02/1519907464827.png HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:48 GMT
content-type: image/png
content-length: 19394
last-modified: Thu, 29 Sep 2022 18:14:19 GMT
etag: "6335e07b-4bc2"
expires: Wed, 16 Apr 2025 09:29:48 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.keka.com/media/2022/01/facebook-light.svg | 35.213.175.146 | 200 OK | 549 B |
URL GET HTTP/2www.keka.com/media/2022/01/facebook-light.svg IP35.213.175.146:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerSectigo Limited Subject*.keka.com Fingerprint12:18:73:1C:5D:28:4A:3C:0E:45:6B:43:F8:C9:29:54:20:6A:29:84 ValidityThu, 04 Apr 2024 00:00:00 GMT - Fri, 04 Apr 2025 23:59:59 GMT
File typeSVG Scalable Vector Graphics image Hash6e36fc3a3cc9e772cd64c18fff91f36c cd2ffba8db444fd1e63c4c8b3de5f89468ea537f e4555bbd3f27776ea08654ee72704e17128915513ac6dd2160110057df6ec52d
GET /media/2022/01/facebook-light.svg HTTP/1.1
Host: www.keka.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll
DNT: 1
Connection: keep-alive
Cookie: ip2location_redirection_first_visit=1713259788%3B779a72e2c2827d1dad9608901cdb93a0; utm_source=citehr; utm_medium=citehr_email_payroll
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 16 Apr 2024 09:29:49 GMT
content-type: image/svg+xml
last-modified: Thu, 29 Sep 2022 18:14:20 GMT
vary: Accept-Encoding
etag: W/"6335e07c-225"
expires: Wed, 16 Apr 2025 09:29:49 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
content-encoding: br
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Open%20Sans:wght@400;500;700&display=swap | 142.250.74.170 | 200 OK | 18 kB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Open%20Sans:wght@400;500;700&display=swap IP142.250.74.170:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (1572) Hash7934e4f269e0e5cbf0fd97929d409f8d fd55e01fbfc29d6f8a91a7661d658f605a841856 c1e8cd07fbedfc9bd647659349bf2cc189e4c492c0e3c352c4359b374d5e3505
GET /css2?family=Open%20Sans:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 16 Apr 2024 09:29:49 GMT
date: Tue, 16 Apr 2024 09:29:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/7ebf4817/www-embed-player.vflset/www-embed-player.js | 216.58.207.206 | 200 OK | 328 kB |
URL GET HTTP/3www.youtube.com/s/player/7ebf4817/www-embed-player.vflset/www-embed-player.js IP216.58.207.206:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (682) Size328 kB (327958 bytes) Hash04285caa68f8c66024f4f2330fed1013 372e6ad3ebcb0e28eb277f44d86ea34ca17a94ea ee0c4ca8a9d1bbf35389905f8a8d98c0fe6008b67ee81ce13ed03e4154608191
GET /s/player/7ebf4817/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97836
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 14 Apr 2024 14:32:39 GMT
expires: Mon, 14 Apr 2025 14:32:39 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 Apr 2024 04:18:25 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 154630
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 | 216.58.207.206 | 200 OK | 93 kB |
URL GET HTTP/2www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 IP216.58.207.206:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, ASCII text, with very long lines (58090) Hashf3c6df376d497b2015c4a8c485cb31da 482f22178c6c14bbf55fdaf0563cbf58c9f15d50 39674fc634f49c69334491d766f7f2957c74b5025fc337e443e241d0818178d4
GET /embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 16 Apr 2024 09:29:49 GMT
strict-transport-security: max-age=31536000
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=RBUoTnVypfo; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=3ep23_ehWBg; Domain=.youtube.com; Expires=Sun, 13-Oct-2024 09:29:49 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIGY%3D; Domain=.youtube.com; Expires=Sun, 13-Oct-2024 09:29:49 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| tracking.g2crowd.com/attribution_tracking/conversions/1007905.js?p=https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll&e=false | 172.64.144.225 | 200 OK | 16 B |
URL GET HTTP/2tracking.g2crowd.com/attribution_tracking/conversions/1007905.js?p=https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll&e=false IP172.64.144.225:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint58:6C:CC:72:DD:68:AC:24:54:39:71:63:4C:44:B9:50:83:2C:0E:9B ValidityMon, 24 Jul 2023 00:00:00 GMT - Tue, 23 Jul 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hasha454f56f4def70095e30e7676718042e db6a025fafed1d1ad75a6d8bba133d473ecc58b0 3dae93a05edd9dcfc1864b87178a31e0bfa93e1a9b1c486c6e9cbf73cae87862
GET /attribution_tracking/conversions/1007905.js?p=https://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll&e=false HTTP/1.1
Host: tracking.g2crowd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 09:29:51 GMT
content-type: text/javascript; charset=utf-8
cache-control: max-age=600, public
etag: W/"3dae93a05edd9dcfc1864b87178a31e0"
x-request-id: 405ad544-2205-4d00-ad4f-ddbb302f779b
x-runtime: 0.006306
strict-transport-security: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' *.g2crowd.com *.g2.com; connect-src 'self' *.g2crowd.com *.g2.com; font-src 'self' *.g2crowd.com *.g2.com; form-action 'self' *.g2crowd.com *.g2.com; frame-src 'self' *.g2crowd.com *.g2.com; img-src 'self' *.g2crowd.com *.g2.com; manifest-src 'self' *.g2crowd.com *.g2.com; media-src 'self' *.g2crowd.com *.g2.com; object-src 'self' *.g2crowd.com *.g2.com; script-src 'self' *.g2crowd.com *.g2.com; style-src 'self' *.g2crowd.com *.g2.com; worker-src 'self' *.g2crowd.com *.g2.com
vary: Origin
cf-cache-status: DYNAMIC
set-cookie: _session_id=0c366d8a18040d9a90539fde9ddb9ec5; path=/; expires=Tue, 30 Apr 2024 09:29:51 GMT; HttpOnly; secure; SameSite=None
__cf_bm=mG.gJtU8n0V4UN_cfcTo3d8u24MrqTOtGJoTBzgh6Nw-1713259791-1.0.1.1-oOTbyQh5mvKHirNnRTWveYrdkQTzb9DGRADShaIXklbE_VRImS4XLcejWTUBZlSNeBz2CZ2XRKbtyewVzk3gkA; path=/; expires=Tue, 16-Apr-24 09:59:51 GMT; domain=.g2crowd.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 87532742befb56ba-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.youtube.com/s/player/7ebf4817/player_ias.vflset/en_US/embed.js | 216.58.207.206 | 200 OK | 59 kB |
URL GET HTTP/3www.youtube.com/s/player/7ebf4817/player_ias.vflset/en_US/embed.js IP216.58.207.206:443
Requested byhttps://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hash7a1773c5c44ac04205d5a182e7cafa0d 0b1bf4828c39f0a224fecc1c7dbb255c743463e5 1dcbcb6b5819b6d5b7f4342bdccc2da6761e76da37694366972385ae6afc2881
GET /s/player/7ebf4817/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/YGrV5pq5mWk?enablejsapi=1&html5=1&mute=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18118
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 03:44:23 GMT
expires: Wed, 16 Apr 2025 03:44:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 10 Apr 2024 04:18:25 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 20726
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=3947363 | 104.18.241.108 | 200 OK | 115 B |
URL GET HTTP/2api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=3947363 IP104.18.241.108:443
Requested byhttps://www.keka.com/hrms-citehr?utm_source=citehr&utm_medium=citehr_email_payroll CertificateIssuerLet's Encrypt Subjecthubapi.com FingerprintF3:62:66:3A:AD:E1:D9:F0:2E:DB:49:11:36:58:38:EB:38:2B:4C:1B ValidityWed, 06 Mar 2024 23:08:51 GMT - Tue, 04 Jun 2024 23:08:50 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash1b9c21627b35b4903e2dd24809a8c272 095cf62c787dea97c89c66e87b416469399a362c ea15216893b894db2efc74cf5ccfe9fb8252785752c08f3988ec14c7ee0cf933
GET /hs-script-loader-public/v1/config/pixels-and-events/json?portalId=3947363 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.keka.com
DNT: 1
Connection: keep-alive
Referer: https://www.keka.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 Apr 2024 09:29:50 GMT
content-type: application/json;charset=utf-8
cf-ray: 87532738cd430b06-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://www.keka.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-content-type-options: nosniff
x-envoy-upstream-service-time: 18
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-697677dfc-wd69v
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: a3513ad6-52fb-4c15-8e77-3f7eb8609894
x-request-id: a3513ad6-52fb-4c15-8e77-3f7eb8609894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Aelqzbzsa5%2BpMkbUwEfbCIDdmOFqv%2B5RWalG5hAgrMehccM6OlT%2BMfhBukFKobrdMQWQDN%2FqmDdVyzNZHAoQHoo5UkZZ%2FL7Yt3y5KiEmRIUs9%2BvGkgk6rUXwD%2FHoKOVG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|