302 Found 0 B URL User Request GET HTTP/2 IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectonduo.com
FingerprintDE:6A:25:EB:E6:53:4F:BA:45:A1:82:F9:B8:C7:6D:DD:08:34:4E:12
ValidityWed, 11 Dec 2024 19:45:00 GMT - Tue, 11 Mar 2025 20:36:12 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
cache-control: private
location: https://join.onduo.com/
content-length: 0
date: Fri, 03 Jan 2025 06:25:16 GMT
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET join.onduo.com/_next/static/5chbGgilud69A6-K92AO0/_ssgManifest.js
200 OK 109 B URL GET HTTP/3 join.onduo.com/_next/static/5chbGgilud69A6-K92AO0/_ssgManifest.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectjoin.onduo.com
Fingerprint6D:47:FD:11:21:E9:4A:FF:F4:1A:F3:88:72:56:BF:61:A3:61:48:D9
ValidityWed, 11 Dec 2024 17:12:57 GMT - Tue, 11 Mar 2025 17:54:42 GMT
File type ASCII text, with no line terminators
Hash 93f1fa0488f37a8ba9f589202de68584
02cc6e055913c9e2c17e714afb12de2fb2e5f880
31989265a41f64e8fa3f16a5caabe3c925fc6581d1801d5a39c317e9204270e6
GET /_next/static/5chbGgilud69A6-K92AO0/_ssgManifest.js HTTP/1.1
Host: join.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
last-modified: Thu, 12 Dec 2024 21:38:40 GMT
etag: W/"6d-193bccf4300"
content-type: application/javascript; charset=UTF-8
content-length: 109
vary: Accept-Encoding
date: Fri, 03 Jan 2025 06:25:17 GMT
via: 1.1 google
cache-control: public,max-age=7200,immutable
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
200 OK 19 kB URL User Request GET HTTP/2 IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectjoin.onduo.com
Fingerprint6D:47:FD:11:21:E9:4A:FF:F4:1A:F3:88:72:56:BF:61:A3:61:48:D9
ValidityWed, 11 Dec 2024 17:12:57 GMT - Tue, 11 Mar 2025 17:54:42 GMT
File type gzip compressed data, from Unix
Hash 13cfbf06cf0d334b8005863e30d0a433
fa1ab1908f81070d058e55626e9f794b794b2c63
3444a3fc88682dfd005ab9a72968186cdbc6a76f18d4f8769ca174f10d2fe3ce
GET / HTTP/1.1
Host: join.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-nextjs-cache: HIT
x-powered-by: Next.js
etag: "rxaljfmfge13tb"
content-type: text/html; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:17 GMT
via: 1.1 google
cache-control: public,max-age=3600,s-maxage=300,stale-while-revalidate
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7W0Q5nw.woff2
200 OK 47 kB URL GET HTTP/2 fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7W0Q5nw.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 46552, version 1.0
Hash 74c3556b9dad12fb76f84af53ba69410
342edef074482299f72f8f7a8862e6f908bd4137
3bcf04ca301e44f13f404c8a04aa4ae707f67a950e12ef30c238f96e784266a1
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7W0Q5nw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Dec 2024 18:20:44 GMT
expires: Sat, 27 Dec 2025 18:20:44 GMT
cache-control: public, max-age=31536000
age: 561874
last-modified: Thu, 14 Sep 2023 00:46:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET assets.verily.com/transform/91c1650f-0cf2-4ce4-a2ea-c95490e1e158/verily_onduo_V4Footer
200 OK 43 kB URL GET HTTP/2 assets.verily.com/transform/91c1650f-0cf2-4ce4-a2ea-c95490e1e158/verily_onduo_V4Footer
IP
Certificate IssuerAmazon
Subjectverily.bynder.com
Fingerprint00:05:FA:ED:26:39:52:48:24:21:19:0A:D9:6F:60:16:2A:99:E7:07
ValidityFri, 22 Mar 2024 00:00:00 GMT - Sun, 20 Apr 2025 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image
Hash 0756ec27774fe3ec177ff27e1eecf99c
b32c5e6e6633d647e372aa0f7f7ee6d36842ff2d
f807815236a33603dc02d61165939b1f8b1f003ec257738524389b051f3b4d1d
GET /transform/91c1650f-0cf2-4ce4-a2ea-c95490e1e158/verily_onduo_V4Footer HTTP/1.1
Host: assets.verily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/webp
content-length: 42566
date: Wed, 01 Jan 2025 23:48:29 GMT
server: nginx
cache-control: public, max-age=900, s-maxage=15552000
content-disposition: inline; filename="verily_onduo_V4Footer.webp"; filename*=UTF-8''verily_onduo_V4Footer.webp
access-control-allow-origin: *
x-api-correlation-id: 18cc30c2-4928-86c6-b68e-2752e0d32d9a
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=63072000; includeSubdomains
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
permissions-policy: camera=(), geolocation=(), microphone=()
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: her-vunjo5WnLVL-Zo9apcOd4AkgQsFdx4BzSdCj1RLrnLLOjzdpQg==
age: 110209
X-Firefox-Spdy: h2
GET assets.adobedtm.com/c09194cc0192/d9895e611827/launch-ce274a8c9888.min.js
200 OK 27 kB URL GET HTTP/2 assets.adobedtm.com/c09194cc0192/d9895e611827/launch-ce274a8c9888.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint24:B9:4C:5D:2A:33:DC:55:5D:0F:7B:A4:84:1D:8B:E5:2F:9A:41:AA
ValidityTue, 09 Jul 2024 00:00:00 GMT - Sat, 09 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (32753)
Hash de753171ecc3d8390e09a593fef6b0c2
c2c266a8ca2615ab6a95736e4983678f9037be03
e76f8a4d864210eb9177c8f08c1c47e15dd520f5cdd9be1a252a5e27f8a41641
GET /c09194cc0192/d9895e611827/launch-ce274a8c9888.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "de753171ecc3d8390e09a593fef6b0c2:1710533091.068143"
last-modified: Fri, 15 Mar 2024 20:04:51 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 27025
cache-control: max-age=3600
expires: Fri, 03 Jan 2025 07:25:18 GMT
date: Fri, 03 Jan 2025 06:25:18 GMT
access-control-allow-origin: https://join.onduo.com
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
GET assets.verily.com/transform/7394fe4a-2338-4cbc-beba-766d9c505b5a/PathToBetterHealth_latest
200 OK 35 kB URL GET HTTP/2 assets.verily.com/transform/7394fe4a-2338-4cbc-beba-766d9c505b5a/PathToBetterHealth_latest
IP
Certificate IssuerAmazon
Subjectverily.bynder.com
Fingerprint00:05:FA:ED:26:39:52:48:24:21:19:0A:D9:6F:60:16:2A:99:E7:07
ValidityFri, 22 Mar 2024 00:00:00 GMT - Sun, 20 Apr 2025 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image
Hash da5749a11df3d1ef86c8d54c0525e5ba
50801584802aae6b6803602883404dede5d7e065
5dc5675b91127766b9177b1c1521401a9046810b1972a283faf20be4884e77b2
GET /transform/7394fe4a-2338-4cbc-beba-766d9c505b5a/PathToBetterHealth_latest HTTP/1.1
Host: assets.verily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 35076
date: Fri, 03 Jan 2025 06:25:18 GMT
server: nginx
cache-control: public, max-age=900, s-maxage=15552000
content-disposition: inline; filename="PathToBetterHealth_latest.webp"; filename*=UTF-8''PathToBetterHealth_latest.webp
access-control-allow-origin: *
x-api-correlation-id: 099fcbdf-5623-efe1-ee89-9c562a1390c1
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=63072000; includeSubdomains
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
permissions-policy: camera=(), geolocation=(), microphone=()
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FWbzwAnxsPBdWEwxlG-3DwORgdDMbmlihg0S_wjFjN6PSMjfWFGvBA==
X-Firefox-Spdy: h2
GET assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement.min.js
200 OK 13 kB URL GET HTTP/2 assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint24:B9:4C:5D:2A:33:DC:55:5D:0F:7B:A4:84:1D:8B:E5:2F:9A:41:AA
ValidityTue, 09 Jul 2024 00:00:00 GMT - Sat, 09 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (32740)
Hash 964f8cb588092ac645368e7307eb73ac
e01feab6ab013563a03e9536a71f1794021a2713
f012c00d43164a4de843ae80abefe500f8497e1123d11c965cd3b40600fe9720
GET /extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "964f8cb588092ac645368e7307eb73ac:1709578290.803919"
last-modified: Mon, 04 Mar 2024 18:51:30 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12938
expires: Fri, 03 Jan 2025 07:25:18 GMT
date: Fri, 03 Jan 2025 06:25:18 GMT
cache-control: no-cache
access-control-allow-origin: https://join.onduo.com
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
GET assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_ActivityMap.min.js
200 OK 1.6 kB URL GET HTTP/2 assets.adobedtm.com/extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_ActivityMap.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint24:B9:4C:5D:2A:33:DC:55:5D:0F:7B:A4:84:1D:8B:E5:2F:9A:41:AA
ValidityTue, 09 Jul 2024 00:00:00 GMT - Sat, 09 Aug 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (3138)
Hash 9cf185793291692f744c78c75da01dd8
1c04ddd887fbfe175884c529cf998bf2903f714d
b90b775b65c2623322caaa52d7acf6af709ca59bdd475a54043b6308d91828c4
GET /extensions/EPc7341b33570d4c988798fc9f0093d4b2/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "9cf185793291692f744c78c75da01dd8:1709578291.795602"
last-modified: Mon, 04 Mar 2024 18:51:31 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1599
expires: Fri, 03 Jan 2025 07:25:18 GMT
date: Fri, 03 Jan 2025 06:25:18 GMT
cache-control: no-cache
access-control-allow-origin: https://join.onduo.com
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtm.js?id=GTM-NDRL4XM
200 OK 95 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NDRL4XM
IP
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintFA:A6:D6:5C:A6:DC:BE:D1:9A:34:42:70:3B:66:13:21:40:A4:C9:E4
ValidityMon, 02 Dec 2024 08:35:56 GMT - Mon, 24 Feb 2025 08:35:55 GMT
File type JavaScript source, ASCII text, with very long lines (9331)
Hash acaf8889b2c7588beb46af76f3a8f4b9
e6c47885ee9f6ff916e3d84b3a4a4f2ae8c36f5a
ee60c4f53bdde9ed7b33bfbaf3394b72c069910123eb3419cb39df825d0ac88d
GET /gtm.js?id=GTM-NDRL4XM HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Jan 2025 06:25:18 GMT
expires: Fri, 03 Jan 2025 06:25:18 GMT
cache-control: private, max-age=900
last-modified: Fri, 03 Jan 2025 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1080:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1080:0"}],}
server: Google Tag Manager
content-length: 94803
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Hash 015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Dec 2024 04:05:21 GMT
expires: Sun, 28 Dec 2025 04:05:21 GMT
cache-control: public, max-age=31536000
age: 526797
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyC0ITw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/raleway/v34/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 48336, version 1.0
Hash bfe7ad4aa54cff8909b2d7632073cc30
7c2e625bea4d449ca78cde09ab59dc6c9cb4726f
47d477915fa5912616e2dc5df8c5780f9202671678cf275472bd39f3381c0098
GET /s/raleway/v34/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Dec 2024 22:51:18 GMT
expires: Sat, 27 Dec 2025 22:51:18 GMT
cache-control: public, max-age=31536000
age: 545640
last-modified: Wed, 01 May 2024 20:31:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Hash 015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Dec 2024 04:05:21 GMT
expires: Sun, 28 Dec 2025 04:05:21 GMT
cache-control: public, max-age=31536000
age: 526797
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
200 OK 128 kB URL GET HTTP/3 fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 128352, version 1.0
Size 128 kB (128352 bytes)
Hash 53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1
GET /s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Dec 2024 18:20:39 GMT
expires: Sat, 27 Dec 2025 18:20:39 GMT
cache-control: public, max-age=31536000
age: 561879
last-modified: Mon, 08 Apr 2024 19:04:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-87YDSPQYKB&l=dataLayer
200 OK 126 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-87YDSPQYKB&l=dataLayer
IP
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintFA:A6:D6:5C:A6:DC:BE:D1:9A:34:42:70:3B:66:13:21:40:A4:C9:E4
ValidityMon, 02 Dec 2024 08:35:56 GMT - Mon, 24 Feb 2025 08:35:55 GMT
File type JavaScript source, ASCII text, with very long lines (17021)
Size 126 kB (125589 bytes)
Hash e8eee55a980fdf193e17414f3613089c
87f36f1c8950f699af5c54c2a94a0b2d6b9e0edb
781d714672cb8a63fe64bc98bb5fc17264048a4b1f1d5588fa4a3ede8fd78e3f
GET /gtag/js?id=G-87YDSPQYKB&l=dataLayer HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Jan 2025 06:25:18 GMT
expires: Fri, 03 Jan 2025 06:25:18 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 125589
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-99W3EJ6NDD&l=dataLayer&cx=c>m=45He4cc1v77035554za200
200 OK 110 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-99W3EJ6NDD&l=dataLayer&cx=c>m=45He4cc1v77035554za200
IP
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintFA:A6:D6:5C:A6:DC:BE:D1:9A:34:42:70:3B:66:13:21:40:A4:C9:E4
ValidityMon, 02 Dec 2024 08:35:56 GMT - Mon, 24 Feb 2025 08:35:55 GMT
File type JavaScript source, ASCII text, with very long lines (5945)
Size 110 kB (109767 bytes)
Hash 3f55d3e569cbafb4e71717ef717d6af2
e9611482fc585f36ef07a2a4f40a401c24bf272a
312e966f041fbe68c569367902c56827de20cca9268a0ad776c3f40e19d7846d
GET /gtag/js?id=G-99W3EJ6NDD&l=dataLayer&cx=c>m=45He4cc1v77035554za200 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Jan 2025 06:25:18 GMT
expires: Fri, 03 Jan 2025 06:25:18 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 109767
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.googletagmanager.com/gtag/js?id=G-87YDSPQYKB&l=dataLayer&cx=c>m=45He4cc1v77035554za200
200 OK 126 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-87YDSPQYKB&l=dataLayer&cx=c>m=45He4cc1v77035554za200
IP
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintFA:A6:D6:5C:A6:DC:BE:D1:9A:34:42:70:3B:66:13:21:40:A4:C9:E4
ValidityMon, 02 Dec 2024 08:35:56 GMT - Mon, 24 Feb 2025 08:35:55 GMT
File type JavaScript source, ASCII text, with very long lines (17021)
Size 126 kB (125620 bytes)
Hash 8ace4de732adafae65755efd024f7cdf
02e36aac33821a6fd53b36cc82181b8248a2ccf5
b3df602ee9c81c9ddec409a220e9f0aa73246359e42b007e58b54a8172c43b70
GET /gtag/js?id=G-87YDSPQYKB&l=dataLayer&cx=c>m=45He4cc1v77035554za200 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 03 Jan 2025 06:25:18 GMT
expires: Fri, 03 Jan 2025 06:25:18 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:838:0
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"coop_reporting","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:838:0"}],}
server: Google Tag Manager
content-length: 125620
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET t.contentsquare.net/uxa/d1daba2e2f02d.js
200 OK 85 kB URL GET HTTP/2 t.contentsquare.net/uxa/d1daba2e2f02d.js
IP
Certificate IssuerAmazon
Subjectt.contentsquare.net
Fingerprint17:16:B5:9F:AA:0E:7C:A2:7B:92:AC:15:06:64:30:06:BA:BC:84:AD
ValidityTue, 13 Aug 2024 00:00:00 GMT - Wed, 10 Sep 2025 23:59:59 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (63585)
Hash 9c027aa91dcea761615e10c85be94ad4
17a2a5757e3a6f41cf52500d4c40a11d8de8e7cf
3a69d541fe102ced8e05eeb5f48d788e14bc0c0e5845c8d5475bf54191d0fcca
GET /uxa/d1daba2e2f02d.js HTTP/1.1
Host: t.contentsquare.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 84873
date: Fri, 03 Jan 2025 06:25:20 GMT
last-modified: Wed, 18 Dec 2024 13:15:45 GMT
etag: "1183252b70d2fd1df363275515b72591"
x-amz-server-side-encryption: AES256
cache-control: max-age=900
content-encoding: br
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: CBXyt2RNFXfKMx_LFoLClesEWD-vPKmKoqnXl4DMILO0V6QMut9QNg==
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
age: 0
vary: Origin
X-Firefox-Spdy: h2
GET join.aem.onduo.com/content/dam/bynder/stock/t2_card_latest-FEE3779D.jpeg
200 OK 310 kB URL GET HTTP/2 join.aem.onduo.com/content/dam/bynder/stock/t2_card_latest-FEE3779D.jpeg
IP
Certificate IssuerCorporation Service Company
Subjectjoin.aem.onduo.com
FingerprintAF:32:ED:C3:38:7B:FE:40:68:D4:4E:A0:C0:BE:BD:7C:89:16:2B:9F
ValidityThu, 30 May 2024 00:00:00 GMT - Fri, 30 May 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3
Size 310 kB (309450 bytes)
Hash cb93f2ab6e0ae506edda7b603f409977
98d0d4d35bb4ec40ea54e5f7e24334484a7c4cee
a0c9a17908af172160d682c6fc3f8ea0dbac8a5b309a35ccc77d4507f4a998f1
GET /content/dam/bynder/stock/t2_card_latest-FEE3779D.jpeg HTTP/1.1
Host: join.aem.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
cache-control: max-age=43200,stale-while-revalidate=43200,stale-if-error=43200
content-disposition: inline;filename="t2_card_latest.jpeg"
last-modified: Thu, 02 Jan 2025 23:02:57 GMT
etag: "4b8ca-62ac129b510a8"
x-vhost: publish-onduo
content-type: image/jpeg
x-content-type-options: nosniff
accept-ranges: bytes
age: 1
date: Fri, 03 Jan 2025 06:25:19 GMT
strict-transport-security: max-age=31557600
set-cookie: affinity="8e4f76bcacb64ba9"; Path=/; HttpOnly; secure
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-timer: S1735885518.109016,VS0,VS0,VE1421
vary: Origin
content-length: 309450
X-Firefox-Spdy: h2
GET join.aem.onduo.com/content/dam/bynder/stock/type1Diabetes_latest-58BD8B77.jpeg
200 OK 287 kB URL GET HTTP/2 join.aem.onduo.com/content/dam/bynder/stock/type1Diabetes_latest-58BD8B77.jpeg
IP
Certificate IssuerCorporation Service Company
Subjectjoin.aem.onduo.com
FingerprintAF:32:ED:C3:38:7B:FE:40:68:D4:4E:A0:C0:BE:BD:7C:89:16:2B:9F
ValidityThu, 30 May 2024 00:00:00 GMT - Fri, 30 May 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 500x500, components 3
Size 287 kB (286707 bytes)
Hash 7c08d57e759669329e1c9b22c4b38940
58ed5672380fdd8e9028915678c30d252a44a1c8
066644e981e265bfff705c3f4aba383cf2af3b2a08159f9c9868fd2f5c7e2e77
GET /content/dam/bynder/stock/type1Diabetes_latest-58BD8B77.jpeg HTTP/1.1
Host: join.aem.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
cache-control: max-age=43200,stale-while-revalidate=43200,stale-if-error=43200
content-disposition: inline;filename="type1Diabetes_latest.jpeg"
last-modified: Thu, 02 Jan 2025 23:02:55 GMT
etag: "45ff3-62ac1299ca2bf"
x-vhost: publish-onduo
content-type: image/jpeg
x-content-type-options: nosniff
accept-ranges: bytes
age: 1
date: Fri, 03 Jan 2025 06:25:19 GMT
strict-transport-security: max-age=31557600
set-cookie: affinity="0e67492f6b5e45ef"; Path=/; HttpOnly; secure
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-timer: S1735885518.136180,VS0,VS0,VE1421
vary: Origin
content-length: 286707
X-Firefox-Spdy: h2
GET enroll.onduo.com/mrk.png?utm_source=null&utm_medium=null&utm_campaign=null&utm_content=null&invite_code=null&http_referrer=&landing_page=join.onduo.com%2F
200 OK 150 B URL GET HTTP/2 enroll.onduo.com/mrk.png?utm_source=null&utm_medium=null&utm_campaign=null&utm_content=null&invite_code=null&http_referrer=&landing_page=join.onduo.com%2F
IP
Certificate IssuerGoogle Trust Services
Subjectenroll.onduo.com
FingerprintA1:74:A4:BE:B8:76:CE:EC:2C:5F:B9:CA:70:1F:92:E0:B6:EC:25:70
ValidityMon, 23 Dec 2024 00:43:51 GMT - Sun, 23 Mar 2025 01:33:42 GMT
File type PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced
Hash 8f5e47d85c8eeb496a68f50c6ce4b2ad
1b20e2a19b9b7ac19287b355d4a41710a5e497f7
4e3bb6949163fa1a5e8873c6ca9ef084aa795a604b111e432b7de4075ab27d01
GET /mrk.png?utm_source=null&utm_medium=null&utm_campaign=null&utm_content=null&invite_code=null&http_referrer=&landing_page=join.onduo.com%2F HTTP/1.1
Host: enroll.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Cookie: PLAN_ID=home; s_fid=680098A04E6DE91A-06071CABBF5FB242; s_nr30=1735885518732-New; s_vnc90=1743661518733%26vn%3D1; s_ivc=true; s_tslv=1735885518733; s_inv=0; s_ips=1024; s_tp=6490; s_ppv=D%253Dv1%2C16%2C16%2C16%2C1024%2C6%2C1; _cs_mk_aa=0.5294684638735807_1735885518757; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
strict-transport-security: max-age=31536000
set-cookie: JSESSIONID=-TorI0o-2TRb0YZ35d3vLw; Path=/; Secure
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
x-cloud-trace-context: 842614a18d9d0349d51afd8046dcff87
date: Fri, 03 Jan 2025 06:25:19 GMT
server: Google Frontend
content-length: 150
X-Firefox-Spdy: h2
GET enroll.onduo.com/mrk.png?utm_source=undefined&utm_medium=undefined&utm_campaign=undefined&utm_content=undefined&invite_code=ABC001&http_referrer=&landing_page=join.onduo.com%2F
200 OK 150 B URL GET HTTP/2 enroll.onduo.com/mrk.png?utm_source=undefined&utm_medium=undefined&utm_campaign=undefined&utm_content=undefined&invite_code=ABC001&http_referrer=&landing_page=join.onduo.com%2F
IP
Certificate IssuerGoogle Trust Services
Subjectenroll.onduo.com
FingerprintA1:74:A4:BE:B8:76:CE:EC:2C:5F:B9:CA:70:1F:92:E0:B6:EC:25:70
ValidityMon, 23 Dec 2024 00:43:51 GMT - Sun, 23 Mar 2025 01:33:42 GMT
File type PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced
Hash 8f5e47d85c8eeb496a68f50c6ce4b2ad
1b20e2a19b9b7ac19287b355d4a41710a5e497f7
4e3bb6949163fa1a5e8873c6ca9ef084aa795a604b111e432b7de4075ab27d01
GET /mrk.png?utm_source=undefined&utm_medium=undefined&utm_campaign=undefined&utm_content=undefined&invite_code=ABC001&http_referrer=&landing_page=join.onduo.com%2F HTTP/1.1
Host: enroll.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Cookie: PLAN_ID=home; s_fid=680098A04E6DE91A-06071CABBF5FB242; s_nr30=1735885518732-New; s_vnc90=1743661518733%26vn%3D1; s_ivc=true; s_tslv=1735885518733; s_inv=0; s_ips=1024; s_tp=6490; s_ppv=D%253Dv1%2C16%2C16%2C16%2C1024%2C6%2C1; _cs_mk_aa=0.5294684638735807_1735885518757; s_cc=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
strict-transport-security: max-age=31536000
set-cookie: JSESSIONID=uTpf9gAPKz6ED3z9bamxwg; Path=/; Secure
expires: Mon, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
x-cloud-trace-context: 9fbf40257bd38721a7e73af42917bff0
date: Fri, 03 Jan 2025 06:25:19 GMT
server: Google Frontend
content-length: 150
X-Firefox-Spdy: h2
GET c.contentsquare.net/pageview?ex=&dt=320&pvt=n&la=en-US&uc=1&url=https%3A%2F%2Fjoin.onduo.com%2F&dr=&dw=1280&dh=6456&ww=1280&wh=1024&sw=1280&sh=1024&uu=adc1bb90-da7c-a064-9a7d-ee8dfacdb554&sn=1&hd=1735885519&v=15.43.0&pid=11232&pn=1&r=670409
204 No Content 0 B URL GET HTTP/2 c.contentsquare.net/pageview?ex=&dt=320&pvt=n&la=en-US&uc=1&url=https%3A%2F%2Fjoin.onduo.com%2F&dr=&dw=1280&dh=6456&ww=1280&wh=1024&sw=1280&sh=1024&uu=adc1bb90-da7c-a064-9a7d-ee8dfacdb554&sn=1&hd=1735885519&v=15.43.0&pid=11232&pn=1&r=670409
IP
Certificate IssuerLet's Encrypt
Subjectdep.ba.contentsquare.net
Fingerprint12:74:3A:53:C7:A0:31:65:9B:12:74:38:4E:48:27:DC:B0:08:D6:33
ValiditySun, 29 Dec 2024 05:06:22 GMT - Sat, 29 Mar 2025 05:06:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pageview?ex=&dt=320&pvt=n&la=en-US&uc=1&url=https%3A%2F%2Fjoin.onduo.com%2F&dr=&dw=1280&dh=6456&ww=1280&wh=1024&sw=1280&sh=1024&uu=adc1bb90-da7c-a064-9a7d-ee8dfacdb554&sn=1&hd=1735885519&v=15.43.0&pid=11232&pn=1&r=670409 HTTP/1.1
Host: c.contentsquare.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-headers: Access-Control-Expose-Headers, Content-Type, Content-Compression, X-Requested-With
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
content-disposition: inline
date: Fri, 03 Jan 2025 06:25:19 GMT
expires: Sun, 24 Oct 1982 23:00:00 GMT
pragma: no-cache
timing-allow-origin: *
X-Firefox-Spdy: h2
GET c.contentsquare.net/dvar?v=15.43.0&pid=11232&pn=1&sn=1&uu=adc1bb90-da7c-a064-9a7d-ee8dfacdb554&dv=H4sIAAAAAAAAA6tWSi72TSxJzsjMS%2FdOrVSyUjLQMzMxNTW2NDE0tbA0NDK2MIs3NDc2tbAwNTW0NDCyVKoFAA0TccM0AAAA&ct=2&r=459384
204 No Content 0 B URL GET HTTP/2 c.contentsquare.net/dvar?v=15.43.0&pid=11232&pn=1&sn=1&uu=adc1bb90-da7c-a064-9a7d-ee8dfacdb554&dv=H4sIAAAAAAAAA6tWSi72TSxJzsjMS%2FdOrVSyUjLQMzMxNTW2NDE0tbA0NDK2MIs3NDc2tbAwNTW0NDCyVKoFAA0TccM0AAAA&ct=2&r=459384
IP
Certificate IssuerLet's Encrypt
Subjectdep.ba.contentsquare.net
Fingerprint12:74:3A:53:C7:A0:31:65:9B:12:74:38:4E:48:27:DC:B0:08:D6:33
ValiditySun, 29 Dec 2024 05:06:22 GMT - Sat, 29 Mar 2025 05:06:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dvar?v=15.43.0&pid=11232&pn=1&sn=1&uu=adc1bb90-da7c-a064-9a7d-ee8dfacdb554&dv=H4sIAAAAAAAAA6tWSi72TSxJzsjMS%2FdOrVSyUjLQMzMxNTW2NDE0tbA0NDK2MIs3NDc2tbAwNTW0NDCyVKoFAA0TccM0AAAA&ct=2&r=459384 HTTP/1.1
Host: c.contentsquare.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
access-control-allow-headers: Access-Control-Expose-Headers, Content-Type, Content-Compression, X-Requested-With
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate, pre-check=0, post-check=0
content-disposition: inline
date: Fri, 03 Jan 2025 06:25:19 GMT
expires: Sun, 24 Oct 1982 23:00:00 GMT
pragma: no-cache
timing-allow-origin: *
X-Firefox-Spdy: h2
POST q-aus1.contentsquare.net/quota?ct=0
200 OK 29 B URL POST HTTP/2 q-aus1.contentsquare.net/quota?ct=0
IP
Certificate IssuerAmazon
Subjectq.bf.contentsquare.net
Fingerprint60:50:26:0D:28:B3:94:F8:0F:2B:BF:55:7F:8F:A3:F5:A8:AD:BB:2B
ValidityTue, 26 Nov 2024 00:00:00 GMT - Fri, 26 Dec 2025 23:59:59 GMT
Hash 460c4cf5b933fb9fa62230636f6a31c4
220d84f0e1fc99eb4b1ea56ff6839dcb80f5f382
70c705d49e04d07b8353972235ca2f2f7f48c1ddbb671829a282558b991a8fa1
POST /quota?ct=0 HTTP/1.1
Host: q-aus1.contentsquare.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 130
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 03 Jan 2025 06:25:19 GMT
content-type: application/json
content-length: 29
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: POST, OPTIONS
access-control-allow-headers: Access-Control-Expose-Headers, Content-Type, Content-Compression
X-Firefox-Spdy: h2
GET join.aem.onduo.com/content/dam/bynder/logo/Verily_2023_verily_onduo_rgb_Logo_v_verily_onduo_color_single_rgb-2CE42F63.png/_jcr_content/renditions/webp-slider.webp
404 Not Found 196 B URL GET HTTP/2 join.aem.onduo.com/content/dam/bynder/logo/Verily_2023_verily_onduo_rgb_Logo_v_verily_onduo_color_single_rgb-2CE42F63.png/_jcr_content/renditions/webp-slider.webp
IP
Certificate IssuerCorporation Service Company
Subjectjoin.aem.onduo.com
FingerprintAF:32:ED:C3:38:7B:FE:40:68:D4:4E:A0:C0:BE:BD:7C:89:16:2B:9F
ValidityThu, 30 May 2024 00:00:00 GMT - Fri, 30 May 2025 23:59:59 GMT
File type HTML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
GET /content/dam/bynder/logo/Verily_2023_verily_onduo_rgb_Logo_v_verily_onduo_color_single_rgb-2CE42F63.png/_jcr_content/renditions/webp-slider.webp HTTP/1.1
Host: join.aem.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Cookie: PLAN_ID=home
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
x-frame-options: SAMEORIGIN
content-type: text/html; charset=iso-8859-1
accept-ranges: bytes
date: Fri, 03 Jan 2025 06:25:19 GMT
strict-transport-security: max-age=31557600
set-cookie: affinity="042a94684e8fb618"; Path=/; HttpOnly; secure
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-timer: S1735885519.526288,VS0,VS0,VE1388
content-length: 196
X-Firefox-Spdy: h2
POST k-aus1.contentsquare.net/v2/recording?rt=5&rst=1735885519472&let=1735885519535&v=15.43.0&pid=11232&pn=1&sn=1&uu=adc1bb90-da7c-a064-9a7d-ee8dfacdb554&ri=1&ct=2
200 OK 0 B URL POST HTTP/2 k-aus1.contentsquare.net/v2/recording?rt=5&rst=1735885519472&let=1735885519535&v=15.43.0&pid=11232&pn=1&sn=1&uu=adc1bb90-da7c-a064-9a7d-ee8dfacdb554&ri=1&ct=2
IP
Certificate IssuerLet's Encrypt
Subjectdep-malka.bf.contentsquare.net
FingerprintF2:95:5D:CE:B6:BF:89:A6:70:B4:1B:70:3B:AC:1F:33:EE:0E:18:A4
ValiditySat, 28 Dec 2024 06:18:57 GMT - Fri, 28 Mar 2025 06:18:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /v2/recording?rt=5&rst=1735885519472&let=1735885519535&v=15.43.0&pid=11232&pn=1&sn=1&uu=adc1bb90-da7c-a064-9a7d-ee8dfacdb554&ri=1&ct=2 HTTP/1.1
Host: k-aus1.contentsquare.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 9633
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-headers: Access-Control-Expose-Headers, Content-Type, Content-Compression, X-Requested-With
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
date: Fri, 03 Jan 2025 06:25:20 GMT
timing-allow-origin: *
content-length: 0
X-Firefox-Spdy: h2
GET aem-dev.verily.com/content/dam/verily-corp/us/en/fonts/Poppins-Regular.ttf
200 OK 158 kB URL GET HTTP/2 aem-dev.verily.com/content/dam/verily-corp/us/en/fonts/Poppins-Regular.ttf
IP
Certificate IssuerCorporation Service Company
Subjectaem-dev.verily.com
Fingerprint20:80:0B:09:A7:37:40:AA:93:65:6E:2A:31:D3:10:75:B5:7F:7C:D7
ValidityTue, 13 Aug 2024 00:00:00 GMT - Wed, 13 Aug 2025 23:59:59 GMT
File type TrueType Font data, 13 tables, 1st "GDEF", 17 names, Microsoft, language 0x409
Size 158 kB (158240 bytes)
Hash 093ee89be9ede30383f39a899c485a82
fdd3002e7d814ee47c1c1b8487c72c6bbb3a2d00
707fdc5c8bab57a90061c6a8ed7b70d5ffb82fc810e994e79f90bace890c255a
GET /content/dam/verily-corp/us/en/fonts/Poppins-Regular.ttf HTTP/1.1
Host: aem-dev.verily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-font-ttf
content-md5: CT7om+nt4wOD85qJnEhagg==
last-modified: Thu, 12 Sep 2024 17:28:47 GMT
etag: "0x8DCD3505C096047"
content-disposition: attachment; filename="Poppins-Regular.ttf"; filename*=UTF-8''Poppins-Regular.ttf
cache-control: public, max-age=600, immutable
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://join.onduo.com
x-vhost: publish-verily-corp
content-security-policy: script-src 'self' 'unsafe-inline' adobedtm.com t.contentsquare.net connect.facebook.net blob: http: https:; object-src 'none'; base-uri 'none'; report-uri https://csp.withgoogle.com/csp/uxe-owners-acl/verily;
accept-ranges: bytes
age: 0
date: Fri, 03 Jan 2025 06:25:19 GMT
strict-transport-security: max-age=31557600
x-served-by: cache-hel1410024-HEL
x-cache: MISS
x-timer: S1735885518.186048,VS0,VS0,VE1429
vary: Origin
content-length: 158240
X-Firefox-Spdy: h2
GET aem-dev.verily.com/content/dam/verily-corp/us/en/fonts/Poppins-Medium.ttf
200 OK 156 kB URL GET HTTP/2 aem-dev.verily.com/content/dam/verily-corp/us/en/fonts/Poppins-Medium.ttf
IP
Certificate IssuerCorporation Service Company
Subjectaem-dev.verily.com
Fingerprint20:80:0B:09:A7:37:40:AA:93:65:6E:2A:31:D3:10:75:B5:7F:7C:D7
ValidityTue, 13 Aug 2024 00:00:00 GMT - Wed, 13 Aug 2025 23:59:59 GMT
File type TrueType Font data, 13 tables, 1st "GDEF", 19 names, Microsoft, language 0x409
Size 156 kB (156520 bytes)
Hash bf59c687bc6d3a70204d3944082c5cc0
283f21b44efbdbf276ba802be2d949a36bbc4233
8d909883de81344e0fbcfef30e931872e92d9aeecdf85b6dcf6e0b28c078e98e
GET /content/dam/verily-corp/us/en/fonts/Poppins-Medium.ttf HTTP/1.1
Host: aem-dev.verily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-font-ttf
content-md5: v1nGh7xtOnAgTTlECCxcwA==
last-modified: Thu, 12 Sep 2024 17:28:47 GMT
etag: "0x8DCD3505BF85C66"
content-disposition: attachment; filename="Poppins-Medium.ttf"; filename*=UTF-8''Poppins-Medium.ttf
cache-control: public, max-age=600, immutable
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://join.onduo.com
x-vhost: publish-verily-corp
content-security-policy: script-src 'self' 'unsafe-inline' adobedtm.com t.contentsquare.net connect.facebook.net blob: http: https:; object-src 'none'; base-uri 'none'; report-uri https://csp.withgoogle.com/csp/uxe-owners-acl/verily;
accept-ranges: bytes
age: 0
date: Fri, 03 Jan 2025 06:25:19 GMT
strict-transport-security: max-age=31557600
x-served-by: cache-hel1410024-HEL
x-cache: MISS
x-timer: S1735885518.192466,VS0,VS0,VE1447
vary: Origin
content-length: 156520
X-Firefox-Spdy: h2
GET www.gstatic.com/dialogflow-console/fast/messenger/bootstrap.js?v=1
200 OK 696 B URL GET HTTP/2 www.gstatic.com/dialogflow-console/fast/messenger/bootstrap.js?v=1
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type JavaScript source, ASCII text
Hash e8f6d46e6ce50ff28035b59505b9d2f3
cf88a22e8c6324ee25244a1679d706486bcaef96
6dcecee0daf79c26403db79ad6cac73f864d47a47bd786d328a0bce42519265a
GET /dialogflow-console/fast/messenger/bootstrap.js?v=1 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/dialogflow-console
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="dialogflow-console"
report-to: {"group":"dialogflow-console","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dialogflow-console"}]}
content-length: 696
date: Fri, 03 Jan 2025 06:25:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Tue, 15 Aug 2023 19:18:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.youtube.com/iframe_api
200 OK 957 B URL GET HTTP/2 www.youtube.com/iframe_api
IP
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
File type JavaScript source, ASCII text, with very long lines (501)
Hash fcdfe214c644bbbc6dfdce139531bc9d
afbe7da92a932f6533d44f497591ee6664570050
1daeb8f2b20e643498e588a0f3bc753699fe28c787205ece9b0fc5cd5a7b06be
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Fri, 03 Jan 2025 06:25:20 GMT
date: Fri, 03 Jan 2025 06:25:20 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: base-uri 'self';default-src 'self' https: blob:;font-src https: data:;img-src https: data: android-webview-video-poster:;media-src blob: https:;object-src 'none';report-uri /cspreport/common;script-src 'nonce-XxuWLB-iA4Q-pj6-6XnJrA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';style-src https: 'unsafe-inline'
content-security-policy: require-trusted-types-for 'script'
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=yI1gazSDmyQ; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=IUS3VWddQCc; Domain=.youtube.com; Expires=Wed, 02-Jul-2025 06:25:20 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIcEhgSFhMLFBUWFwwYGRobHB0eHw4PIBAREiEgPg%3D%3D; Domain=.youtube.com; Expires=Wed, 02-Jul-2025 06:25:20 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET join.onduo.com/_next/static/chunks/913-af0b265e7f7904c0.js
200 OK 6.5 kB URL GET HTTP/3 join.onduo.com/_next/static/chunks/913-af0b265e7f7904c0.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectjoin.onduo.com
Fingerprint6D:47:FD:11:21:E9:4A:FF:F4:1A:F3:88:72:56:BF:61:A3:61:48:D9
ValidityWed, 11 Dec 2024 17:12:57 GMT - Tue, 11 Mar 2025 17:54:42 GMT
File type gzip compressed data, from Unix
Hash 7c9abc5aeef22b8ab0117f90ffbeb49e
d673d0ef722e7c5bccb40ac41d6e61fd8442dd8b
eebad22234d01cee54e916e9f8e679e841b77befb06017360e21802d6bec3a48
GET /_next/static/chunks/913-af0b265e7f7904c0.js HTTP/1.1
Host: join.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
last-modified: Thu, 12 Dec 2024 21:38:12 GMT
etag: W/"44cf-193bcced5a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:17 GMT
via: 1.1 google
cache-control: public,max-age=7200,immutable
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET static.dialogflow.com/common/messenger/webcomponentsjs/2.1.3/custom-elements-es5-adapter.js
200 OK 493 B URL GET HTTP/2 static.dialogflow.com/common/messenger/webcomponentsjs/2.1.3/custom-elements-es5-adapter.js
IP
Certificate IssuerGoogle Trust Services
Subjectdevsite-sni.developers.google.com
FingerprintF8:F1:73:51:80:71:D6:12:F2:C8:92:25:1D:AA:83:B4:7A:97:CB:32
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
File type JavaScript source, ASCII text, with very long lines (368)
Hash 8391957aaff84ed2243736878b5b1108
8525d75daee3b8f23a0ae371a03c9202e3944699
7034ae8d8aaa077dc02a62b5b4a0b9d0eefacc5619832a2637a9afd4ef626cc6
GET /common/messenger/webcomponentsjs/2.1.3/custom-elements-es5-adapter.js HTTP/1.1
Host: static.dialogflow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/dialogflow-console
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="dialogflow-console"
report-to: {"group":"dialogflow-console","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dialogflow-console"}]}
content-length: 493
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Dec 2024 19:01:25 GMT
expires: Fri, 03 Jan 2025 19:01:25 GMT
cache-control: public, max-age=604800
age: 559435
last-modified: Fri, 26 Oct 2018 00:59:09 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET join.onduo.com/_next/static/chunks/webpack-ee7e63bc15b31913.js
200 OK 2.8 kB URL GET HTTP/3 join.onduo.com/_next/static/chunks/webpack-ee7e63bc15b31913.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectjoin.onduo.com
Fingerprint6D:47:FD:11:21:E9:4A:FF:F4:1A:F3:88:72:56:BF:61:A3:61:48:D9
ValidityWed, 11 Dec 2024 17:12:57 GMT - Tue, 11 Mar 2025 17:54:42 GMT
File type JavaScript source, ASCII text, with very long lines (1594)
Hash 5a3613e3c18fea2b600b68c9ee673a2d
2dda09b8c55ea0ad0ea06d7d48da3511ce2a501d
5e4a1a38f299a83f6d24f9d3cb8f8962887df56e686cffe59bf453e067a23311
GET /_next/static/chunks/webpack-ee7e63bc15b31913.js HTTP/1.1
Host: join.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
last-modified: Thu, 12 Dec 2024 21:38:12 GMT
etag: W/"637-193bcced5a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:17 GMT
via: 1.1 google
cache-control: public,max-age=7200,immutable
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.youtube.com/s/player/03dbdfab/www-widgetapi.vflset/www-widgetapi.js
200 OK 10 kB URL GET HTTP/3 www.youtube.com/s/player/03dbdfab/www-widgetapi.vflset/www-widgetapi.js
IP
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
File type JavaScript source, ASCII text, with very long lines (561)
Hash 32c99fe6533a025bdb08bde87a9b4f6e
f1b48f220f4b4b81ccdbb1a9289b821a66cfa1d3
14939503c8a97bef459ce94218f0e65933ab569f7b1d726bcb0b3c1031ebccf9
GET /s/player/03dbdfab/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 10165
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 Jan 2025 05:48:42 GMT
expires: Sat, 03 Jan 2026 05:48:42 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Dec 2024 05:14:15 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 2198
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET join.aem.onduo.com/content/dam/bynder/logo/Verily_2023_verily_onduo_rgb_Logo_v_verily_onduo_color_single_rgb-2CE42F63.png
200 OK 46 kB URL GET HTTP/2 join.aem.onduo.com/content/dam/bynder/logo/Verily_2023_verily_onduo_rgb_Logo_v_verily_onduo_color_single_rgb-2CE42F63.png
IP
Certificate IssuerCorporation Service Company
Subjectjoin.aem.onduo.com
FingerprintAF:32:ED:C3:38:7B:FE:40:68:D4:4E:A0:C0:BE:BD:7C:89:16:2B:9F
ValidityThu, 30 May 2024 00:00:00 GMT - Fri, 30 May 2025 23:59:59 GMT
File type PNG image data, 3533 x 712, 8-bit/color RGBA, non-interlaced
Hash 04544ffbaad1cc192d2e53ab564cbb0c
35a5d4b211fbaa239858de3660c174f81d401bc8
2b9cf91c0097dc57a0c556806302dbc20c359c9be80806fb5f8ad2cbc2cdbf38
GET /content/dam/bynder/logo/Verily_2023_verily_onduo_rgb_Logo_v_verily_onduo_color_single_rgb-2CE42F63.png HTTP/1.1
Host: join.aem.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Cookie: PLAN_ID=home; s_fid=680098A04E6DE91A-06071CABBF5FB242; s_nr30=1735885518732-New; s_vnc90=1743661518733%26vn%3D1; s_ivc=true; s_tslv=1735885518733; s_inv=0; s_ips=1024; s_tp=6490; s_ppv=D%253Dv1%2C16%2C16%2C16%2C1024%2C6%2C1; _cs_mk_aa=0.5294684638735807_1735885518757; s_cc=true; _cs_mk_ga=0.6455394158912386_1735885519029; _ga_87YDSPQYKB=GS1.1.1735885519.1.0.1735885519.0.0.0; _ga=GA1.1.411286299.1735885519; _ga_99W3EJ6NDD=GS1.1.1735885519.1.0.1735885519.0.0.0; _cs_c=1; _cs_id=adc1bb90-da7c-a064-9a7d-ee8dfacdb554.1735885519.1.1735885519.1735885519.1.1770049519410.1; _cs_s=1.5.0.9.1735887319890; affinity="042a94684e8fb618"
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
cache-control: max-age=43200,stale-while-revalidate=43200,stale-if-error=43200
content-disposition: inline;filename="Verily_2023_verily_onduo_rgb_Logo_v_verily_onduo_color_single_rgb.png"
last-modified: Fri, 03 Jan 2025 06:25:20 GMT
etag: W/"b1fa-62ac757d390d9"
x-vhost: publish-onduo
content-type: image/png
x-content-type-options: nosniff
accept-ranges: bytes
age: 0
date: Fri, 03 Jan 2025 06:25:21 GMT
strict-transport-security: max-age=31557600
x-served-by: cache-hel1410027-HEL
x-cache: MISS
x-timer: S1735885520.936085,VS0,VS0,VE1105
vary: Origin
content-length: 45562
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Dec 2024 18:58:05 GMT
expires: Sat, 27 Dec 2025 18:58:05 GMT
cache-control: public, max-age=31536000
age: 559636
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.youtube-nocookie.com/s/player/03dbdfab/player_ias.vflset/en_US/embed.js
200 OK 9.5 kB URL GET HTTP/3 www.youtube-nocookie.com/s/player/03dbdfab/player_ias.vflset/en_US/embed.js
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
File type JavaScript source, ASCII text, with very long lines (3391)
Hash 2fe29ece9b34ebf5e40fdf5e18bbf7f5
786d5faf73ad1d55483701929067296dcda53711
eba1e9985737a9a73052fb2c5568eae0a6fffa24cd5474437bf1accb4442ed35
GET /s/player/03dbdfab/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 9539
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Dec 2024 08:40:08 GMT
expires: Tue, 30 Dec 2025 08:40:08 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Dec 2024 05:14:15 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 337513
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET join.onduo.com/_next/static/chunks/pages/_app-650686bb26b44baf.js
200 OK 151 kB URL GET HTTP/3 join.onduo.com/_next/static/chunks/pages/_app-650686bb26b44baf.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectjoin.onduo.com
Fingerprint6D:47:FD:11:21:E9:4A:FF:F4:1A:F3:88:72:56:BF:61:A3:61:48:D9
ValidityWed, 11 Dec 2024 17:12:57 GMT - Tue, 11 Mar 2025 17:54:42 GMT
File type gzip compressed data, from Unix
Size 151 kB (151444 bytes)
Hash 4bad6641d0c6faa8995f9d64131ecb98
346e9512d4f0510dd135070a9f0822503762a6bf
bb126feca7c440ea3c69a90c424781c971d3a7be96ed3facea0c97cfd35c183a
GET /_next/static/chunks/pages/_app-650686bb26b44baf.js HTTP/1.1
Host: join.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
last-modified: Thu, 12 Dec 2024 21:38:12 GMT
etag: W/"6d00c-193bcced5a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:17 GMT
via: 1.1 google
cache-control: public,max-age=7200,immutable
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
200 OK 92 kB URL GET HTTP/3 www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
IP
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
File type HTML document, ASCII text, with very long lines (57984)
Hash 814b4ed317e17fd97eb00d93b35e3ea7
385e35f5d8923c54b4d467bd59696e6ed2c7e6b8
91b0f2c5d4391ccd0311b598a2e0b57e6656679a4069aabb2ef6106e8c4992bc
GET /embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1 HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://join.onduo.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 Jan 2025 06:25:21 GMT
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"YOUTUBE_NOCOOKIE_DOMAIN","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/YOUTUBE_NOCOOKIE_DOMAIN"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="YOUTUBE_NOCOOKIE_DOMAIN"
content-security-policy: require-trusted-types-for 'script'
cross-origin-resource-policy: cross-origin
origin-trial: AsnbWYr3bqK88n/C2BgXPMpBC+msV4jf6vsgnAir+gFnHw3zXZEKmz271E4vhxTja+7SD2q3dr2BxZlHzvj9HA0AAACBeyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUtbm9jb29raWUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
content-encoding: br
server: ESF
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.youtube-nocookie.com/s/player/03dbdfab/www-embed-player.vflset/www-embed-player.js
200 OK 101 kB URL GET HTTP/3 www.youtube-nocookie.com/s/player/03dbdfab/www-embed-player.vflset/www-embed-player.js
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
File type JavaScript source, ASCII text, with very long lines (1159)
Size 101 kB (100897 bytes)
Hash 390a18444749ff1687c35276c0117042
3942e2f36c9c62cfaf8c179550b278ef6c570b47
460695efd3945db005d79592c92768f4404939da71a3ec4338f5f96bdf576baa
GET /s/player/03dbdfab/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 100897
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Dec 2024 08:33:46 GMT
expires: Tue, 30 Dec 2025 08:33:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Dec 2024 05:14:15 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 337895
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.youtube-nocookie.com/s/player/03dbdfab/player_ias.vflset/en_US/base.js
200 OK 651 kB URL GET HTTP/3 www.youtube-nocookie.com/s/player/03dbdfab/player_ias.vflset/en_US/base.js
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
File type JavaScript source, ASCII text, with very long lines (568)
Size 651 kB (650890 bytes)
Hash dffd0e78d2a33bb0404f98e7848d6b96
c335a1bc309e53cb713bb2d0cc4f019e183d0a3d
7862b9dc103362c7c2c4311a421f0ac223522f9e5e39dc7c06e81ac03a700893
GET /s/player/03dbdfab/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 650890
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Dec 2024 08:40:08 GMT
expires: Tue, 30 Dec 2025 08:40:08 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Dec 2024 05:14:15 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 337513
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET assets.adobedtm.com/c09194cc0192/d9895e611827/0ec47fb496bd/RC8b3b06946c2747d98b4330fbc35e1abb-source.min.js
200 OK 335 B URL GET HTTP/2 assets.adobedtm.com/c09194cc0192/d9895e611827/0ec47fb496bd/RC8b3b06946c2747d98b4330fbc35e1abb-source.min.js
IP
Certificate IssuerDigiCert Inc
Subjectassets.adobedtm.com
Fingerprint24:B9:4C:5D:2A:33:DC:55:5D:0F:7B:A4:84:1D:8B:E5:2F:9A:41:AA
ValidityTue, 09 Jul 2024 00:00:00 GMT - Sat, 09 Aug 2025 23:59:59 GMT
File type exported SGML document, ASCII text, with very long lines (404)
Hash ac44b719d42a2fd5a4e77994ca9f6966
462d7ecc1805617c0c490a9b0483f8dbe3858643
562c1acc0f4b73bc372469a2fb16a6ef654e4adf506216999583c46ee2cb3ed7
GET /c09194cc0192/d9895e611827/0ec47fb496bd/RC8b3b06946c2747d98b4330fbc35e1abb-source.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "954e01599e6ff774e5c394da36cb271a:1710533093.363374"
last-modified: Fri, 15 Mar 2024 20:04:53 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 335
cache-control: max-age=3600
expires: Fri, 03 Jan 2025 07:25:21 GMT
date: Fri, 03 Jan 2025 06:25:21 GMT
access-control-allow-origin: https://join.onduo.com
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
GET www.gstatic.com/dialogflow-console/fast/messenger/messenger-internal.min.js?v=4
200 OK 31 kB URL GET HTTP/3 www.gstatic.com/dialogflow-console/fast/messenger/messenger-internal.min.js?v=4
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type JavaScript source, ASCII text, with very long lines (5390)
Hash 1c11bf83aab2c31d4421771b69442596
8b14000cd880e063ce1d2d131568298b1a515176
1c29fc696d1501f4634511d57f6e751c893aa7e24ca4ee35b5c1ad752c6b4078
GET /dialogflow-console/fast/messenger/messenger-internal.min.js?v=4 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-type: text/javascript
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/dialogflow-console
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="dialogflow-console"
report-to: {"group":"dialogflow-console","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dialogflow-console"}]}
content-length: 30733
date: Fri, 03 Jan 2025 06:25:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
last-modified: Thu, 02 Nov 2023 22:48:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.youtube-nocookie.com/s/player/03dbdfab/player_ias.vflset/en_US/remote.js
200 OK 35 kB URL GET HTTP/3 www.youtube-nocookie.com/s/player/03dbdfab/player_ias.vflset/en_US/remote.js
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
File type JavaScript source, ASCII text, with very long lines (543)
Hash a9fa2373f9de7523be77ceffeac9142d
8ab4b76993042fda67151dab2ef9032e3065e83f
b653b19e773762a1b41b694b0efe2f44e7ad1940c90698e296cd6c37feab61db
GET /s/player/03dbdfab/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 34851
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Dec 2024 08:43:07 GMT
expires: Tue, 30 Dec 2025 08:43:07 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Dec 2024 05:14:15 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 337335
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 0 B URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint30:E5:7E:29:A5:A1:81:DB:C8:A8:49:80:67:40:12:AB:30:C0:34:8D
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 03 Jan 2025 06:25:22 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
200 OK 43 kB URL POST HTTP/2 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint30:E5:7E:29:A5:A1:81:DB:C8:A8:49:80:67:40:12:AB:30:C0:34:8D
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
Hash c8ce7a629d218a7d7864b72984486304
619dae52def2a4eeaff47057c69ed05727709405
a7417fe37690d7f9d783d901411b57bff92ff3f157832a339337597904ed9984
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:22 GMT
server: ESF
cache-control: private
content-length: 43304
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET fonts.googleapis.com/css?family=Roboto
200 OK 19 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Roboto
IP
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint30:E5:7E:29:A5:A1:81:DB:C8:A8:49:80:67:40:12:AB:30:C0:34:8D
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type gzip compressed data, max compression
Hash 7a696d2f0828dc47c13dcca360ec39f7
fc192639385762c3ffb6c936050942365d0a2cba
af841c3455085489203c2fa2aa41a1c51cee364d4831c36f1bfe5aa7f781907a
GET /css?family=Roboto HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Jan 2025 06:25:22 GMT
date: Fri, 03 Jan 2025 06:25:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
200 OK 128 kB URL GET HTTP/3 fonts.gstatic.com/s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 128352, version 1.0
Size 128 kB (128352 bytes)
Hash 53436aca8627a49f4deaaa44dc9e3c05
0bc0c675480d94ec7e8609dda6227f88c5d08d2c
8265f64786397d6b832d1ca0aafdf149ad84e72759fffa9f7272e91a0fb015d1
GET /s/materialicons/v142/flUhRq6tzZclQEJ-Vdg-IuiaDsNc.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 128352
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Dec 2024 18:20:39 GMT
expires: Sat, 27 Dec 2025 18:20:39 GMT
cache-control: public, max-age=31536000
age: 561883
last-modified: Mon, 08 Apr 2024 19:04:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET i.ytimg.com/vi_webp/gdfwbSR4hMo/sddefault.webp
200 OK 22 kB URL GET HTTP/2 i.ytimg.com/vi_webp/gdfwbSR4hMo/sddefault.webp
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subjectedgestatic.com
Fingerprint70:3A:43:38:B5:41:FD:E0:52:CC:D6:35:C9:A9:1F:03:99:F5:46:B5
ValidityMon, 02 Dec 2024 08:35:56 GMT - Mon, 24 Feb 2025 08:35:55 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 5db818a3c116d7e874e33b084cf61c74
2c83cfbed94e962d8bb3abfc219a79c3c6ca14ac
6d9dcba546df794038234c225f11a5d49419b995da838f4d385fc802a3b20678
GET /vi_webp/gdfwbSR4hMo/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 21704
date: Fri, 03 Jan 2025 06:25:22 GMT
expires: Fri, 03 Jan 2025 08:25:22 GMT
cache-control: public, max-age=7200
etag: "1656610530"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.google.com/js/th/8p-ZUt2O_r6IumY5TzUY2RZ4QvEtVfvf_MYYDjqPK3M.js
200 OK 21 kB URL GET HTTP/2 www.google.com/js/th/8p-ZUt2O_r6IumY5TzUY2RZ4QvEtVfvf_MYYDjqPK3M.js
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint73:D7:A2:DD:D9:66:88:D8:12:DA:21:B2:6C:66:23:55:F7:97:39:A7
ValidityMon, 02 Dec 2024 08:37:44 GMT - Mon, 24 Feb 2025 08:37:43 GMT
File type JavaScript source, ASCII text, with very long lines (53624)
Hash 812113db16365b6b4783f3425982b6f4
c6a80834b26e7e52053c588ef27dfbe61754d628
f29f9952dd8efebe88ba66394f3518d9167842f12d55fbdffcc6180e3a8f2b73
GET /js/th/8p-ZUt2O_r6IumY5TzUY2RZ4QvEtVfvf_MYYDjqPK3M.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20939
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Dec 2024 01:39:48 GMT
expires: Sun, 28 Dec 2025 01:39:48 GMT
cache-control: public, max-age=31536000
age: 535534
last-modified: Mon, 02 Dec 2024 19:00:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 0 B URL POST HTTP/3 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint30:E5:7E:29:A5:A1:81:DB:C8:A8:49:80:67:40:12:AB:30:C0:34:8D
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Fri, 03 Jan 2025 06:25:22 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET kstatic.googleusercontent.com/files/4f401db4b6491f06980fa91e7327b7fdf561033af21dc8849ce3908e467643a6fd7febfa13554da412e48da3b3a9b69e6864f25a1f45532e6e551351f6edd9fd
200 OK 675 B URL GET HTTP/2 kstatic.googleusercontent.com/files/4f401db4b6491f06980fa91e7327b7fdf561033af21dc8849ce3908e467643a6fd7febfa13554da412e48da3b3a9b69e6864f25a1f45532e6e551351f6edd9fd
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectkstatic.googleusercontent.com
FingerprintC6:0A:DC:FC:5F:28:D6:AE:E1:66:BD:AC:57:F6:F0:D2:BA:57:0C:49
ValidityWed, 04 Dec 2024 16:41:51 GMT - Tue, 04 Mar 2025 16:41:50 GMT
File type SVG Scalable Vector Graphics image
Hash 33f82096e238c694d4b2bc0a53d7548d
8b8ee8b00ea04ec3801c6089ce1d1e37744e8211
55311b4f03b2d2fb4f5e8729343129f2d53a77be20306a4142f7ec5955876b4b
GET /files/4f401db4b6491f06980fa91e7327b7fdf561033af21dc8849ce3908e467643a6fd7febfa13554da412e48da3b3a9b69e6864f25a1f45532e6e551351f6edd9fd HTTP/1.1
Host: kstatic.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: AFiumC7EdtFBNLkFjYA6bgXxrbJ_lwNVpO1kzKpR5fphPDaw7_Ah1MwzGNuEdlJXCr5haZ8JpIzeVO8
date: Fri, 03 Jan 2025 06:25:22 GMT
cache-control: private, max-age=0,public,max-age=31536000,immutable
expires: Sat, 03 Jan 2026 06:25:22 GMT
last-modified: Thu, 21 Jul 2022 16:09:35 GMT
etag: "33f82096e238c694d4b2bc0a53d7548d"
x-goog-generation: 1658419775298690
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 675
x-goog-meta-url: https://kstatic.googleusercontent.com/files/4f401db4b6491f06980fa91e7327b7fdf561033af21dc8849ce3908e467643a6fd7febfa13554da412e48da3b3a9b69e6864f25a1f45532e6e551351f6edd9fd
content-type: image/svg+xml
content-disposition: filename=Chat_Bot_1.svg
x-goog-hash: crc32c=NuLfLw==, md5=M/ggluI4xpTUsrwKU9dUjQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 675
access-control-allow-origin: *
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
200 OK 114 B URL POST HTTP/3 jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint30:E5:7E:29:A5:A1:81:DB:C8:A8:49:80:67:40:12:AB:30:C0:34:8D
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
Hash a4de3a874d42857fa3f010d6b5bcedcc
774b7f68325a0de5627574f83c8827e55f7e8d2f
597002036dfa21223ffb4034e61eea2f1003b9f14850c5a4bf015a612dead942
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 944
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:22 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
OPTIONS play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL OPTIONS HTTP/3 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 03 Jan 2025 06:25:22 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
OPTIONS play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL OPTIONS HTTP/3 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 642
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:22 GMT
server: Playlog
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
OPTIONS play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL OPTIONS HTTP/3 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 03 Jan 2025 06:25:22 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
OPTIONS play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL OPTIONS HTTP/3 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 904
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:22 GMT
server: Playlog
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.youtube-nocookie.com/generate_204?9ZPruw
204 No Content 0 B URL GET HTTP/3 www.youtube-nocookie.com/generate_204?9ZPruw
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?9ZPruw HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Fri, 03 Jan 2025 06:25:22 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
OPTIONS play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL OPTIONS HTTP/3 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 03 Jan 2025 06:25:22 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
OPTIONS play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL OPTIONS HTTP/3 play.google.com/log?format=json&hasfast=true&authuser=0
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
Hash ca0b7e866005f6774d284b9f438ebfd2
53644f5ee3640189bdb223473ba6a2d46606c556
502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 422
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:22 GMT
server: Playlog
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET yt3.ggpht.com/ytc/AIdro_lLjVCcvgJjrY1jPQxeezP0FCD4dL1twguQ6_wJm20yXQ=s68-c-k-c0x00ffffff-no-rj
200 OK 2.1 kB URL GET HTTP/2 yt3.ggpht.com/ytc/AIdro_lLjVCcvgJjrY1jPQxeezP0FCD4dL1twguQ6_wJm20yXQ=s68-c-k-c0x00ffffff-no-rj
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.googleusercontent.com
FingerprintB7:81:DF:88:6A:8E:A6:85:C5:CC:E0:38:BE:A6:D8:AF:B1:92:4E:DF
ValidityMon, 02 Dec 2024 08:36:53 GMT - Mon, 24 Feb 2025 08:36:52 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Picasa], baseline, precision 8, 68x68, components 3
Hash a0d12e256bbaea270ac21abffcd87d4f
99806ec258995075f326426f15bc3c8fa4e4da10
5e0622cb3bd602b067003f5785eb7e8d4e2207c2f85ea797377ec870f67f9d14
GET /ytc/AIdro_lLjVCcvgJjrY1jPQxeezP0FCD4dL1twguQ6_wJm20yXQ=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
cross-origin-resource-policy: cross-origin
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
etag: "v3e"
expires: Sat, 04 Jan 2025 06:25:22 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
date: Fri, 03 Jan 2025 06:25:22 GMT
server: fife
content-length: 2109
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST srm.bf.contentsquare.net/exist?v=15.43.0&pid=11232&pn=1&sn=1&uu=adc1bb90-da7c-a064-9a7d-ee8dfacdb554
200 OK 2 B URL POST HTTP/2 srm.bf.contentsquare.net/exist?v=15.43.0&pid=11232&pn=1&sn=1&uu=adc1bb90-da7c-a064-9a7d-ee8dfacdb554
IP
Certificate IssuerAmazon
Subjectsrm.bf.contentsquare.net
Fingerprint1A:1B:2E:96:81:46:18:A3:3D:D4:CC:00:FB:4B:25:FD:B0:31:B9:82
ValidityMon, 07 Oct 2024 00:00:00 GMT - Wed, 05 Nov 2025 23:59:59 GMT
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
POST /exist?v=15.43.0&pid=11232&pn=1&sn=1&uu=adc1bb90-da7c-a064-9a7d-ee8dfacdb554 HTTP/1.1
Host: srm.bf.contentsquare.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://join.onduo.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 123
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 03 Jan 2025 06:25:23 GMT
content-type: application/json
content-length: 2
access-control-allow-origin: *
X-Firefox-Spdy: h2
POST www.youtube-nocookie.com/youtubei/v1/log_event?alt=json
200 OK 31 B URL POST HTTP/3 www.youtube-nocookie.com/youtubei/v1/log_event?alt=json
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1735885524138
Content-Type: application/json
X-Goog-Visitor-Id: CgtKbExURHlzRzNLZyjRhd67BjIiCgJOTxIcEhgSFhMLFBUWFwwYGRobHB0eHw4PIBAREiEgJw%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20241215.00.00
X-YouTube-Device: cbr=Firefox&cbrver=96.0&ceng=Gecko&cengver=96.0&cos=X11&cplatform=DESKTOP
X-YouTube-Page-CL: 706555921
X-YouTube-Page-Label: youtube.player.web_20241215_00_RC00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1735885521364&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1024%2C576&vis=1&wgl=true&ca_type=image
Content-Length: 7870
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Fri, 03 Jan 2025 06:25:24 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST www.youtube-nocookie.com/youtubei/v1/log_event?alt=json
200 OK 31 B URL POST HTTP/3 www.youtube-nocookie.com/youtubei/v1/log_event?alt=json
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
Hash 5e1fa6fd9abd549a576f3f24b1d3c8d4
d5335d7f7d33be6a0b663f03b2df4df2521c4a87
d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1735885542299
Content-Type: application/json
X-Goog-Visitor-Id: CgtKbExURHlzRzNLZyjRhd67BjIiCgJOTxIcEhgSFhMLFBUWFwwYGRobHB0eHw4PIBAREiEgJw%3D%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20241215.00.00
X-YouTube-Device: cbr=Firefox&cbrver=96.0&ceng=Gecko&cengver=96.0&cos=X11&cplatform=DESKTOP
X-YouTube-Page-CL: 706555921
X-YouTube-Page-Label: youtube.player.web_20241215_00_RC00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1735885521364&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1024%2C576&vis=1&wgl=true&ca_type=image
Content-Length: 1173
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Fri, 03 Jan 2025 06:25:42 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET join.onduo.com/_next/static/chunks/framework-3b5a00d5d7e8d93b.js
200 OK 141 kB URL GET HTTP/3 join.onduo.com/_next/static/chunks/framework-3b5a00d5d7e8d93b.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectjoin.onduo.com
Fingerprint6D:47:FD:11:21:E9:4A:FF:F4:1A:F3:88:72:56:BF:61:A3:61:48:D9
ValidityWed, 11 Dec 2024 17:12:57 GMT - Tue, 11 Mar 2025 17:54:42 GMT
File type JavaScript source, ASCII text, with very long lines (65202)
Size 141 kB (141058 bytes)
Hash 36382145ff03ef62919bc92cbda86429
f3a5c06fd369675f4256a93b26c8d63a84d9c4af
d6b16d4d6f2b70a8e1dfa5855ed23713c2520884fc2731e02cd7560e20fdf4f2
GET /_next/static/chunks/framework-3b5a00d5d7e8d93b.js HTTP/1.1
Host: join.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
last-modified: Thu, 12 Dec 2024 21:38:12 GMT
etag: W/"22702-193bcced5a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:17 GMT
via: 1.1 google
cache-control: public,max-age=7200,immutable
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 18 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 18536, version 1.0
Hash 8eff0b8045fd1959e117f85654ae7770
227fee13ceb7c410b5c0bb8000258b6643cb6255
89978e658e840b927dddb5cb3a835c7d8526ece79933bd9f3096b301fe1a8571
GET /s/roboto/v32/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 18536
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Jan 2025 11:37:11 GMT
expires: Fri, 02 Jan 2026 11:37:11 GMT
cache-control: public, max-age=31536000
age: 67691
last-modified: Thu, 01 Aug 2024 20:41:24 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fonts.googleapis.com/css?family=DM+Serif+Display|Raleway:400,500,500i,600,700,800|Open+Sans:400,500,500i,600,700,800|Material+Icons&display=swap
200 OK 49 kB URL GET HTTP/2 fonts.googleapis.com/css?family=DM+Serif+Display|Raleway:400,500,500i,600,700,800|Open+Sans:400,500,500i,600,700,800|Material+Icons&display=swap
IP
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint30:E5:7E:29:A5:A1:81:DB:C8:A8:49:80:67:40:12:AB:30:C0:34:8D
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type ASCII text, with very long lines (1572)
Hash 437c5c4d72cf31ce723ad3bdc655f489
f904bdb1a8b9cbc10539550a3b689984c08f562c
95df406f646b1ace0ba2eb640cef8923ab7219cf2da47ff38adf2d858a6ae681
GET /css?family=DM+Serif+Display|Raleway:400,500,500i,600,700,800|Open+Sans:400,500,500i,600,700,800|Material+Icons&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Jan 2025 06:25:18 GMT
date: Fri, 03 Jan 2025 06:25:18 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.youtube-nocookie.com/s/player/03dbdfab/www-player.css
200 OK 406 kB URL GET HTTP/3 www.youtube-nocookie.com/s/player/03dbdfab/www-player.css
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.google.com
Fingerprint36:7C:F6:D0:DA:DB:45:E1:80:A6:76:D2:C1:A5:38:1A:0B:8D:99:4E
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
Size 406 kB (405818 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/player/03dbdfab/www-player.css HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 50365
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Dec 2024 08:33:46 GMT
expires: Tue, 30 Dec 2025 08:33:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Dec 2024 05:14:15 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 337895
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET join.onduo.com/_next/static/css/03755d000891bf03.css
200 OK 41 kB URL GET HTTP/3 join.onduo.com/_next/static/css/03755d000891bf03.css
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectjoin.onduo.com
Fingerprint6D:47:FD:11:21:E9:4A:FF:F4:1A:F3:88:72:56:BF:61:A3:61:48:D9
ValidityWed, 11 Dec 2024 17:12:57 GMT - Tue, 11 Mar 2025 17:54:42 GMT
File type ASCII text, with very long lines (41365), with no line terminators
Hash 41d266103ec50a874f428c6b5a3180df
c76d6c0e93b19fe04fb54e9a0f6d6a710798640e
053371846dab2af522e5f51abcf2e16660acd5444b3cea90d519383e042b3c42
GET /_next/static/css/03755d000891bf03.css HTTP/1.1
Host: join.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
last-modified: Thu, 12 Dec 2024 21:38:12 GMT
etag: W/"a195-193bcced5a0"
content-type: text/css; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:17 GMT
via: 1.1 google
cache-control: public,max-age=7200,immutable
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET join.onduo.com/_next/static/chunks/807-aab72e0e1507a3e1.js
200 OK 7.6 kB URL GET HTTP/3 join.onduo.com/_next/static/chunks/807-aab72e0e1507a3e1.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectjoin.onduo.com
Fingerprint6D:47:FD:11:21:E9:4A:FF:F4:1A:F3:88:72:56:BF:61:A3:61:48:D9
ValidityWed, 11 Dec 2024 17:12:57 GMT - Tue, 11 Mar 2025 17:54:42 GMT
File type JavaScript source, ASCII text, with very long lines (7803), with no line terminators
Hash 84de3d49ce49b915c0f63d1ff65ce140
23afb703ecad9de239966323dc30e6c811afe059
43494df4778cc40134df6a024845e254925beac35d2dacbdd2bb843df43a1dde
GET /_next/static/chunks/807-aab72e0e1507a3e1.js HTTP/1.1
Host: join.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
last-modified: Thu, 12 Dec 2024 21:38:12 GMT
etag: W/"1ddc-193bcced5a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:17 GMT
via: 1.1 google
cache-control: public,max-age=7200,immutable
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
Requested by https://www.youtube-nocookie.com/embed/gdfwbSR4hMo?rel=0&enablejsapi=1&origin=https%3A%2F%2Fjoin.onduo.com&widgetid=1
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Dec 2024 18:53:11 GMT
expires: Sat, 27 Dec 2025 18:53:11 GMT
cache-control: public, max-age=31536000
age: 559930
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fonts.googleapis.com/icon?family=Material+Icons
200 OK 565 B URL GET HTTP/3 fonts.googleapis.com/icon?family=Material+Icons
IP
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
Fingerprint30:E5:7E:29:A5:A1:81:DB:C8:A8:49:80:67:40:12:AB:30:C0:34:8D
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type ASCII text, with very long lines (588), with no line terminators
Hash 959a533a3dc02649e0cc3f8f67d942af
34db49ff64aed8b51beaba5b9928ad504a4df335
24864ed3ee6fab66640980d4c24640e579e5583764a8ee8c4f09decf27977247
GET /icon?family=Material+Icons HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Jan 2025 06:25:22 GMT
date: Fri, 03 Jan 2025 06:25:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET join.onduo.com/_next/static/chunks/713-10b33e8ba285df32.js
200 OK 30 kB URL GET HTTP/3 join.onduo.com/_next/static/chunks/713-10b33e8ba285df32.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectjoin.onduo.com
Fingerprint6D:47:FD:11:21:E9:4A:FF:F4:1A:F3:88:72:56:BF:61:A3:61:48:D9
ValidityWed, 11 Dec 2024 17:12:57 GMT - Tue, 11 Mar 2025 17:54:42 GMT
File type JavaScript source, ASCII text, with very long lines (30301), with no line terminators
Hash 7bff2cce676f38dcf6b5932276ec1780
071363eb87dc217bd29ff79f336df78ce8942d5c
da9b1fb00d1a7bdf5d7f048d7810a5693995dc517c27869f8196499190b7f6f1
GET /_next/static/chunks/713-10b33e8ba285df32.js HTTP/1.1
Host: join.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
last-modified: Thu, 12 Dec 2024 21:38:12 GMT
etag: W/"765d-193bcced5a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:17 GMT
via: 1.1 google
cache-control: public,max-age=7200,immutable
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET join.onduo.com/_next/static/chunks/main-fdd8e49045cf4e28.js
200 OK 98 kB URL GET HTTP/3 join.onduo.com/_next/static/chunks/main-fdd8e49045cf4e28.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectjoin.onduo.com
Fingerprint6D:47:FD:11:21:E9:4A:FF:F4:1A:F3:88:72:56:BF:61:A3:61:48:D9
ValidityWed, 11 Dec 2024 17:12:57 GMT - Tue, 11 Mar 2025 17:54:42 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash 74f67ca9d9febc9e333b991e95ff1bdd
5686d23c772dacb1c11a59a406566ebccb9e4bc3
9dced3dae88c5ead634d9b1247674c5adcf0af3e132ac780719522c7210c6c23
GET /_next/static/chunks/main-fdd8e49045cf4e28.js HTTP/1.1
Host: join.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
last-modified: Thu, 12 Dec 2024 21:38:12 GMT
etag: W/"17efc-193bcced5a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:17 GMT
via: 1.1 google
cache-control: public,max-age=7200,immutable
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFd2JQEk.woff2
200 OK 7.8 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFd2JQEk.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint40:A7:D7:D3:7D:FA:BE:34:C0:7E:6F:F7:9F:55:52:22:92:07:C7:EF
ValidityMon, 02 Dec 2024 08:36:58 GMT - Mon, 24 Feb 2025 08:36:57 GMT
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFd2JQEk.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Dec 2024 22:56:07 GMT
expires: Sat, 27 Dec 2025 22:56:07 GMT
cache-control: public, max-age=31536000
age: 545351
last-modified: Wed, 27 Apr 2022 16:10:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET assets.verily.com/m/71cd13ab7c547d1f/original/Favicons.ico
200 OK 0 B URL GET assets.verily.com/m/71cd13ab7c547d1f/original/Favicons.ico
IP
Certificate IssuerAmazon
Subjectverily.bynder.com
Fingerprint00:05:FA:ED:26:39:52:48:24:21:19:0A:D9:6F:60:16:2A:99:E7:07
ValidityFri, 22 Mar 2024 00:00:00 GMT - Sun, 20 Apr 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m/71cd13ab7c547d1f/original/Favicons.ico HTTP/1.1
Host: assets.verily.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/x-icon
date: Thu, 02 Jan 2025 10:47:02 GMT
server: nginx
content-encoding: gzip
cache-control: public, max-age=172800
accept-ranges: bytes
content-disposition: attachment;filename="favicon.ico"
access-control-allow-origin: *
x-api-correlation-id: cf479e3b-76a6-c243-8a42-59335aadcec5
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=63072000; includeSubdomains
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
permissions-policy: camera=(), geolocation=(), microphone=()
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vBq0qsoJ6K8RkziAkvhQ2absTr1ncCcEN9r-CMg2Vsf1c4FgBHfMNg==
age: 70698
X-Firefox-Spdy: h2
GET join.onduo.com/_next/static/chunks/pages/%5B...slug%5D-d356458fd8f4d5fe.js
200 OK 20 kB URL GET HTTP/3 join.onduo.com/_next/static/chunks/pages/%5B...slug%5D-d356458fd8f4d5fe.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectjoin.onduo.com
Fingerprint6D:47:FD:11:21:E9:4A:FF:F4:1A:F3:88:72:56:BF:61:A3:61:48:D9
ValidityWed, 11 Dec 2024 17:12:57 GMT - Tue, 11 Mar 2025 17:54:42 GMT
File type JavaScript source, ASCII text, with very long lines (19520), with no line terminators
Hash f38767f4545862269f0ed568f4771e38
c3dd0717f9730c58f10ab6dcaa8a70eaf577ba26
187ff4c1cb0e3f2ff3335d9572a9dd279ee15518aee155cc478d7add057a2985
GET /_next/static/chunks/pages/%5B...slug%5D-d356458fd8f4d5fe.js HTTP/1.1
Host: join.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
last-modified: Thu, 12 Dec 2024 21:38:12 GMT
etag: W/"4c40-193bcced5a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:17 GMT
via: 1.1 google
cache-control: public,max-age=7200,immutable
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET join.onduo.com/_next/static/5chbGgilud69A6-K92AO0/_buildManifest.js
200 OK 1.0 kB URL GET HTTP/3 join.onduo.com/_next/static/5chbGgilud69A6-K92AO0/_buildManifest.js
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerGoogle Trust Services
Subjectjoin.onduo.com
Fingerprint6D:47:FD:11:21:E9:4A:FF:F4:1A:F3:88:72:56:BF:61:A3:61:48:D9
ValidityWed, 11 Dec 2024 17:12:57 GMT - Tue, 11 Mar 2025 17:54:42 GMT
File type ASCII text, with very long lines (1105), with no line terminators
Hash 90b51305a7bdeb755ac87a7ee262741f
224b9d86c075b2221db22517f4061af1ba56ae8f
0b98c26e893f080306ea02d7e927661b6d646a35e9ba5ad19fc314c05c9f8208
GET /_next/static/5chbGgilud69A6-K92AO0/_buildManifest.js HTTP/1.1
Host: join.onduo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
last-modified: Thu, 12 Dec 2024 21:38:12 GMT
etag: W/"413-193bcced5a0"
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
content-encoding: gzip
date: Fri, 03 Jan 2025 06:25:17 GMT
via: 1.1 google
cache-control: public,max-age=7200,immutable
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST dialogflow.cloud.google.com/v1/integrations/messenger/webhook/3b012c60-d007-4283-a886-fa4c30daae68/sessions/dfMessenger-6030607
200 OK 1.4 kB URL POST HTTP/2 dialogflow.cloud.google.com/v1/integrations/messenger/webhook/3b012c60-d007-4283-a886-fa4c30daae68/sessions/dfMessenger-6030607
IP
Certificate IssuerGoogle Trust Services
Subject*.googlecode.com
FingerprintFE:DB:85:62:DD:28:D5:A7:5A:47:83:BC:F6:69:D6:C1:1F:E1:43:E5
ValidityMon, 02 Dec 2024 08:36:52 GMT - Mon, 24 Feb 2025 08:36:51 GMT
File type ASCII text, with very long lines (1490), with no line terminators
Hash 115e03ce399204aa10fbdfae85b6544e
d04d5133929df571f4b994a7c94c7aa282bea3ed
f80573e2a49577b879d933e36d5f1bff2daac12249c7e630ec1d2ef94cabbbda
POST /v1/integrations/messenger/webhook/3b012c60-d007-4283-a886-fa4c30daae68/sessions/dfMessenger-6030607 HTTP/1.1
Host: dialogflow.cloud.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Content-Length: 63
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-origin: https://join.onduo.com
access-control-allow-credentials: true
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 Jan 2025 06:25:23 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
strict-transport-security: max-age=31536000
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factors=*, ch-ua-platform=*, ch-ua-platform-version=*
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Form-Factors, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /_/DialogflowBotsDialogflowMessengerWebhookService/cspreport, script-src 'nonce-wnQx1Kt_poQ2XZlrIAprZw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/DialogflowBotsDialogflowMessengerWebhookService/cspreport;worker-src 'self', script-src 'unsafe-inline' 'unsafe-eval' blob: data: 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.googletagmanager.com https://www.gstatic.com https://www.google-analytics.com;report-uri /_/DialogflowBotsDialogflowMessengerWebhookService/cspreport/allowlist
cross-origin-opener-policy: same-origin
reporting-endpoints: default="/_/DialogflowBotsDialogflowMessengerWebhookService/web-reports?context=eJzjEtHikmLw15BieO15k8kpfQZrABALcXNcbr23m01gQ_NuNiX1pPzC-JTMxJz89LSc_PKk_JLi4tSistSieCMDIxNDI0MzPQOj-AIDAJKhGKg"
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: NID=520=Ti0zKX-R2hmDfxJJZWXRmUNRI9JfdMxERfX9OH6yukOBWYYCcvnqkMkNRC1nyZJJsTH6F7uTh-xMOg_jwkRsnZKaAYMV_K2Yvk8CM5kCiIfmHshXFHc2Px0KQQ7oc12kN7omfJvovZjaj7K0JHF3W4Yyg0rtHI-3uyJ78zVfmB4pm5UCYo4cg8WHwijOItQONo50Sl_5rsaHF7HK; expires=Sat, 05-Jul-2025 06:25:22 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
OPTIONS dialogflow.cloud.google.com/v1/integrations/messenger/webhook/3b012c60-d007-4283-a886-fa4c30daae68/sessions/dfMessenger-6030607
200 OK 7 B URL OPTIONS HTTP/2 dialogflow.cloud.google.com/v1/integrations/messenger/webhook/3b012c60-d007-4283-a886-fa4c30daae68/sessions/dfMessenger-6030607
IP
Certificate IssuerGoogle Trust Services
Subject*.googlecode.com
FingerprintFE:DB:85:62:DD:28:D5:A7:5A:47:83:BC:F6:69:D6:C1:1F:E1:43:E5
ValidityMon, 02 Dec 2024 08:36:52 GMT - Mon, 24 Feb 2025 08:36:51 GMT
File type ASCII text, with no line terminators
Hash 5f4b8fb04062f3cf6a2721e70ce06768
23da24b3c779d381073384c4558ecd66c4f7280a
eb8abebbf9a7908bc67cc38aa189fcce7050ee109528fe3729b98933fb3d97dd
OPTIONS /v1/integrations/messenger/webhook/3b012c60-d007-4283-a886-fa4c30daae68/sessions/dfMessenger-6030607 HTTP/1.1
Host: dialogflow.cloud.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://join.onduo.com/
Origin: https://join.onduo.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
access-control-allow-origin: https://join.onduo.com
access-control-allow-credentials: true
access-control-allow-methods: GET,POST,PUT,DELETE
access-control-allow-headers: Authorization,Content-Type,Accept,Origin,User-Agent,devMode,DNT,Cache-Control,Keep-AliveX-Requested-With,If-Modified-Since,X-GOOG-ACCESS-TOKEN,X-GOOG-ID-TOKEN
access-control-max-age: 3600
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 03 Jan 2025 06:25:22 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
strict-transport-security: max-age=31536000
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET static.dialogflow.com/common/messenger/webcomponentsjs/2.1.3/webcomponents-loader.js
200 OK 6.2 kB URL GET HTTP/2 static.dialogflow.com/common/messenger/webcomponentsjs/2.1.3/webcomponents-loader.js
IP
Certificate IssuerGoogle Trust Services
Subjectdevsite-sni.developers.google.com
FingerprintF8:F1:73:51:80:71:D6:12:F2:C8:92:25:1D:AA:83:B4:7A:97:CB:32
ValidityMon, 02 Dec 2024 08:35:57 GMT - Mon, 24 Feb 2025 08:35:56 GMT
File type JavaScript source, ASCII text, with very long lines (6339), with no line terminators
Hash 0d1b312b556de9c2fdc717f373a9141f
d452b1681b4263eadc9bd7061a679f883a32053b
d3ea8d0e5be3e0928fb1bd5958eb4ff446fee0bbe2e30d8ffe7a5095a8c3eda1
GET /common/messenger/webcomponentsjs/2.1.3/webcomponents-loader.js HTTP/1.1
Host: static.dialogflow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://join.onduo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/dialogflow-console
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="dialogflow-console"
report-to: {"group":"dialogflow-console","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dialogflow-console"}]}
content-length: 2021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Dec 2024 21:38:39 GMT
expires: Fri, 03 Jan 2025 21:38:39 GMT
cache-control: public, max-age=604800
age: 550001
last-modified: Fri, 26 Oct 2018 00:59:09 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
34.36.16.70
34.249.87.52
96.6.17.25
0.0.0.0
0.0.0.0