r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dca68db7aea32f6683ce8d542c078f04
19c495238df74fca680e21f18627ff94de5dd2e5
35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6431
Expires: Thu, 09 Feb 2023 04:30:52 GMT
Date: Thu, 09 Feb 2023 02:43:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a
cfdba5bc597130461dd67bf6cda53183be592493
60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14323
Expires: Thu, 09 Feb 2023 06:42:24 GMT
Date: Thu, 09 Feb 2023 02:43:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 09 Feb 2023 02:34:15 GMT
content-type: application/json
age: 566
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cc14b0d2f7c451f6431dc87ba54d1d60
bab8bfda6fa3e2f17125353f5147211787dc25d0
b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15911
Expires: Thu, 09 Feb 2023 07:08:52 GMT
Date: Thu, 09 Feb 2023 02:43:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JzZSV7kqHIsdNpzYQ5pfz62NcJKW/UJAxWKdY9OlARv09rtphqeRXtcWIYWE96ARblY9HJ/YzLXD0brrLAY0ig==
x-amz-request-id: HX3JF7VT0T251CW2
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 09 Feb 2023 01:46:11 GMT
age: 3450
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 09 Feb 2023 02:43:41 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 09 Feb 2023 01:51:21 GMT
age: 3140
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
go.avidxchange.com/NTk4LVdWQi0yNDYAAAGJzHA3sGNDNQL4Ffb2CeHYU-VsORxB4aU4A8WMabwGJOZ0qF7uX2aQHlVIoVRsGHJh7tU45EA=
52.184.251.130302 Found 590 B URL HTTP/1.1 go.avidxchange.com/NTk4LVdWQi0yNDYAAAGJzHA3sGNDNQL4Ffb2CeHYU-VsORxB4aU4A8WMabwGJOZ0qF7uX2aQHlVIoVRsGHJh7tU45EA=
IP 52.184.251.130:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 031125d5a4cd0540a101cd3e060fe136
87b1c841c964a5df7d914105b358100d87c8393d
ee7bb78ce53fedf966e5de0fc11b9b4f7f9b2551a357cffff1a223948cb9f8a7
GET /NTk4LVdWQi0yNDYAAAGJzHA3sGNDNQL4Ffb2CeHYU-VsORxB4aU4A8WMabwGJOZ0qF7uX2aQHlVIoVRsGHJh7tU45EA= HTTP/1.1
Host: go.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
x-request-id: f8d7e63d0783f276
cache-control: private, no-cache, no-store, max-age=0
referrer-policy: strict-origin
x-frame-options: SAMEORIGIN
content-security-policy: default-src 'self'; img-src 'self';script-src 'self' 'sha256-YmP/WNeCatDA9z1iYCFJeROb0NJXzc+JhHLYycv5MCs=';object-src 'none';form-action:'none';frame-src:'none'
content-type: text/html;charset=UTF-8
content-length: 590
date: Thu, 09 Feb 2023 02:43:41 GMT
server: adobe
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 248ce16379b12f11927ecc3142aec450
fa5b189f2d9182479170cb61cc1723571e437bd2
a8d259b331bdefb00625b9bf057d44d0b3290fda0734c57eda187b04e23d59d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8D259B331BDEFB00625B9BF057D44D0B3290FDA0734C57EDA187B04E23D59D4"
Last-Modified: Wed, 08 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15665
Expires: Thu, 09 Feb 2023 07:04:46 GMT
Date: Thu, 09 Feb 2023 02:43:41 GMT
Connection: keep-alive
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash b68ab9407aab0518c55b5eef576a96ae
0c94d2bab857f3c6a0afea3ae0f24cac05e65767
db8bcd7c61aba031cd7debe5b68a32f870431f0f48207849da69e79b5493ca49
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 09 Feb 2023 02:43:41 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 22:33:18 GMT
Expires: Thu, 09 Feb 2023 22:33:18 GMT
ETag: "0c94d2bab857f3c6a0afea3ae0f24cac05e65767"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
push.services.mozilla.com/
52.35.120.215101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.35.120.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Fh4NK+JSKkEeNaqCPjnnVQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XKXYQ3JkWbBfczPSFyJJbmLZ4/4=
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash b68ab9407aab0518c55b5eef576a96ae
0c94d2bab857f3c6a0afea3ae0f24cac05e65767
db8bcd7c61aba031cd7debe5b68a32f870431f0f48207849da69e79b5493ca49
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 09 Feb 2023 02:43:42 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 22:33:18 GMT
Expires: Thu, 09 Feb 2023 22:33:18 GMT
ETag: "0c94d2bab857f3c6a0afea3ae0f24cac05e65767"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.avidxchange.com/wp-content/plugins/integration-pods-GKantsios/assets/js/script.js?ver=6.1.1
141.193.213.20200 OK 43 B URL HTTP/2 www.avidxchange.com/wp-content/plugins/integration-pods-GKantsios/assets/js/script.js?ver=6.1.1
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
Hash 2febff85d40718e961ebeb4226485590
9aa16adff78ece49c144c21370a61c6e2bfb9c27
8e3d8602d2b19c5ffc5ebffd0ece24b62557c10596ecadb201a3c8ad8e1fa473
GET /wp-content/plugins/integration-pods-GKantsios/assets/js/script.js?ver=6.1.1 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: application/javascript
content-length: 43
vary: Accept-Encoding, Accept-Encoding
last-modified: Tue, 14 Jul 2020 23:02:47 GMT
etag: "5f0e3997-2b"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 7969424e3a70b4ee-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
141.193.213.20200 OK 13 kB URL HTTP/2 www.avidxchange.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (57726)
Hash 6f600b6238d784d5a2a1d0d34d628093
2f042827453599a4e47a624641589a1771a3460b
2e7571d1cdcc2e0fab5114961c977db4c50c343e1c9788e52b08ac5f332dd34a
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 05 Jan 2023 22:36:26 GMT
etag: W/"63b750ea-e238"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e2a67b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/plugins/integration-pods-GKantsios/assets/js/api-send.js?ver=6.1.1
141.193.213.20200 OK 2.1 kB URL HTTP/2 www.avidxchange.com/wp-content/plugins/integration-pods-GKantsios/assets/js/api-send.js?ver=6.1.1
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
Hash dc613d9455a3f6d2d335a7c22b501e90
30849b39fdf1e921fd7c4c0a0efb649044b1c901
f4a1c52f771adc30d97b5a25ee944d2cc150b7797041f0659b6dbd5baa986907
GET /wp-content/plugins/integration-pods-GKantsios/assets/js/api-send.js?ver=6.1.1 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 14 Jul 2020 23:02:47 GMT
etag: W/"5f0e3997-19ea"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e3a72b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js
142.250.74.164200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash c40fb3e99bdf4c051379206b381f995b
3cf6ce4a866abbd13ce857357061a1cfa3a27690
0c45a6582686059e9d82919355c239be284c5740680f56332419ce0516280183
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 09 Feb 2023 02:43:42 GMT
date: Thu, 09 Feb 2023 02:43:42 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/custom-css-js/24095.css?v=9939
141.193.213.20200 OK 8.9 kB URL HTTP/2 www.avidxchange.com/wp-content/uploads/custom-css-js/24095.css?v=9939
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (387), with CRLF, LF line terminators
Hash a299f6a0189855446fdf330e15768a5d
007fe33ed491b84a9825f9d60d43e9e373e99ddd
aa6ee14acb79aeb73e8b6c864df6cebd01b4a78a715177d2d44013d7f6dcaf50
GET /wp-content/uploads/custom-css-js/24095.css?v=9939 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 23 Feb 2021 19:50:14 GMT
etag: W/"60355c76-c06"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e4a80b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
141.193.213.20200 OK 3.9 kB URL HTTP/2 www.avidxchange.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (489)
Hash b8e1035ab6d320c7a763e1f475ef7f43
3748fba62cd4845294b57f77419a8683b6232cc0
25aafb501ae2e8849acc6b168a953597cc4f85c8d7fa03d4b950658b384a6960
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 05 Jan 2023 22:36:26 GMT
etag: W/"63b750ea-2a3"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e3a6cb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/custom-css-js/24069.css?v=4327
141.193.213.20200 OK 6.1 kB URL HTTP/2 www.avidxchange.com/wp-content/uploads/custom-css-js/24069.css?v=4327
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with CRLF, LF line terminators
Hash 0ec0710f44df8da750627186660320c0
d6c84f2aa42ff554a8e12ae2bec5accd50d62289
813528f2a2f1c4f43356e76158fabc6af5b41b408bd93b98fb78ddb2339327df
GET /wp-content/uploads/custom-css-js/24069.css?v=4327 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 29 Mar 2021 16:57:16 GMT
etag: W/"606206ec-a85"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e4a82b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-MZ32HCS
142.250.74.168200 OK 98 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MZ32HCS
IP 142.250.74.168:0
File type ASCII text, with very long lines (995), with CRLF line terminators
Hash accb634b4557c025447c52d37eeebc58
9b2398a150399acfe1a4e3eb365ea468e9026696
9599dfb07efcacc7f4bbaa55bb4c371df96d74500127f46926410b7ceb2e4a25
GET /gtm.js?id=GTM-MZ32HCS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 09 Feb 2023 02:43:42 GMT
expires: Thu, 09 Feb 2023 02:43:42 GMT
cache-control: private, max-age=900
last-modified: Thu, 09 Feb 2023 00:33:39 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 96550
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/custom-css-js/24085.css?v=1555
141.193.213.20200 OK 12 kB URL HTTP/2 www.avidxchange.com/wp-content/uploads/custom-css-js/24085.css?v=1555
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (443), with CRLF, LF line terminators
Hash 43de616216d1af88ce9fb1c367eb2146
bd5799a5bb9974667163698808ccc81896067c4d
f80f7cfbf1db08bf9721c552f546d02f70010c5c6a0be2141eba17a0fa84def8
GET /wp-content/uploads/custom-css-js/24085.css?v=1555 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 01 Apr 2021 21:04:16 GMT
etag: W/"60663550-128c"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e4a81b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/elementor/css/post-28526.css?ver=1673016453
141.193.213.20200 OK 82 kB URL HTTP/2 www.avidxchange.com/wp-content/uploads/elementor/css/post-28526.css?ver=1673016453
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (2944), with no line terminators
Hash 03000712c51dc599d10f0ca2ad742f9f
35cf8cc3fe2bacc7a7abde529e96743ace14b3ed
e1cd026708e72f31a819b0a82cd3ba908ead49d76d954e14e1331acd6d8e3e5e
GET /wp-content/uploads/elementor/css/post-28526.css?ver=1673016453 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 06 Jan 2023 14:47:33 GMT
etag: W/"63b83485-b80"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e2a61b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/custom-css-js/23706.js?v=7936
141.193.213.20200 OK 2.0 kB URL HTTP/2 www.avidxchange.com/wp-content/uploads/custom-css-js/23706.js?v=7936
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with CRLF, LF line terminators
Hash 054989747c6072b15385061f12269f80
3a1ee38f1d0516781641d0835a6f96f95c111084
f2570633c07b68d426ba40dc975ff429bebcb0dee367b06f71308c5cca1e6dc8
GET /wp-content/uploads/custom-css-js/23706.js?v=7936 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 26 Jan 2021 15:45:33 GMT
etag: W/"6010391d-c18"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e7a97b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e7ff49da2d645cb68d957218e4cf62a8
254ae18b89619cb477257b43e345c5f4f6ef0f4d
4e20c785d4c2b7abd3539378c5c368fcad4af03f672f3408d2cfc23819dd97a5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=136750
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:43 GMT
Etag: "63e3d10d-1d7"
Expires: Fri, 10 Feb 2023 16:42:53 GMT
Last-Modified: Wed, 08 Feb 2023 16:42:53 GMT
Server: nginx
Content-Length: 471
home-c52.nice-incontact.com/inContact/ChatClient/js/embed.min.js
50.112.182.136200 OK 3.2 kB URL HTTP/1.1 home-c52.nice-incontact.com/inContact/ChatClient/js/embed.min.js
IP 50.112.182.136:0
File type ASCII text, with very long lines (13116)
Hash 9a2f4e074c562760a7ef0e414a0b5c89
a7956dbae06533dce18420fc8fd3ccb4ba5aa07d
07cecd698aefed5f88018be75dad8d640e5f2c69a9debb58a635e12cc674b4f5
GET /inContact/ChatClient/js/embed.min.js HTTP/1.1
Host: home-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:43 GMT
Content-Type: application/javascript
Content-Length: 3182
Connection: keep-alive
Set-Cookie: AWSALB=Lw0xo87ggG8YhQHrMQ4UBwDCbz2fQohYIBukiuIvmbCdZKTjMf3VcgO2Op+52DN3tGax/JtQ62uRhhca7L7mt7BHbb/J+V2izq3Ow0aOp/QCYrbKgwk+rtfEv00G; Expires=Thu, 16 Feb 2023 02:43:43 GMT; Path=/
AWSALBCORS=Lw0xo87ggG8YhQHrMQ4UBwDCbz2fQohYIBukiuIvmbCdZKTjMf3VcgO2Op+52DN3tGax/JtQ62uRhhca7L7mt7BHbb/J+V2izq3Ow0aOp/QCYrbKgwk+rtfEv00G; Expires=Thu, 16 Feb 2023 02:43:43 GMT; Path=/; SameSite=None; Secure
Content-Encoding: gzip
Last-Modified: Sat, 10 Sep 2022 15:15:58 GMT
Accept-Ranges: bytes
ETag: "08b9a3a28c5d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
www.avidxchange.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
141.193.213.20200 OK 34 kB URL HTTP/2 www.avidxchange.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (65447)
Hash 3aec23d4b962310491f5ff38c0b4f306
072bba5b52de049b9d56dd28f9fafacf6cbb1bc5
4267cd6c074542c992b9a43c98fea90dbfbb2bb27b64add5078a15dcc9c9d21d
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 08 Dec 2022 22:53:20 GMT
etag: W/"63926ae0-15e54"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e3a6eb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/elementor/css/post-27037.css?ver=1673364771
141.193.213.20200 OK 153 kB URL HTTP/2 www.avidxchange.com/wp-content/uploads/elementor/css/post-27037.css?ver=1673364771
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (4405), with CRLF, LF line terminators
Size 153 kB (152722 bytes)
Hash e6c090f7c430ba8579f78c96d7fd7271
41ce49958baf883129089aab67c5040e41badb6d
46c54775ab6861850a45962a80e85b3cd45d824e75fc7261384b044f11aafda5
GET /wp-content/uploads/elementor/css/post-27037.css?ver=1673364771 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 10 Jan 2023 15:32:51 GMT
etag: W/"63bd8523-9845"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e2a63b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/elementor/css/custom-frontend.min.css?ver=1673016455
141.193.213.20200 OK 97 kB URL HTTP/2 www.avidxchange.com/wp-content/uploads/elementor/css/custom-frontend.min.css?ver=1673016455
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (65536), with no line terminators
Hash dc4c75452e4f4da2f8d63c2cfaee05be
4c7b861bb4632d6c4804826ddec963f29813f4e4
8076fa3eac3f3158da51009d767f579fbdffec303eb3b4fa1535796013f5b85b
GET /wp-content/uploads/elementor/css/custom-frontend.min.css?ver=1673016455 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 06 Jan 2023 14:47:35 GMT
etag: W/"63b83487-21af2"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e1a55b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
141.193.213.20200 OK 210 kB URL HTTP/2 www.avidxchange.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (47826)
Size 210 kB (210451 bytes)
Hash 4ce9bef38fdcd000ecd6cd28d5d41afa
b601f305b5eced61464ff121d329d734706fe722
b3c3824855bc2232fc5178a01f32476825436d5f371b4752bfb119b13cf69d34
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 08 Dec 2022 22:53:05 GMT
etag: W/"63926ad1-172a9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e0a44b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4763
Expires: Thu, 09 Feb 2023 04:03:06 GMT
Date: Thu, 09 Feb 2023 02:43:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4763
Expires: Thu, 09 Feb 2023 04:03:06 GMT
Date: Thu, 09 Feb 2023 02:43:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4763
Expires: Thu, 09 Feb 2023 04:03:06 GMT
Date: Thu, 09 Feb 2023 02:43:43 GMT
Connection: keep-alive
www.avidxchange.com/wp-content/plugins/wp-smush-pro/app/assets/js/smush-lazy-load.min.js?ver=3.12.3
141.193.213.20200 OK 15 kB URL HTTP/2 www.avidxchange.com/wp-content/plugins/wp-smush-pro/app/assets/js/smush-lazy-load.min.js?ver=3.12.3
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (7874)
Hash 5d580d5142d4a79e94f74c5e0bb8c1f7
5c8ad14205febf7be5c3475b9ddd909441d4931a
2b1d54b7e52e8a1d94524fd7501424c8b7d3c29b62d902a0f71fa3276d261bfc
GET /wp-content/plugins/wp-smush-pro/app/assets/js/smush-lazy-load.min.js?ver=3.12.3 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 08 Dec 2022 23:02:25 GMT
etag: W/"63926d01-1ef2"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e3a74b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4763
Expires: Thu, 09 Feb 2023 04:03:06 GMT
Date: Thu, 09 Feb 2023 02:43:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 1d885cfc22a04f1216c98dd64df5338a
589916a844b81fac40af88a772865b8e28dfb64e
40c0e55533794d72bbba4bc9d0f07fe0741e24ca23fd9b3e31d2830c77a51bf3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "40C0E55533794D72BBBA4BC9D0F07FE0741E24CA23FD9B3E31D2830C77A51BF3"
Last-Modified: Wed, 08 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4763
Expires: Thu, 09 Feb 2023 04:03:06 GMT
Date: Thu, 09 Feb 2023 02:43:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 95081172f8e19d19921acc802488e019
8531c150cb11de44361a95624b11cf46b9e0ba02
7a2d8f012c7d590f3f39ad834d4f3f9fb729143b7395bc588bd608b5bdee039b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff8db31dc-3366-48e5-8c4b-ebe994dd40ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15019
x-amzn-requestid: 574e3e2c-2fbe-4215-9500-021147338832
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f583LHiioAMFqkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a82d-4f12aac524c39f822ca4f422;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:11:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _3jIo3Giw3zmTmnSkJArAllT6uigN7EEzLPfkGpd6168_mSdqdk_Cg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 12:41:28 GMT
age: 50535
etag: "8531c150cb11de44361a95624b11cf46b9e0ba02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9b1dd9f-46ec-46f2-834f-c34f99ef0176.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9b1dd9f-46ec-46f2-834f-c34f99ef0176.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 087325c404f5b0b8e1bc800c167d6213
da37e1568089cf3536a8fe8304623694b7897326
a21b9844ebaac9fb408fc4d557badfbff0715cee7b5f3c8b9c628cdd1286dbe6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9b1dd9f-46ec-46f2-834f-c34f99ef0176.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4928
x-amzn-requestid: 2d81ff60-65c6-4a7d-86d5-8853a961be0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fwDm6GoOIAMF6Bw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dcb2f8-5acf67171c4b3ee87794ea02;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 07:08:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: udtvUr0tqVtI70L8glPQK3ePowPGstiizC9tb6U4kQg0JzsLqViUIg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:45:54 GMT
age: 17869
etag: "da37e1568089cf3536a8fe8304623694b7897326"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/plugins/ultimate-elementor/assets/min-css/uael-frontend.min.css?ver=1.36.14
141.193.213.20200 OK 75 kB URL HTTP/2 www.avidxchange.com/wp-content/plugins/ultimate-elementor/assets/min-css/uael-frontend.min.css?ver=1.36.14
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6bbea8cf8ee33b2e3c179697e3ddcda0
33f99275a1310ff493fc9ffcd294d660f7a6841e
9477bec65c12a6623bbcd97113545b6e25a87af5aa1117577169ffda056defa3
GET /wp-content/plugins/ultimate-elementor/assets/min-css/uael-frontend.min.css?ver=1.36.14 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 06 Jan 2023 15:02:49 GMT
etag: W/"63b83819-99b9a"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e2a5eb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10fd2f55fa0cfb8616ded6ddc2bb511a
996ed68f1b9770a19a97f6c8d359e338b8c8b3ca
e552d31a5e531386b9830bb58486f09bfcb3400676f726f93fdbea08336a09da
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F049f3f10-52dc-41ec-990c-719ee36485c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3599
x-amzn-requestid: 658f8678-b67d-4f98-b728-cf9cbad3aa86
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ABI38GUpIAMFY0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e38832-2ab19d0f2345fc7515775298;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 11:32:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d8ZayLRkBd16PmZsswU0N4ZLVFphVFlgPRloMdqF_U6WMcyvZptmpA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:45:46 GMT
etag: "996ed68f1b9770a19a97f6c8d359e338b8c8b3ca"
content-type: image/jpeg
age: 17877
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.14200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.14:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 09 Feb 2023 01:45:20 GMT
expires: Thu, 09 Feb 2023 03:45:20 GMT
cache-control: public, max-age=7200
age: 3503
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9614e0f-1b62-40ec-b140-9464c5527d5e.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9614e0f-1b62-40ec-b140-9464c5527d5e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 403cadd5f6beb14f5d2a4dd9eafc68d3
4724b4929c1afcc134ead274238725e4ce729b26
13d7b7ca88de8341e3ec835a5a7d8c79bc50a136aff8eb90aa3c2267f3e8cc08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9614e0f-1b62-40ec-b140-9464c5527d5e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5241
x-amzn-requestid: 3ffb8a54-178e-4574-9662-8dc7696203fd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ACiy0FOqIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e41811-26219fa14a85f6e81e4cf129;Sampled=0
x-amzn-remapped-date: Wed, 08 Feb 2023 21:45:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8U_d5u2rtXAyLLBhRZ3BbQkFOc5gxZIPhnyL5XOvjGV6-8KqWyn8FQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:45:53 GMT
etag: "4724b4929c1afcc134ead274238725e4ce729b26"
content-type: image/jpeg
age: 17870
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F844d5320-b850-4dd9-87c4-2b4f17eb895e.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F844d5320-b850-4dd9-87c4-2b4f17eb895e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 82ed633b05ccadc8b87e83413641f1ef
aafed39990cf6a3391d53355085d816167a500fa
c9202e36b231d0a9a9cba1ff8f570e5b0fbba215eb6b28e3989fd442ee7f5835
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F844d5320-b850-4dd9-87c4-2b4f17eb895e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8717
x-amzn-requestid: dbb8b5a2-d3f6-42e2-8778-da19de081cb8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f2c0LHaiIAMF5cA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63df41b4-309b6b1f651f68453dd52f55;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 05:42:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hBfl0rPzn_iOD9xRlc236_IEvyGlK5WteH1y4cd0aYxlFzd3RVfgkQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 21:34:46 GMT
age: 18537
etag: "aafed39990cf6a3391d53355085d816167a500fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ce710ab5746832fe637fada3e6d63abf
d545c85d4a8cf92dc8b88db0a056623d1ef7a943
40bae4a2fb9dd60e9339d15ad0838f3ca83b5b6275c35cd22878b6783fcd6247
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac74c9c-b95e-40f4-a5ca-7180c40cc241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7450
x-amzn-requestid: c3dabd4b-797b-4bbe-8824-5f502ff477b0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2aG-IoAMFfnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf5-68de905b2ed5bfe46a87e688;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CsMWJP4A64pbv9jhvJkyNF2SU7gQEIkQ5xWBlSVSlGjlfz9O0dkPGQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 03:38:47 GMT
age: 83096
etag: "d545c85d4a8cf92dc8b88db0a056623d1ef7a943"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/elementor/css/post-3.css?ver=1675182248
141.193.213.20200 OK 12 kB URL HTTP/2 www.avidxchange.com/wp-content/uploads/elementor/css/post-3.css?ver=1675182248
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (2754), with no line terminators
Hash da3a97e55a9f561344021bded4cc0644
5a30420e9811fd2261af1893b40981e42c0fac2d
10b2f3f4fc1452121806123afb114547c565ec883a4b849cc7b077374fad8561
GET /wp-content/uploads/elementor/css/post-3.css?ver=1675182248 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 31 Jan 2023 16:24:08 GMT
etag: W/"63d940a8-ac2"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e2a60b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j99&a=1940373674&t=pageview&_s=1&dl=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&dr=http%3A%2F%2Fgo.avidxchange.com%2F&ul=en-us&de=UTF-8&dt=Privacy%20Policy%20%7C%20AvidXchange&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YCDACEABBAAAACAAI~&jid=1063935168&gjid=22088219&cid=244140512.1675910680&tid=UA-154602368-1&_gid=1540387607.1675910681&_r=1&_slc=1>m=45He3280n81MZ32HCS&z=515540046
142.250.74.14200 OK 4 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1940373674&t=pageview&_s=1&dl=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&dr=http%3A%2F%2Fgo.avidxchange.com%2F&ul=en-us&de=UTF-8&dt=Privacy%20Policy%20%7C%20AvidXchange&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YCDACEABBAAAACAAI~&jid=1063935168&gjid=22088219&cid=244140512.1675910680&tid=UA-154602368-1&_gid=1540387607.1675910681&_r=1&_slc=1>m=45He3280n81MZ32HCS&z=515540046
IP 142.250.74.14:0
File type ASCII text, with no line terminators
Hash 9e92e190700c1af4539b40c2171320a9
209bcdb79e6067b51091ce8586d4b977f25b67d8
aec60bc104db041b1512185839f18f52986df7e569e5445f740dd60f763fbca8
POST /j/collect?v=1&_v=j99&a=1940373674&t=pageview&_s=1&dl=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&dr=http%3A%2F%2Fgo.avidxchange.com%2F&ul=en-us&de=UTF-8&dt=Privacy%20Policy%20%7C%20AvidXchange&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YCDACEABBAAAACAAI~&jid=1063935168&gjid=22088219&cid=244140512.1675910680&tid=UA-154602368-1&_gid=1540387607.1675910681&_r=1&_slc=1>m=45He3280n81MZ32HCS&z=515540046 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Content-Type: text/plain
Content-Length: 0
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.avidxchange.com
date: Thu, 09 Feb 2023 02:43:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
151.101.244.157200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP 151.101.244.157:0
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Thu, 09 Feb 2023 02:43:43 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-hel1410031-HEL
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.analytics.google.com/g/collect?v=2&tid=G-MDYQXL37VP>m=45je3280&_p=1940373674&_gaz=1&cid=244140512.1675910680&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675910680&sct=1&seg=0&dl=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&dr=http%3A%2F%2Fgo.avidxchange.com%2F&dt=Privacy%20Policy%20%7C%20AvidXchange&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-MDYQXL37VP>m=45je3280&_p=1940373674&_gaz=1&cid=244140512.1675910680&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675910680&sct=1&seg=0&dl=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&dr=http%3A%2F%2Fgo.avidxchange.com%2F&dt=Privacy%20Policy%20%7C%20AvidXchange&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MDYQXL37VP>m=45je3280&_p=1940373674&_gaz=1&cid=244140512.1675910680&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675910680&sct=1&seg=0&dl=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&dr=http%3A%2F%2Fgo.avidxchange.com%2F&dt=Privacy%20Policy%20%7C%20AvidXchange&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.avidxchange.com
date: Thu, 09 Feb 2023 02:43:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
142.250.74.35200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js
IP 142.250.74.35:0
File type ASCII text, with very long lines (633)
Size 164 kB (163841 bytes)
Hash fe98364486b3206867b17008f995646f
35a5e9aa210970f7abd718d99e629c6982a3cc02
1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 08:53:11 GMT
expires: Wed, 07 Feb 2024 08:53:11 GMT
cache-control: public, max-age=31536000
age: 150632
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/976644552/?random=1675910679983&cv=11&fst=1675910679983&bg=ffffff&guid=ON&async=1>m=45He3280&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&ref=http%3A%2F%2Fgo.avidxchange.com%2F&tiba=Privacy%20Policy%20%7C%20AvidXchange&auid=486116906.1675910680&rfmt=3&fmt=4
142.250.74.162200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/976644552/?random=1675910679983&cv=11&fst=1675910679983&bg=ffffff&guid=ON&async=1>m=45He3280&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&ref=http%3A%2F%2Fgo.avidxchange.com%2F&tiba=Privacy%20Policy%20%7C%20AvidXchange&auid=486116906.1675910680&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (2365), with no line terminators
Hash dc00584ddc7a5d3f09c1978f5f61a795
9783e2d1b89faa40116fc0093ffd7f202efc123b
998a4839451529333c1b98694f922619a8607c50017f4b60db9e74223ceac1ff
GET /pagead/viewthroughconversion/976644552/?random=1675910679983&cv=11&fst=1675910679983&bg=ffffff&guid=ON&async=1>m=45He3280&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&ref=http%3A%2F%2Fgo.avidxchange.com%2F&tiba=Privacy%20Policy%20%7C%20AvidXchange&auid=486116906.1675910680&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 09 Feb 2023 02:43:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1057
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 09-Feb-2023 02:58:43 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-MDYQXL37VP&cid=244140512.1675910680>m=45je3280&aip=1&z=1413943757
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-MDYQXL37VP&cid=244140512.1675910680>m=45je3280&aip=1&z=1413943757
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-MDYQXL37VP&cid=244140512.1675910680>m=45je3280&aip=1&z=1413943757 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 09 Feb 2023 02:43:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
home-c52.nice-incontact.com/inContact/ChatClient/js/chatClient-v2.js
50.112.182.136200 OK 525 B URL HTTP/1.1 home-c52.nice-incontact.com/inContact/ChatClient/js/chatClient-v2.js
IP 50.112.182.136:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 04fa6cd5bee7a35b84107439b36a0cf0
c613fe691407516949ae6b0383cc04ef63175e09
5f846c0a4fe1408346c72bed180facaebd2c38f68465980539c50d636ab0811d
GET /inContact/ChatClient/js/chatClient-v2.js HTTP/1.1
Host: home-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/inContact/ChatClient/ChatClient.aspx?poc=8889afa5-797d-4d32-b1be-be5914175c53&bu=4603652
Cookie: AWSALBCORS=VBO1Q0la5Ru93H87c3CkYoVkMDTw8ewh43/AWP3pxOWH9+MAjwBCS1EVXijhpv2jtwEgt3C7I+x+C1faTArqYrxCIYl+slohCQEBloHRn4hQsisZaVvoJLut7inz; ASP.NET_SessionId=qwen2o5oyie0jwhuw22fmkaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:43 GMT
Content-Type: application/javascript
Content-Length: 525
Connection: keep-alive
Set-Cookie: AWSALB=U0o/A2P75woVONmKG1on6tny4L6lp0sUwfeSmFgSNwrBPbWF0s5neNjZd3g9yv9SZy0pxBfYCZYivPlkFymqNzrp2eW5yjG9wDJx275z7kx7a2rJQ53igGM9SLOl; Expires=Thu, 16 Feb 2023 02:43:43 GMT; Path=/
AWSALBCORS=U0o/A2P75woVONmKG1on6tny4L6lp0sUwfeSmFgSNwrBPbWF0s5neNjZd3g9yv9SZy0pxBfYCZYivPlkFymqNzrp2eW5yjG9wDJx275z7kx7a2rJQ53igGM9SLOl; Expires=Thu, 16 Feb 2023 02:43:43 GMT; Path=/; SameSite=None; Secure
Content-Encoding: gzip
Last-Modified: Wed, 11 Jan 2023 20:30:16 GMT
Accept-Ranges: bytes
ETag: "03ca883fb25d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
stats.g.doubleclick.net/g/collect?v=2&tid=G-MDYQXL37VP&cid=244140512.1675910680>m=45je3280&aip=1
74.125.205.154204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-MDYQXL37VP&cid=244140512.1675910680>m=45je3280&aip=1
IP 74.125.205.154:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-MDYQXL37VP&cid=244140512.1675910680>m=45je3280&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.avidxchange.com
date: Thu, 09 Feb 2023 02:43:43 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=435625&time=1675910680782&url=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=435625&time=1675910680782&url=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=435625&time=1675910680782&url=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D435625%26time%3D1675910680782%26url%3Dhttps%253A%252F%252Fwww.avidxchange.com%252Fprivacy-policy%252F%253Futm_source%253DFooter%2526utm_medium%253Demail%2526utm_campaign%253DBPTemplate%2526mkt_tok%253DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQK2Gpj9Sey_bwAAAYY0DrImZTkQ0DIjoEfd60f3QDNv7XxDbkH4kPu-m4GDK3qvRVBr-G9i8LN2Cg; Max-Age=2592000; Expires=Sat, 11 Mar 2023 02:43:43 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQINxtF2ubor5QAAAYY0DrImQCdSAHdD2fS8aURL0VfdB7Z6_Q2nmwZ6ntSR2iO3pKHIVFK5QWLBGG_USjvpKQ; Max-Age=2592000; Expires=Sat, 11 Mar 2023 02:43:43 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
bcookie="v=2&e5086a61-f2b7-4fa6-87e8-96130a99adb4"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 09-Feb-2024 02:43:43 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675910623:t=1675997023:v=2:sig=AQHMaS0nP0YmFVix_kuV6Vo9q6ClAC4f"; Expires=Fri, 10 Feb 2023 02:43:43 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAX0O1lnyOPgOsfy+cuW9Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 661DF2BE83C0427C82DCBC564B76DC92 Ref B: OSL30EDGE0108 Ref C: 2023-02-09T02:43:43Z
date: Thu, 09 Feb 2023 02:43:43 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 472 B IP 142.250.74.163:0
Hash 50ca5deab68ba881743e691a693819f1
fd6b74d17a961f751a8edf09fcfaab273f0a7408
139c5ed1fd10f67669a5de174c5ffb02411f96463217781882c9d22b050a02d8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fast.wistia.net/assets/external/E-v1.js
151.101.2.110200 OK 117 kB URL HTTP/2 fast.wistia.net/assets/external/E-v1.js
IP 151.101.2.110:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 117 kB (117136 bytes)
Hash fc89ffe0198b91376ce414e96299247e
35f7226b873021676b37ce8cae961c0c050f7ccd
d9f2c376181b5bb0a98f1c6e813d906ae4c9328533000bb8e039516c217cfa37
GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
content-type: application/javascript
etag: "63e15678-1c990"
last-modified: Mon, 06 Feb 2023 19:35:20 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 09 Feb 2023 02:43:43 GMT
age: 1624
x-served-by: cache-iad-kjyo7100164-IAD, cache-bma1678-BMA
x-cache: HIT, HIT
x-cache-hits: 40, 10
x-timer: S1675910624.834975,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 117136
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 986afab4bad851da3c4a2b8db670c876
c58b7142ce3bebda918b77649973715dbd71b4d2
24e4025e6576d86e781fd0861a0a87338b7b5d52b9e559ae76ca52755cc3a865
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash 72226fa2f9513f894889fa652cb2a8bf
8a1b4f108db687c34b334a94e6d931544fd7508e
a70034db82d42d5deb58f551cb4de47a5cf6b226dbc9aa98892adb62c2f73289
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.adsrvr.org/up_loader.1.1.0.js
54.230.241.118200 OK 1.9 kB URL HTTP/1.1 js.adsrvr.org/up_loader.1.1.0.js
IP 54.230.241.118:0
File type ASCII text, with very long lines (4593), with no line terminators
Hash 8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b
GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 08 Feb 2023 07:31:39 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: jb--7JlUc82rNWGUlPr_b-1oBWGFno5vpPpuZg8AzPJR89Z-zEhVWw==
Age: 69125
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 59274586b00249f3cbd2ff5dc9071563
76b59ad65277082e1811d339bf03d953037e0a25
7e6c2cd14a5c882d4a742f80bc48f2c9704ea2ca12e2e98f9f144ce230450eb0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2761
Cache-Control: max-age=137730
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:43 GMT
Etag: "63e3ca18-117"
Expires: Fri, 10 Feb 2023 16:59:13 GMT
Last-Modified: Wed, 08 Feb 2023 16:13:12 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 279
www.avidxchange.com/wp-content/uploads/elementor/css/post-63.css?ver=1673965070
141.193.213.20200 OK 4.8 kB URL HTTP/2 www.avidxchange.com/wp-content/uploads/elementor/css/post-63.css?ver=1673965070
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type ASCII text, with very long lines (19413)
Hash 82c7b2b681cf4aa57cee6053a025877c
eeb1e47a67b438c9073bb674ec31194d035276d9
c0b416dbcd23bda777fc358846fc5e21addd21c2087b36dea0eb3a136d5a95e9
GET /wp-content/uploads/elementor/css/post-63.css?ver=1673965070 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 17 Jan 2023 14:17:50 GMT
etag: W/"63c6ae0e-4d82"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e2a66b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.bizible.com/scripts/bizible.js
152.195.15.58200 OK 32 kB URL HTTP/2 cdn.bizible.com/scripts/bizible.js
IP 152.195.15.58:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (576)
Hash e70053baf1a9d29cb5a92f832a661aef
dfe4925ab9fdb1aae34a79d02445f6c906cfd5d4
e0f3265612683775867be712cbb49c0a6483f73193cd64bac43ca6a125a3c79a
GET /scripts/bizible.js HTTP/1.1
Host: cdn.bizible.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
age: 13023
cache-control: max-age=86400
content-type: application/x-javascript
date: Thu, 09 Feb 2023 02:43:43 GMT
etag: "b7977df2038d91:0"
last-modified: Fri, 03 Feb 2023 22:43:01 GMT
server: ECS (ska/F711)
vary: Accept-Encoding
x-cache: HIT
content-length: 32327
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.163200 OK 471 B IP 142.250.74.163:0
Hash a746d459d4fbc7da99072462ed09b456
6ca7c899101b7ddcc1228f148cdcf16113a805f7
cbed8854f94d225ec82298e5039b9c163f58f9fede0db72510d22867003cb4a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5f1c5a1eb5020a66318a3faf58f15f08
7978debf58d7cbb15bc59ce3371a1ef82105f494
752c1e03b8f2be16f9714b4dcab5c27f344c874283a13b78e7b7a2549c465a6b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:43 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 06 Feb 2023 22:24:04 GMT
Expires: Mon, 13 Feb 2023 22:24:03 GMT
Etag: "7978debf58d7cbb15bc59ce3371a1ef82105f494"
Cache-Control: max-age=415819,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 796942578a77b4ff-OSL
home-c52.nice-incontact.com/inContact/ChatClient/index.html
50.112.182.136200 OK 1.3 kB URL HTTP/1.1 home-c52.nice-incontact.com/inContact/ChatClient/index.html
IP 50.112.182.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash ae36fe966cb5220d38263bb0160037d9
00c174cbe5dd89ca8ed37507088454e5308ad2e5
2ba7ae1a025b55a15814299087e76a0bedacd40b202fdae6510e1e6af694757d
GET /inContact/ChatClient/index.html HTTP/1.1
Host: home-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/inContact/ChatClient/ChatClient.aspx?poc=8889afa5-797d-4d32-b1be-be5914175c53&bu=4603652
Cookie: AWSALBCORS=U0o/A2P75woVONmKG1on6tny4L6lp0sUwfeSmFgSNwrBPbWF0s5neNjZd3g9yv9SZy0pxBfYCZYivPlkFymqNzrp2eW5yjG9wDJx275z7kx7a2rJQ53igGM9SLOl; ASP.NET_SessionId=qwen2o5oyie0jwhuw22fmkaf
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:43 GMT
Content-Type: text/html
Content-Length: 1273
Connection: keep-alive
Set-Cookie: AWSALB=13M6mGJgH7kkBLSbNhLs2eckP6jQEk5pX4E1ssGaGpe/7aJ7eQVRxdnCvjBl2uLKrtxjjvWkyJhvBgRTd5ahqW0ZxtpGF7mJN5SWyoNissJBAKObIXqh6nsfmDT5; Expires=Thu, 16 Feb 2023 02:43:43 GMT; Path=/
AWSALBCORS=13M6mGJgH7kkBLSbNhLs2eckP6jQEk5pX4E1ssGaGpe/7aJ7eQVRxdnCvjBl2uLKrtxjjvWkyJhvBgRTd5ahqW0ZxtpGF7mJN5SWyoNissJBAKObIXqh6nsfmDT5; Expires=Thu, 16 Feb 2023 02:43:43 GMT; Path=/; SameSite=None; Secure
Content-Encoding: gzip
Last-Modified: Sat, 10 Sep 2022 15:12:10 GMT
Accept-Ranges: bytes
ETag: "081b4b227c5d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
54.230.111.85200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-e031119f9e9e307a08fa610f85dbfb52.html
IP 54.230.111.85:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash 112fdf47cdb80b9ce3d033ed09717460
3898efa86cbf1b64dc41a90a110ed5afd6f2ae13
3bfb2e882091d872eece2eee40084183a5fcb0a7ed98c1b004850751260a4cbb
GET /box-e031119f9e9e307a08fa610f85dbfb52.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
accept-ranges: bytes
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
last-modified: Fri, 03 Feb 2023 13:09:45 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
date: Fri, 03 Feb 2023 13:46:47 GMT
cache-control: max-age=31536000
etag: "112fdf47cdb80b9ce3d033ed09717460"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LNmvXTE6nteHmM-o4uBa85vC3LeLICB1QhwOhlsE_ZcgO9Wtygp-mw==
age: 480818
X-Firefox-Spdy: h2
home-c52.nice-incontact.com/inContact/ChatClient/styles/themes/inContact/screen.css
50.112.182.136200 OK 7.8 kB URL HTTP/1.1 home-c52.nice-incontact.com/inContact/ChatClient/styles/themes/inContact/screen.css
IP 50.112.182.136:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (44248)
Hash 9eb60a41531099605cc17b6668845a83
86ca2aedd4ec3d5a148d665df5304c4ce7dc54d1
b5cf18733a3524baf76c36ac72cbffe8aad27a19d6e12a1ff93e5792aaad3808
GET /inContact/ChatClient/styles/themes/inContact/screen.css HTTP/1.1
Host: home-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/inContact/ChatClient/chatButton.html
Cookie: AWSALBCORS=YXrPnMnLcZEAmyJYefRAF1PnCfq/d4ycvKyVmD7AjD1Q747GpQi/hLBreqWpnrjo7vDqrV5nYbg7bd5SQnMLDSvQcN1rga5XKMocS+rLY+IeVX4QOUNqGqAePaMs; ASP.NET_SessionId=qwen2o5oyie0jwhuw22fmkaf
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:44 GMT
Content-Type: text/css
Content-Length: 7767
Connection: keep-alive
Set-Cookie: AWSALB=fiMlPx36CkLxgTzD7XgN25bKkl1OKFYgHv6yUPkja9N69364tyXMMJapjgP3noi+giG0ETD/2luU7DzqBDj41x9/EXA3/TjL5g5P4G6iKPqchhvb/Dn4Hs5PEsdr; Expires=Thu, 16 Feb 2023 02:43:43 GMT; Path=/
AWSALBCORS=fiMlPx36CkLxgTzD7XgN25bKkl1OKFYgHv6yUPkja9N69364tyXMMJapjgP3noi+giG0ETD/2luU7DzqBDj41x9/EXA3/TjL5g5P4G6iKPqchhvb/Dn4Hs5PEsdr; Expires=Thu, 16 Feb 2023 02:43:43 GMT; Path=/; SameSite=None; Secure
Content-Encoding: gzip
Last-Modified: Sat, 10 Sep 2022 15:15:32 GMT
Accept-Ranges: bytes
ETag: "0421b2b28c5d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 59274586b00249f3cbd2ff5dc9071563
76b59ad65277082e1811d339bf03d953037e0a25
7e6c2cd14a5c882d4a742f80bc48f2c9704ea2ca12e2e98f9f144ce230450eb0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5896
Cache-Control: max-age=140864
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:44 GMT
Etag: "63e3ca18-117"
Expires: Fri, 10 Feb 2023 17:51:28 GMT
Last-Modified: Wed, 08 Feb 2023 16:13:12 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 279
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 5dec8b0e01376526ee071179ac4428c8
eabe1ce7f3509ba4d0cae56669cb0c967806a20b
751c27e54f642d141a2d4262cad26a72179a1b3c29bb93538e3ae1a38a0ab2b7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=107603
Date: Thu, 09 Feb 2023 02:43:44 GMT
Etag: "63e35f33-1d7"
Expires: Fri, 10 Feb 2023 08:37:07 GMT
Last-Modified: Wed, 08 Feb 2023 08:37:07 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xYDkZ0ex4clGrOUq15_B1M48K5QJgpvnFe4dzJml3NQmVhRjnT0LpQ==
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash b45cd1c93b581250f3a80798beeeca5a
96b00c94551f6814c82a898e0d08afd2827291a8
ef98ec13907a1f383419dd662b245974f1aae6471683989a2a88cdc31b2abdac
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 09 Feb 2023 02:43:44 GMT
Last-Modified: Thu, 09 Feb 2023 01:03:29 GMT
Server: ECS (nyb/1D10)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VxJxxtuR8cTzLCZj7IDE_xubq6N_Q6X0n3_zKM-ut2fgzub51PfAEQ==
Age: 6015
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5f1c5a1eb5020a66318a3faf58f15f08
7978debf58d7cbb15bc59ce3371a1ef82105f494
752c1e03b8f2be16f9714b4dcab5c27f344c874283a13b78e7b7a2549c465a6b
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:44 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 06 Feb 2023 22:24:04 GMT
Expires: Mon, 13 Feb 2023 22:24:03 GMT
Etag: "7978debf58d7cbb15bc59ce3371a1ef82105f494"
Cache-Control: max-age=415818,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 796942583ac6b4ff-OSL
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash c5c5e0ecbb70bb707ed5f561b185c71d
ce7c4234fdda2e94449ee4895596c98e77dc297f
c84ca0f6094ee096974b4b150e854ebf5cbf706cae814734a9124114a22cb50c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:44 GMT
Server: ECS (amb/6BC0)
Content-Length: 312
home-c52.nice-incontact.com/inContact/ChatClient/js/lib/fetch.min.js
50.112.182.136200 OK 3.0 kB URL HTTP/1.1 home-c52.nice-incontact.com/inContact/ChatClient/js/lib/fetch.min.js
IP 50.112.182.136:0
File type Algol 68 source text\012- Pascal source, ASCII text, with very long lines (10546)
Hash 54a946a19dcaee60b9681f08aebf0334
09665934f132d89c5c3de89da1057b257d961150
d807f6f9955bb3f2360a02e2740e385a9ca80db4b68b6b1b6cb0b253fa500768
GET /inContact/ChatClient/js/lib/fetch.min.js HTTP/1.1
Host: home-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/inContact/ChatClient/index.html
Cookie: AWSALBCORS=13M6mGJgH7kkBLSbNhLs2eckP6jQEk5pX4E1ssGaGpe/7aJ7eQVRxdnCvjBl2uLKrtxjjvWkyJhvBgRTd5ahqW0ZxtpGF7mJN5SWyoNissJBAKObIXqh6nsfmDT5; ASP.NET_SessionId=qwen2o5oyie0jwhuw22fmkaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:44 GMT
Content-Type: application/javascript
Content-Length: 2955
Connection: keep-alive
Set-Cookie: AWSALB=rfJ8KpK6/KOzkfmJkzadStjlQpRXIMRqkeXmpxynUAXHRMg+Bu876PiBta46YFTM4CDOcFkBN/MArLZQneH2ylJN+WDhcEeR/KMIXzPiHvm/BW7FQ++RimA/uz83; Expires=Thu, 16 Feb 2023 02:43:44 GMT; Path=/
AWSALBCORS=rfJ8KpK6/KOzkfmJkzadStjlQpRXIMRqkeXmpxynUAXHRMg+Bu876PiBta46YFTM4CDOcFkBN/MArLZQneH2ylJN+WDhcEeR/KMIXzPiHvm/BW7FQ++RimA/uz83; Expires=Thu, 16 Feb 2023 02:43:44 GMT; Path=/; SameSite=None; Secure
Content-Encoding: gzip
Last-Modified: Sat, 10 Sep 2022 15:12:10 GMT
Accept-Ranges: bytes
ETag: "081b4b227c5d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
home-c52.nice-incontact.com/inContact/ChatClient/js/lib/classListPolyfill.min.js
50.112.182.136200 OK 1.3 kB URL HTTP/1.1 home-c52.nice-incontact.com/inContact/ChatClient/js/lib/classListPolyfill.min.js
IP 50.112.182.136:0
File type ASCII text, with very long lines (3518)
Hash 77c921d976c6325885fe41eea4749307
de46aab90927535df135f189bb4bfca346c067a4
76f3160750673978956f0228e4e4980404f64afa57c9fbc42b3b55cdc8291cf5
GET /inContact/ChatClient/js/lib/classListPolyfill.min.js HTTP/1.1
Host: home-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/inContact/ChatClient/index.html
Cookie: AWSALBCORS=13M6mGJgH7kkBLSbNhLs2eckP6jQEk5pX4E1ssGaGpe/7aJ7eQVRxdnCvjBl2uLKrtxjjvWkyJhvBgRTd5ahqW0ZxtpGF7mJN5SWyoNissJBAKObIXqh6nsfmDT5; ASP.NET_SessionId=qwen2o5oyie0jwhuw22fmkaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:44 GMT
Content-Type: application/javascript
Content-Length: 1297
Connection: keep-alive
Set-Cookie: AWSALB=eFOmaX8I3jSIv63KPyqPqX2saZoPUJb3KX8K9i30tZ/ir7Ru/863rQv0Q/EHv2/6l32hXS7mLvtvWcrKNsY2AW6vWYz11+Lnsk2Qh1V01G9oo3ri6IRRRAB/m32/; Expires=Thu, 16 Feb 2023 02:43:44 GMT; Path=/
AWSALBCORS=eFOmaX8I3jSIv63KPyqPqX2saZoPUJb3KX8K9i30tZ/ir7Ru/863rQv0Q/EHv2/6l32hXS7mLvtvWcrKNsY2AW6vWYz11+Lnsk2Qh1V01G9oo3ri6IRRRAB/m32/; Expires=Thu, 16 Feb 2023 02:43:44 GMT; Path=/; SameSite=None; Secure
Content-Encoding: gzip
Last-Modified: Sat, 10 Sep 2022 15:12:10 GMT
Accept-Ranges: bytes
ETag: "081b4b227c5d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
s3.amazonaws.com/scripts-clickmeter-com/js/conversion.js
54.231.139.32200 OK 3.4 kB URL HTTP/1.1 s3.amazonaws.com/scripts-clickmeter-com/js/conversion.js
IP 54.231.139.32:0
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 3f7375e37f1364f06daeb858c1800f15
ef77e402bc59c74358f519dfb9b459a9fe23cd12
1515bc41e2d226a105913b20329ec7a3992f9ea6ddd4ee042c717188a59aba39
GET /scripts-clickmeter-com/js/conversion.js HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: MEE1f36q6RtZS2IkECJtIqOaY0VosUENpImelONOINfbOBBemtRnGdp6s5jST+zGbvy4aJbMcfc=
x-amz-request-id: RQNHW2H4NMTNMS8E
Date: Thu, 09 Feb 2023 02:43:45 GMT
Last-Modified: Wed, 24 Jun 2015 10:43:49 GMT
ETag: "3f7375e37f1364f06daeb858c1800f15"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 3416
t.co/i/adsct?bci=3&eci=2&event_id=1e26b7ab-3c40-4d5d-ba32-1fc773cb5ccb&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2e40ef3d-485a-4899-847c-d86239b66c31&tw_document_href=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nyrvi&type=javascript&version=2.3.29
104.244.42.133200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=1e26b7ab-3c40-4d5d-ba32-1fc773cb5ccb&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2e40ef3d-485a-4899-847c-d86239b66c31&tw_document_href=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nyrvi&type=javascript&version=2.3.29
IP 104.244.42.133:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=1e26b7ab-3c40-4d5d-ba32-1fc773cb5ccb&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2e40ef3d-485a-4899-847c-d86239b66c31&tw_document_href=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=nyrvi&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:43 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=a9969dd8-db19-4428-86d5-f5ad0f0aa520; Max-Age=63072000; Expires=Sat, 08 Feb 2025 02:43:44 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: f55716e040907dd0
strict-transport-security: max-age=0
x-response-time: 105
x-connection-hash: 7b854aecfd908f30efb9c5e6056aac1fa6c193d131de32af6205690212570331
X-Firefox-Spdy: h2
scout.salesloft.com/r?tid=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ0IjoxMDM0NzR9.dXaA7oXsPz6E9qafV5R50jZzjf_T31xSOCotdoguPAA
52.1.188.113200 OK 41 B URL HTTP/2 scout.salesloft.com/r?tid=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ0IjoxMDM0NzR9.dXaA7oXsPz6E9qafV5R50jZzjf_T31xSOCotdoguPAA
IP 52.1.188.113:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8c11e15db0f3e1ea036edba78abf1151
72f74f85aa08c65e9927b8d53916a7c45a102d44
aa011ed383cb780028a85caaa0dda67dce19b0f4bc596f4f708d1857015c1362
GET /r?tid=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJ0IjoxMDM0NzR9.dXaA7oXsPz6E9qafV5R50jZzjf_T31xSOCotdoguPAA HTTP/1.1
Host: scout.salesloft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:44 GMT
content-type: application/json; charset=utf-8
content-length: 41
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.avidxchange.com
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
x-request-id: e84b5550cd2401822569a11b25e8e219
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 93f7fc4bd7c938115607f797824e456d
c3d438ef554d0e567b7c6138ab7042d44100df97
82412c2ac8eb43c8f208fa624178f75fefcecaf4a8eaf5f35a44bada0c0ec7bd
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 09 Feb 2023 02:43:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 13:17:54 GMT
Expires: Thu, 09 Feb 2023 13:17:54 GMT
ETag: "c3d438ef554d0e567b7c6138ab7042d44100df97"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 93f7fc4bd7c938115607f797824e456d
c3d438ef554d0e567b7c6138ab7042d44100df97
82412c2ac8eb43c8f208fa624178f75fefcecaf4a8eaf5f35a44bada0c0ec7bd
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 09 Feb 2023 02:43:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 13:17:54 GMT
Expires: Thu, 09 Feb 2023 13:17:54 GMT
ETag: "c3d438ef554d0e567b7c6138ab7042d44100df97"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 93f7fc4bd7c938115607f797824e456d
c3d438ef554d0e567b7c6138ab7042d44100df97
82412c2ac8eb43c8f208fa624178f75fefcecaf4a8eaf5f35a44bada0c0ec7bd
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 09 Feb 2023 02:43:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 13:17:54 GMT
Expires: Thu, 09 Feb 2023 13:17:54 GMT
ETag: "c3d438ef554d0e567b7c6138ab7042d44100df97"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
clickmeter.com/conversion.aspx?id=F302EC850AC04BDEA5F4A1259D2ABE4F&val=0&com=0&comperc=0¶m=empty
54.230.111.21301 Moved Permanently 0 B URL HTTP/2 clickmeter.com/conversion.aspx?id=F302EC850AC04BDEA5F4A1259D2ABE4F&val=0&com=0&comperc=0¶m=empty
IP 54.230.111.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /conversion.aspx?id=F302EC850AC04BDEA5F4A1259D2ABE4F&val=0&com=0&comperc=0¶m=empty HTTP/1.1
Host: clickmeter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
content-length: 0
location: https://conversions.clickmeter.com/Conversion?id=F302EC850AC04BDEA5F4A1259D2ABE4F
server: CloudFront
date: Thu, 09 Feb 2023 02:43:44 GMT
x-cache: GeneratedResponse from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dd0JvvwlvA4vFAAy_N2SqEyQTD8i-La4JxSFUERFHjq6NjCfmZ2IdA==
X-Firefox-Spdy: h2
cdn.callrail.com/companies/993629708/2883f105f08d7aabf45a/12/swap.js
54.230.111.24200 OK 36 kB URL HTTP/2 cdn.callrail.com/companies/993629708/2883f105f08d7aabf45a/12/swap.js
IP 54.230.111.24:0
File type C source, Unicode text, UTF-8 text, with very long lines (32850)
Hash f10021a10e1b8a1b53524195836d5304
f53ce5ad71fc31340bf18fd142362a464a2ad8ba
b092560cd4514786f077f95020e488c7d3888d0dd35476d58491ddca9418004f
GET /companies/993629708/2883f105f08d7aabf45a/12/swap.js HTTP/1.1
Host: cdn.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Thu, 09 Feb 2023 02:43:44 GMT
cache-control: max-age=3600, public
etag: W/"b092560cd4514786f077f95020e488c7"
timing-allow-origin: *
x-request-id: d4e2c59a-7631-4f2c-afbf-fa48b9c64f41
x-runtime: 0.017911
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 8ha2A-4i_vnnl0lAD96tEwE2Uh8puyhSKokhl9wbaDn8YgXlzsyx7Q==
X-Firefox-Spdy: h2
c1.rfihub.net/js/tc.min.js
54.230.111.29200 OK 6.2 kB URL HTTP/2 c1.rfihub.net/js/tc.min.js
IP 54.230.111.29:0
File type C source, ASCII text, with very long lines (19497)
Hash ab5a2e3f2414c0a2b622e48c0b6da2fd
1a894787bde6cbf9b58d47b8f4245607420112ad
a5ef19cf7ca85f760c462ed2f228430c8d0a6d9daf3aa34894a5c42113cfdb8f
GET /js/tc.min.js HTTP/1.1
Host: c1.rfihub.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6162
date: Thu, 09 Feb 2023 01:55:54 GMT
p3p: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
cache-control: public, max-age=3600
expires: Thu, 09 Feb 2023 02:55:54 GMT
last-modified: Thu, 09 Feb 2023 01:55:44 GMT
content-encoding: gzip
server: Jetty(9.3.29.v20201019)
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9f3m3KKVB7VIF63hjYlD51_hg9Pz_CX0aGNc10tyY1DghGCnovC26w==
age: 2870
X-Firefox-Spdy: h2
script.hotjar.com/modules.14cb8958c3e3566a4606.js
54.230.111.79200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.14cb8958c3e3566a4606.js
IP 54.230.111.79:0
File type Unicode text, UTF-8 text, with very long lines (48770)
Hash 5331176444d8700436c501005f6a0731
d0f73de83bc0720ec98240ab04878a317491d640
07c3a5946b698fa789f6f4f6924761ffbc6808e145cba46c657092f9b36fee8a
GET /modules.14cb8958c3e3566a4606.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68072
date: Wed, 08 Feb 2023 15:48:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "5331176444d8700436c501005f6a0731"
last-modified: Wed, 08 Feb 2023 15:47:26 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HvTqaK5a6FbT1bP5qRI-ZU9BWq5HRroW4p6xNS6-eB_bzdS_DWiPRA==
age: 39338
X-Firefox-Spdy: h2
cdn.schemaapp.com/highlighter/prod/AvidXchangeInc/v2/aHR0cHM6Ly93d3cuYXZpZHhjaGFuZ2UuY29t
54.230.111.3200 OK 0 B URL HTTP/2 cdn.schemaapp.com/highlighter/prod/AvidXchangeInc/v2/aHR0cHM6Ly93d3cuYXZpZHhjaGFuZ2UuY29t
IP 54.230.111.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /highlighter/prod/AvidXchangeInc/v2/aHR0cHM6Ly93d3cuYXZpZHhjaGFuZ2UuY29t HTTP/1.1
Host: cdn.schemaapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-account-id,x-api-key
Referer: https://www.avidxchange.com/
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Thu, 09 Feb 2023 02:43:45 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-allow-headers: x-account-id, x-api-key
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0RO2XW2oLKpEBQjjlSpZkL24brg95eLij6KPgTmHVqtfW54cp7YZ1g==
X-Firefox-Spdy: h2
s.adroll.com/j/roundtrip.js
54.230.111.98200 OK 18 kB URL HTTP/1.1 s.adroll.com/j/roundtrip.js
IP 54.230.111.98:0
File type ASCII text, with very long lines (1139)
Hash 3a1dd242e79b4ae4577d2fde5f69abef
f48a4cc274205942a4cabed9c2a3fcc7fb10742d
3c11ef6a38842671d8a1f09b13123fa94029254d3b8361e9cc1bb38658df7948
GET /j/roundtrip.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 22:00:03 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: a3YzEAFa_MbHm991cTI_ZD1JCGhKJLMq
Server: AmazonS3
Content-Encoding: gzip
Date: Thu, 09 Feb 2023 02:11:04 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: W/"150539966f18aac53d9c1405d11a1074"
Vary: Accept-Encoding
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
Age: 1960
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: DItaqPxnpUQrxKtXcj2yKiDFuZkdWPTYSPWM4lY6YiQyI_2Dgns7uA==
unpkg.com/markdown-it@13.0.1/dist/markdown-it.min.js
104.16.125.175200 OK 35 kB URL HTTP/2 unpkg.com/markdown-it@13.0.1/dist/markdown-it.min.js
IP 104.16.125.175:0
File type ASCII text, with very long lines (65454)
Hash 798960df860361841b480f3c63594ab9
00e8155548fdc5fa7897df26ae67cc1b66c57e42
9f67101ead780de514e685dc143bd777ce9e16a3d486ab9918dd1cd7a25360af
GET /markdown-it@13.0.1/dist/markdown-it.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://home-c52.nice-incontact.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:44 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"19264-nnZErff5Clr9jWDPKIcTTvCPty4"
via: 1.1 fly.io
fly-request-id: 01GQ46Q8S05ZH8EBHDE3CFD9Z2-fra
cf-cache-status: HIT
age: 1805849
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79694258ca6db4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
bat.bing.com/p/action/5523298.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/5523298.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/5523298.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 2BF8AE56557643E8B62D5FA93CDD3D71 Ref B: OSL30EDGE0414 Ref C: 2023-02-09T02:43:44Z
date: Thu, 09 Feb 2023 02:43:44 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 22a107f9c4d1c04b4c311c891b5ee090
5fd96275cce5ac25c2a6c3c1c2a1fb729caec0c6
d23d92574a8f9494a4b4d223512ebaffaf05c9ddb89003e22913a9c078c667ab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1309
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:44 GMT
Etag: "63e38d9a-139"
Last-Modified: Thu, 09 Feb 2023 02:21:57 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 313
ocsp.godaddy.com/
192.124.249.24200 OK 1.7 kB IP 192.124.249.24:0
Hash 34fb489086abcb48128779dc93266f07
e736791200ba72306f6c994957af434a92db5112
9403ac2fcf55d01220ebce62d8d63a0221f40a4c685727521e1169cd89fe439b
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 68
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 09 Feb 2023 02:43:44 GMT
Content-Type: application/ocsp-response
Content-Length: 1731
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 20:30:24 GMT
Expires: Thu, 09 Feb 2023 20:30:24 GMT
ETag: "e736791200ba72306f6c994957af434a92db5112"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D435625%26time%3D1675910680782%26url%3Dhttps%253A%252F%252Fwww.avidxchange.com%252Fprivacy-policy%252F%253Futm_source%253DFooter%2526utm_medium%253Demail%2526utm_campaign%253DBPTemplate%2526mkt_tok%253DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D435625%26time%3D1675910680782%26url%3Dhttps%253A%252F%252Fwww.avidxchange.com%252Fprivacy-policy%252F%253Futm_source%253DFooter%2526utm_medium%253Demail%2526utm_campaign%253DBPTemplate%2526mkt_tok%253DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D435625%26time%3D1675910680782%26url%3Dhttps%253A%252F%252Fwww.avidxchange.com%252Fprivacy-policy%252F%253Futm_source%253DFooter%2526utm_medium%253Demail%2526utm_campaign%253DBPTemplate%2526mkt_tok%253DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=435625&time=1675910680782&url=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&liSync=true
set-cookie: bcookie="v=2&1f50ab1e-0a0a-4ffa-8587-c08ccb4d1d2d"; Domain=.linkedin.com; Expires=Fri, 09-Feb-2024 02:43:44 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20230209024344c12e818a-f189-45c5-869f-8e03326eed76AQHjnExNzy-I8RGaFL5nmjyjoz2wH4Gg"; Domain=.www.linkedin.com; Expires=Fri, 09-Feb-2024 02:43:44 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzU5MTA2MjQ7MjswMjGQiKKN5LnXM0XV9v7p/4epFPuOviOQtZMlGu3n5GwtFQ==; Domain=.linkedin.com; Expires=Tue, 08 Aug 2023 02:43:44 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2481:u=1:x=1:i=1675910624:t=1675997024:v=2:sig=AQFdhnHMJTxIeObuPQfEI0SNyImBEG2G"; Expires=Fri, 10 Feb 2023 02:43:44 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAX0O1l3Gu/2By3RUJ+wuQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2C7D6A92E17545FDB5B6F12FB12F91EA Ref B: OSL30EDGE0108 Ref C: 2023-02-09T02:43:44Z
date: Thu, 09 Feb 2023 02:43:44 GMT
content-length: 0
X-Firefox-Spdy: h2
munchkin.marketo.net/162/munchkin.js
23.61.220.209200 OK 4.7 kB URL HTTP/1.1 munchkin.marketo.net/162/munchkin.js
IP 23.61.220.209:0
File type ASCII text, with very long lines (606)
Hash 3e9baed982956735f6e0a0e756d97ed9
9223be6a494a10959101a7942419df7b05b84d73
930a508ed0ea6b4861d19c0738360182514010913c4ebfe9352064ae5006f8a1
GET /162/munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "75daf56f6191efe42577301908659c29:1656637152.894482"
Last-Modified: Fri, 01 Jul 2022 00:59:12 GMT
Server: AkamaiNetStorage
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR", policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=8640000
Expires: Sat, 20 May 2023 02:43:44 GMT
Date: Thu, 09 Feb 2023 02:43:44 GMT
Content-Length: 4677
Connection: keep-alive
s.adroll.com/j/exp/7J657LQXRVAHTM4OOEONP6/index.js
54.230.111.98302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/exp/7J657LQXRVAHTM4OOEONP6/index.js
IP 54.230.111.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/exp/7J657LQXRVAHTM4OOEONP6/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Wed, 08 Feb 2023 11:00:54 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/exp/index.js
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
Age: 56570
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: N3cSCXfr9rfgAdxncv9xVWViMVxMufDRzlSG_Ki_ZkcsywrFKu3XTA==
cdn.schemaapp.com/javascript/schemaFunctions.min.js
54.230.111.3200 OK 747 B URL HTTP/2 cdn.schemaapp.com/javascript/schemaFunctions.min.js
IP 54.230.111.3:0
Hash fe1cea0e38536dfac55c2c8f6e3f9db6
736f9fdb973334d9e556100c530d329b21d2e2f0
fc5d32750bd68f91392458cb60f8899a69694285bb0c54a042793b3cd58a4e20
GET /javascript/schemaFunctions.min.js HTTP/1.1
Host: cdn.schemaapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 02 Feb 2023 09:52:30 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 17 Jan 2023 19:11:21 GMT
etag: W/"5741fc61fef7abd96093e31deb82a719"
x-amz-server-side-encryption: AES256
cache-control: max-age=699840
x-amz-version-id: huMlRne1MhGiqovFaqw_hwjVNww3m8Jd
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: IjG80qgxheC0-TFusra1eVzekGK-mdiMnPAD8tdoUOIi2tVT8EFk-A==
age: 579074
X-Firefox-Spdy: h2
s.adroll.com/j/pre/7J657LQXRVAHTM4OOEONP6/XUIRWVSCEJBRTMX75AQRPX/index.js
54.230.111.98200 OK 0 B URL HTTP/1.1 s.adroll.com/j/pre/7J657LQXRVAHTM4OOEONP6/XUIRWVSCEJBRTMX75AQRPX/index.js
IP 54.230.111.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/7J657LQXRVAHTM4OOEONP6/XUIRWVSCEJBRTMX75AQRPX/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 09:23:14 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: 4vg0ojFkupOmu3KVn.F8QStszhl3ol64
Accept-Ranges: bytes
Server: AmazonS3
Date: Thu, 09 Feb 2023 01:58:26 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
Age: 2719
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MF8CvmIvYhHK6tdzSxfdTG_ZGJwYJ0sKuktLk4HweMBwFF16urT93g==
s.adroll.com/j/pre/7J657LQXRVAHTM4OOEONP6/XUIRWVSCEJBRTMX75AQRPX/fpconsent.js
54.230.111.98302 Moved Temporarily 0 B URL HTTP/1.1 s.adroll.com/j/pre/7J657LQXRVAHTM4OOEONP6/XUIRWVSCEJBRTMX75AQRPX/fpconsent.js
IP 54.230.111.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/7J657LQXRVAHTM4OOEONP6/XUIRWVSCEJBRTMX75AQRPX/fpconsent.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Wed, 08 Feb 2023 16:04:53 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/pre/index.js
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
Age: 38330
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: eNAsJMfkB0fxQ5OtoWm0YP0mKmEHu8LAPFQ4OtDgaDfUNF45wNTGjw==
clickmeter.com/conversion.aspx?id=&comperc=0
54.230.111.21302 Found 176 B URL HTTP/2 clickmeter.com/conversion.aspx?id=&comperc=0
IP 54.230.111.21:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e52e1115726a2cf3da02d62ca30ec898
4541c4bb6a52bbc59eaf12bbe820e2a0c4f9b7c6
2bf9d012017af14ae6a509e96dd49ff6e0f51afb281624d50ae2b0c1473bb784
GET /conversion.aspx?id=&comperc=0 HTTP/1.1
Host: clickmeter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 176
location: https://cnvrsns.clickmeter.com/Conversion?id=&comperc=0
cache-control: private, no-cache="set-cookie"
date: Thu, 09 Feb 2023 02:43:47 GMT
server: Microsoft-IIS/8.5
set-cookie: cm_session_state=kvy33omj4svvnqtaehuyfmba; path=/; HttpOnly
AWSELB=1FCF3DFF06C71416AAEC96D06A72954E6FC592EDF861547D02F58448DA9F8204E80575256B1FF3658513991318CB298C5840343A0A5CF33995E5A038042CF5E3415C5CCBC1;PATH=/;MAX-AGE=7200
AWSELBCORS=1FCF3DFF06C71416AAEC96D06A72954E6FC592EDF861547D02F58448DA9F8204E80575256B1FF3658513991318CB298C5840343A0A5CF33995E5A038042CF5E3415C5CCBC1;PATH=/;MAX-AGE=7200;SECURE;SAMESITE=None
x-aspnet-version: 4.0.30319
x-aspnetmvc-version: 4.0
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wCDA1jcWtQg_OSGABQkxaV3IkafRyQUs6w8QzS87ug5326DXdtJsYg==
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash b7e30f8419d69ce02a1f96b895cabac8
1de1962de5a350f1a905de3c61c01085eae52ec5
e30bea7507c8e32e8b2e7d6f54e9cd86e99d1198a5cb468221ae4cae33ee2085
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 09 Feb 2023 02:43:45 GMT
Last-Modified: Thu, 09 Feb 2023 01:15:18 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: zktS7mqWtIgx0DiMH9hAfbYKWjawF29jLmVY2tkUdjNvLmKC_-JExQ==
Age: 5307
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 05215892a5cf26714d5989874015a371
202b3a2f58292b90b440b4771b8ef200876b2efe
06da00709c147ea1871b32a428c4647538637248a9324308071d0ac7a81aebf3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 02:15:48 GMT
Expires: Wed, 15 Feb 2023 02:15:47 GMT
Etag: "202b3a2f58292b90b440b4771b8ef200876b2efe"
Cache-Control: max-age=516121,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7969425eee02b4ff-OSL
conversions.clickmeter.com/Conversion?id=F302EC850AC04BDEA5F4A1259D2ABE4F
54.82.153.178403 Forbidden 0 B URL HTTP/1.1 conversions.clickmeter.com/Conversion?id=F302EC850AC04BDEA5F4A1259D2ABE4F
IP 54.82.153.178:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Conversion?id=F302EC850AC04BDEA5F4A1259D2ABE4F HTTP/1.1
Host: conversions.clickmeter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 403 Forbidden
Date: Thu, 09 Feb 2023 02:43:44 GMT
Engine: clickmeter.redirect, version 2.0
Error: Can not associate conversion: no cookie found.
X-Rate-Limit-Limit: 20s
X-Rate-Limit-Remaining: 299
X-Rate-Limit-Reset: 2023-02-09T02:44:05.1037120Z
Content-Length: 0
Connection: keep-alive
px.ads.linkedin.com/collect?v=2&fmt=js&pid=435625&time=1675910680782&url=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=435625&time=1675910680782&url=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=435625&time=1675910680782&url=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: bcookie="v=2&2e4be086-6cfc-411c-8e9d-cdf60cad7327"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 09-Feb-2024 02:43:45 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2454:u=1:x=1:i=1675910625:t=1675997025:v=2:sig=AQG4Q6Va-BXZVK0oMBJVvd23MclNvsdl"; Expires=Fri, 10 Feb 2023 02:43:45 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAX0O1l6+/LSbSu+VTwNtg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: FFF83A03373144AFA266248686D5D4AC Ref B: OSL30EDGE0108 Ref C: 2023-02-09T02:43:44Z
date: Thu, 09 Feb 2023 02:43:44 GMT
content-length: 0
X-Firefox-Spdy: h2
home-c52.nice-incontact.com/inContact/ChatClient/js/bundle.min.js
50.112.182.136200 OK 267 kB URL HTTP/1.1 home-c52.nice-incontact.com/inContact/ChatClient/js/bundle.min.js
IP 50.112.182.136:0
File type Unicode text, UTF-8 text, with very long lines (32016)
Size 267 kB (266679 bytes)
Hash 41f5bc5e5f83430dc2e0c5161cf42a6e
c69eb3ca53d34add6d54792ac182a9bf390e72c5
7b0d4c07f569f471484c53cf81ecaa63965bf2d0b155cfe5b24ba8adadd745de
GET /inContact/ChatClient/js/bundle.min.js HTTP/1.1
Host: home-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/inContact/ChatClient/index.html
Cookie: AWSALBCORS=13M6mGJgH7kkBLSbNhLs2eckP6jQEk5pX4E1ssGaGpe/7aJ7eQVRxdnCvjBl2uLKrtxjjvWkyJhvBgRTd5ahqW0ZxtpGF7mJN5SWyoNissJBAKObIXqh6nsfmDT5; ASP.NET_SessionId=qwen2o5oyie0jwhuw22fmkaf
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:44 GMT
Content-Type: application/javascript
Content-Length: 266679
Connection: keep-alive
Set-Cookie: AWSALB=4sTrAPDIDsJ6MnuOEnU9UGiZbFfKxDKRovUJeX/KwzVFg1bJ2HzrP9EL2O/l/7quvbfqVB7VK508ptR3x+SRwEP2qaFX3NCTdMoPUijnU+85jKBJcql4JeHri3Si; Expires=Thu, 16 Feb 2023 02:43:44 GMT; Path=/
AWSALBCORS=4sTrAPDIDsJ6MnuOEnU9UGiZbFfKxDKRovUJeX/KwzVFg1bJ2HzrP9EL2O/l/7quvbfqVB7VK508ptR3x+SRwEP2qaFX3NCTdMoPUijnU+85jKBJcql4JeHri3Si; Expires=Thu, 16 Feb 2023 02:43:44 GMT; Path=/; SameSite=None; Secure
Content-Encoding: gzip
Last-Modified: Sat, 10 Sep 2022 15:15:58 GMT
Accept-Ranges: bytes
ETag: "08b9a3a28c5d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
cdn.schemaapp.com/highlighter/prod/AvidXchangeInc/v2/aHR0cHM6Ly93d3cuYXZpZHhjaGFuZ2UuY29t
54.230.111.3200 OK 5.1 kB URL HTTP/2 cdn.schemaapp.com/highlighter/prod/AvidXchangeInc/v2/aHR0cHM6Ly93d3cuYXZpZHhjaGFuZ2UuY29t
IP 54.230.111.3:0
Hash 6f949aa676c0dc8fcdc4efadbb0c3bfc
c266f3d77d3a10e12625a048361e99147490d4cd
e52e78d0f7fec33c97d9386ae167f28f24dc113ae0b798be9b8f9d92060f4511
GET /highlighter/prod/AvidXchangeInc/v2/aHR0cHM6Ly93d3cuYXZpZHhjaGFuZ2UuY29t HTTP/1.1
Host: cdn.schemaapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
x-account-id: AvidXchangeInc
x-api-key: E4TRM-5SNU6-JIYUJ-18FBS
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Thu, 02 Feb 2023 05:03:43 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Fri, 09 Dec 2022 20:08:10 GMT
etag: W/"0dc25db0053bc123212b6842156b8e69"
x-amz-server-side-encryption: AES256
x-amz-meta-url: https://www.avidxchange.com
cache-control: max-age=699840
x-amz-meta-source: SchemaApp
x-amz-meta-templateid:
x-amz-meta-companyid: http://schemaapp.com/resources/Company/AvidXchangeInc
x-amz-version-id: J491hqCO4ZJvTqH1b0FH1E5Y905KiTjf
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OPQ-EjZakUgjn4n8moK9yOApzJESvrSHYwTSjDFKrCHj5nV-w0pbZw==
age: 596402
X-Firefox-Spdy: h2
s.adroll.com/j/exp/index.js
54.230.111.98200 OK 28 B URL HTTP/1.1 s.adroll.com/j/exp/index.js
IP 54.230.111.98:0
File type ASCII text, with no line terminators
Hash 5816cced8568d223aa09d889f300692b
95cab5e474d7391762c3da5c7dc50fcf05df529f
f59e5f34a941183aacaed25322ac0856628493c2cfd936ded3fddc0a49510e52
GET /j/exp/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 28
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 00:29:34 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: CiD7z5Qr2ECIL.Zbw84rFXTGVfvZ9kAA
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 08 Feb 2023 07:24:42 GMT
Etag: "5816cced8568d223aa09d889f300692b"
Vary: Accept-Encoding
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
Age: 69546
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: XkpeX-azmio7o_LlU4K8w2ORYhDJkLL7Zl9UHyVGvmK9d89CelC9eQ==
s.adroll.com/j/pre/index.js
54.230.111.98200 OK 0 B URL HTTP/1.1 s.adroll.com/j/pre/index.js
IP 54.230.111.98:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /j/pre/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 15 Jan 2020 23:54:18 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: nQEe8wQ7h0ROt7P4GJfDfstto6x684Hy
Accept-Ranges: bytes
Server: AmazonS3
Date: Wed, 08 Feb 2023 07:25:04 GMT
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
Age: 69522
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bBJTwded-yfvGmpTkHShDFyokkd2l_GoUuiei7TDvgmc6LEWOACNJg==
data.schemaapp.com/AvidXchangeInc/aHR0cHM6Ly93d3cuYXZpZHhjaGFuZ2UuY29tL3ByaXZhY3ktcG9saWN5Lw
54.230.111.129200 OK 0 B URL HTTP/2 data.schemaapp.com/AvidXchangeInc/aHR0cHM6Ly93d3cuYXZpZHhjaGFuZ2UuY29tL3ByaXZhY3ktcG9saWN5Lw
IP 54.230.111.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AvidXchangeInc/aHR0cHM6Ly93d3cuYXZpZHhjaGFuZ2UuY29tL3ByaXZhY3ktcG9saWN5Lw HTTP/1.1
Host: data.schemaapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
x-api-key: E4TRM-5SNU6-JIYUJ-18FBS
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-expose-headers: x-amz-meta-source
access-control-max-age: 3000
date: Thu, 09 Feb 2023 02:43:44 GMT
server: AmazonS3
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: max-age=14400
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aQQqi9jtvlpexGYg4d6cxXi7IEJ4LvyYVNjZTAQpby17NM5UrBzFSg==
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 3d2254db64618fd4b1915e5b6ea2fd4d
542a2a05ce51215616bd7db4332af8ccf4dbc3d9
dc9651e87bd870de66c5024cee6765a8dc32a548da72b5ee1b3998f3d7eba4ce
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 13:42:55 GMT
Expires: Wed, 15 Feb 2023 13:42:54 GMT
Etag: "542a2a05ce51215616bd7db4332af8ccf4dbc3d9"
Cache-Control: max-age=557348,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 796942600e7ab4ff-OSL
id.rlcdn.com/464526.gif
35.244.174.68451 Unavailable For Legal Reasons 0 B IP 35.244.174.68:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /464526.gif HTTP/1.1
Host: id.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 451 Unavailable For Legal Reasons
date: Thu, 09 Feb 2023 02:43:45 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cnvrsns.clickmeter.com/Conversion?id=&comperc=0
54.82.153.178404 Not Found 5.9 kB URL HTTP/1.1 cnvrsns.clickmeter.com/Conversion?id=&comperc=0
IP 54.82.153.178:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (469), with CRLF line terminators
Hash 2552b8a534e868e3cacddd611b237a61
24fadaa7cb75ccb5ee8c8c44e65dbed4c071591e
d96bf690c3100a4f46cabbabed7661473f400e8d67c51195986933b48bc675d3
GET /Conversion?id=&comperc=0 HTTP/1.1
Host: cnvrsns.clickmeter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
Date: Thu, 09 Feb 2023 02:43:44 GMT
Engine: clickmeter.redirect, version 2.0
X-Rate-Limit-Limit: 20s
X-Rate-Limit-Remaining: 298
X-Rate-Limit-Reset: 2023-02-09T02:44:05.1037120Z
Content-Length: 5938
Connection: keep-alive
clickmeter.com/conversion.aspx?id=&comperc=0
54.230.111.21302 Found 176 B URL HTTP/2 clickmeter.com/conversion.aspx?id=&comperc=0
IP 54.230.111.21:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e52e1115726a2cf3da02d62ca30ec898
4541c4bb6a52bbc59eaf12bbe820e2a0c4f9b7c6
2bf9d012017af14ae6a509e96dd49ff6e0f51afb281624d50ae2b0c1473bb784
GET /conversion.aspx?id=&comperc=0 HTTP/1.1
Host: clickmeter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 176
location: https://cnvrsns.clickmeter.com/Conversion?id=&comperc=0
cache-control: private, no-cache="set-cookie"
date: Thu, 09 Feb 2023 02:43:34 GMT
server: Microsoft-IIS/8.5
set-cookie: cm_session_state=x45irbhqv2u2h5wh4axgdk55; path=/; HttpOnly
AWSELB=1FCF3DFF06C71416AAEC96D06A72954E6FC592EDF886FDC832A97F1E82BCE5C84DE127C6B80724E7D6B37CB7147E02398A4C3E6C2EDC16FC81ADFDF717F5892992E1B9822C;PATH=/;MAX-AGE=7200
AWSELBCORS=1FCF3DFF06C71416AAEC96D06A72954E6FC592EDF886FDC832A97F1E82BCE5C84DE127C6B80724E7D6B37CB7147E02398A4C3E6C2EDC16FC81ADFDF717F5892992E1B9822C;PATH=/;MAX-AGE=7200;SECURE;SAMESITE=None
x-aspnet-version: 4.0.30319
x-aspnetmvc-version: 4.0
x-powered-by: ASP.NET
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: JY_fFKqwgbL_fNn23CVkW8uRtfvh7UNTDJf0Y2qFREyTmfPxk9Mb8A==
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash ff838f175d5339182382fb51b802a971
e884b4feb5e053481a58a0339fcadf19e7941a10
e244fe174fa9809bb2ad9b9d7531fbc15b76cb31de4b6049d21cbe67340c9a0e
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=160607
Date: Thu, 09 Feb 2023 02:43:45 GMT
Etag: "63e42292-1d7"
Expires: Fri, 10 Feb 2023 23:20:32 GMT
Last-Modified: Wed, 08 Feb 2023 22:30:42 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 8Wc7NZVTD6Z9J3C2zGHLdW2PHQ15Xgpae2_-1sztm-OU1zZDN-q5lQ==
Age: 2990
d.adroll.com/consent/check/7J657LQXRVAHTM4OOEONP6?pv=73650959280.63246&arrfrr=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_s=10bfdb1551b0882177714faeeec7f0a4&_b=2
52.208.177.58200 OK 462 B URL HTTP/2 d.adroll.com/consent/check/7J657LQXRVAHTM4OOEONP6?pv=73650959280.63246&arrfrr=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_s=10bfdb1551b0882177714faeeec7f0a4&_b=2
IP 52.208.177.58:0
File type ASCII text, with very long lines (462), with no line terminators
Hash f1ea6806bd568a76f90743c9f86bf4dc
1434f444859671823af93466ca352a9c5bdb3edc
01226f5cec5edccdd97671ef8f3ad5028c7e1842ae1e3440108e963d12c24f6a
GET /consent/check/7J657LQXRVAHTM4OOEONP6?pv=73650959280.63246&arrfrr=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_s=10bfdb1551b0882177714faeeec7f0a4&_b=2 HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:45 GMT
content-type: application/javascript
content-length: 462
server: nginx/1.22.1
X-Firefox-Spdy: h2
idsync.rlcdn.com/360947.gif?partner_uid=5124322324956194238
35.244.174.68200 OK 42 B URL HTTP/2 idsync.rlcdn.com/360947.gif?partner_uid=5124322324956194238
IP 35.244.174.68:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /360947.gif?partner_uid=5124322324956194238 HTTP/1.1
Host: idsync.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: image/gif
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
set-cookie: rlas3=/3PlsSBT2hcLVKfwj9/ETwUCuwnHseYiZm78QJeA1MA=; Path=/; Domain=rlcdn.com; Expires=Fri, 09 Feb 2024 02:43:45 GMT; Secure; SameSite=None
pxrc=CAA=; Path=/; Domain=rlcdn.com; Expires=Mon, 10 Apr 2023 02:43:45 GMT; Secure; SameSite=None
timing-allow-origin: *
date: Thu, 09 Feb 2023 02:43:45 GMT
content-length: 42
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/1427306/visit-data?sv=6
34.248.143.191200 OK 332 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/1427306/visit-data?sv=6
IP 34.248.143.191:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bffff9f5919b77991daa3d74db1ac779
b6bc35adb84d01603f623aa8d10680f7f8cd40a6
2168c332626384ef1df0a1800ffdcd45b98f706325894747e17aa8d047b25f10
POST /api/v2/client/sites/1427306/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Content-Type: text/plain; charset=UTF-8
Content-Length: 116
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:45 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
cnvrsns.clickmeter.com/Conversion?id=&comperc=0
54.82.153.178404 Not Found 5.9 kB URL HTTP/1.1 cnvrsns.clickmeter.com/Conversion?id=&comperc=0
IP 54.82.153.178:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (469), with CRLF line terminators
Hash 2552b8a534e868e3cacddd611b237a61
24fadaa7cb75ccb5ee8c8c44e65dbed4c071591e
d96bf690c3100a4f46cabbabed7661473f400e8d67c51195986933b48bc675d3
GET /Conversion?id=&comperc=0 HTTP/1.1
Host: cnvrsns.clickmeter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
Date: Thu, 09 Feb 2023 02:43:44 GMT
Engine: clickmeter.redirect, version 2.0
X-Rate-Limit-Limit: 20s
X-Rate-Limit-Remaining: 297
X-Rate-Limit-Reset: 2023-02-09T02:44:05.1037120Z
Content-Length: 5938
Connection: keep-alive
cm.g.doubleclick.net/pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyNDk1NjE5NDIzOA==&forward=
142.250.74.98302 Found 369 B URL HTTP/2 cm.g.doubleclick.net/pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyNDk1NjE5NDIzOA==&forward=
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 9dc7c5a75538498355f6adc27eaa07a5
f8aa37950a39adb925146584cffbeff4e638fc40
28b11a98599f57bf49f8d4ef4fbad83fda84009aa1964241570ab44bf2794e03
GET /pixel?&in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyNDk1NjE5NDIzOA==&forward= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyNDk1NjE5NDIzOA==&forward=&google_tc=
date: Thu, 09 Feb 2023 02:43:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 369
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 09-Feb-2023 02:58:45 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
home-c52.nice-incontact.com/inContact/ChatClient/locales/en/translation.json
50.112.182.136200 OK 1.6 kB URL HTTP/1.1 home-c52.nice-incontact.com/inContact/ChatClient/locales/en/translation.json
IP 50.112.182.136:0
File type JSON data\012- , Unicode text, UTF-8 text, with CRLF line terminators
Hash 0a1db923bd39c7449a66d954b827dd18
6a97d952d415394401096383e35731c27bb487bc
cdcc00bc1fd42dddedc8edbd7e1702e82ed28661c2622afbf96155f3b471013c
GET /inContact/ChatClient/locales/en/translation.json HTTP/1.1
Host: home-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/inContact/ChatClient/index.html
Cookie: AWSALBCORS=4sTrAPDIDsJ6MnuOEnU9UGiZbFfKxDKRovUJeX/KwzVFg1bJ2HzrP9EL2O/l/7quvbfqVB7VK508ptR3x+SRwEP2qaFX3NCTdMoPUijnU+85jKBJcql4JeHri3Si; ASP.NET_SessionId=qwen2o5oyie0jwhuw22fmkaf
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:45 GMT
Content-Type: application/json
Content-Length: 1623
Connection: keep-alive
Set-Cookie: AWSALB=e9poVTpO+77QJueyR7GnEqvlINhYx60rOtzyG+IiluIb9verOmLC2UXbEfhE+9XdcgFVLIZ4kJ43y6bFxhGglKlnVY8FFq+LeVb+tmgQLfb2sSgfHszSU5u+MORJ; Expires=Thu, 16 Feb 2023 02:43:45 GMT; Path=/
AWSALBCORS=e9poVTpO+77QJueyR7GnEqvlINhYx60rOtzyG+IiluIb9verOmLC2UXbEfhE+9XdcgFVLIZ4kJ43y6bFxhGglKlnVY8FFq+LeVb+tmgQLfb2sSgfHszSU5u+MORJ; Expires=Thu, 16 Feb 2023 02:43:45 GMT; Path=/; SameSite=None; Secure
Content-Encoding: gzip
Last-Modified: Sat, 10 Sep 2022 15:12:10 GMT
Accept-Ranges: bytes
ETag: "081b4b227c5d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
home-c52.nice-incontact.com/inContact/ChatClient/locales/en-US/translation.json
50.112.182.136200 OK 1.6 kB URL HTTP/1.1 home-c52.nice-incontact.com/inContact/ChatClient/locales/en-US/translation.json
IP 50.112.182.136:0
File type JSON data\012- , Unicode text, UTF-8 text, with CRLF line terminators
Hash ffefc01c50d465414fda23116cc7f889
2ba202c3b651c989a8ebb2b59561246edab29222
7c4697c580861e061c7dd606f4b7568b1de95776031c4d7e7a07195f6c07b1ee
GET /inContact/ChatClient/locales/en-US/translation.json HTTP/1.1
Host: home-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/inContact/ChatClient/index.html
Cookie: AWSALBCORS=4sTrAPDIDsJ6MnuOEnU9UGiZbFfKxDKRovUJeX/KwzVFg1bJ2HzrP9EL2O/l/7quvbfqVB7VK508ptR3x+SRwEP2qaFX3NCTdMoPUijnU+85jKBJcql4JeHri3Si; ASP.NET_SessionId=qwen2o5oyie0jwhuw22fmkaf
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:45 GMT
Content-Type: application/json
Content-Length: 1626
Connection: keep-alive
Set-Cookie: AWSALB=CgvEB6vJn2wmOjWVVsPNV3zAEEC64xAHaxubOSl3mseNjYa7PjydXwXVGmv2caUv2yvS1Oba72aPnBimoQ7VXz1yuRK3/uFPnsIIH1Qrocz9frbjSSyaxfUljFBY; Expires=Thu, 16 Feb 2023 02:43:45 GMT; Path=/
AWSALBCORS=CgvEB6vJn2wmOjWVVsPNV3zAEEC64xAHaxubOSl3mseNjYa7PjydXwXVGmv2caUv2yvS1Oba72aPnBimoQ7VXz1yuRK3/uFPnsIIH1Qrocz9frbjSSyaxfUljFBY; Expires=Thu, 16 Feb 2023 02:43:45 GMT; Path=/; SameSite=None; Secure
Content-Encoding: gzip
Last-Modified: Sat, 10 Sep 2022 15:12:10 GMT
Accept-Ranges: bytes
ETag: "081b4b227c5d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 3d2254db64618fd4b1915e5b6ea2fd4d
542a2a05ce51215616bd7db4332af8ccf4dbc3d9
dc9651e87bd870de66c5024cee6765a8dc32a548da72b5ee1b3998f3d7eba4ce
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 13:42:55 GMT
Expires: Wed, 15 Feb 2023 13:42:54 GMT
Etag: "542a2a05ce51215616bd7db4332af8ccf4dbc3d9"
Cache-Control: max-age=557348,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79694260aecbb4ff-OSL
cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyNDk1NjE5NDIzOA==&forward=&google_tc=
142.250.74.98302 Found 269 B URL HTTP/2 cm.g.doubleclick.net/pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyNDk1NjE5NDIzOA==&forward=&google_tc=
IP 142.250.74.98:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 2ac1f21e70e438c7e2193d02ee7e9be0
f9a11bb626bad146751fc166f96b91f6aeae7eab
de4a04a623ca095cd229a54edeb3120d9dc94d227198b75cb9a0a69677ed7c85
GET /pixel?in=0&google_nid=zeta_interactive&google_cm=&google_sc=&google_hm=NTEyNDMyMjMyNDk1NjE5NDIzOA==&forward=&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20812714p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
date: Thu, 09 Feb 2023 02:43:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 269
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ib.adnxs.com/setuid?entity=18&code=5124322324956194238
185.89.210.122307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/setuid?entity=18&code=5124322324956194238
IP 185.89.210.122:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /setuid?entity=18&code=5124322324956194238 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Thu, 09 Feb 2023 02:43:45 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
Location: https://ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5124322324956194238
AN-X-Request-Uuid: fd1d8a8f-03ea-449f-8a90-7a024ead4055
Set-Cookie: uuid2=7349675803290499064; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 10-May-2023 02:43:45 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 954.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
scout.salesloft.com/i
52.1.188.113200 OK 48 B IP 52.1.188.113:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 4bc79243229c97698bb967ee4a535c8a
0d15ff925187b2a9a17ff042984a4f8b77148d81
19d9484f95d3aab811f67c4d722fd5299aee050983948493a0d0390196c19f25
GET /i HTTP/1.1
Host: scout.salesloft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:45 GMT
content-type: application/json; charset=utf-8
content-length: 48
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://www.avidxchange.com
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
x-request-id: 79499df8f41d43408f435d155b65b02e
set-cookie: site_identity=f368294d-dcce-423f-913d-a1ee76683ddc; path=/; expires=Fri, 09 Feb 2024 02:43:45 GMT; max-age=31536000; HttpOnly
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.24200 OK 1.8 kB IP 192.124.249.24:0
Hash 8cfa3dfafd1a23dd05c2941f3f086b69
f6fb05c9f36f61b26a1ce1d3b14a0eb1ace6a9d5
87287df49962efc4d53cae17052e9df11407a7f48cb1675d5239e9e1e3b4c7ea
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 09 Feb 2023 02:43:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 08 Feb 2023 21:44:25 GMT
Expires: Thu, 09 Feb 2023 21:44:25 GMT
ETag: "f6fb05c9f36f61b26a1ce1d3b14a0eb1ace6a9d5"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 054fdcff5853ca82fe55fb7655ec00c4
b048e1d16384aeaeac003db9119c30fe78ec4054
62ad987e23c51b53598d860d77e3ff16525632567e9098a20ea557ca8c7f007b
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3367
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:45 GMT
Last-Modified: Thu, 09 Feb 2023 01:47:39 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 75df5ba991833566d7aacd29d600f025
b37d42a8c9749379888b5038eb047d94051063a5
bbc0dc4840d9b7953d572f2ddae4bbbf087f54d7fc117d25751c3bf99eaf5d0c
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6369
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:45 GMT
Last-Modified: Thu, 09 Feb 2023 00:57:36 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
p.rfihub.com/cm?pub=24472&in=1
193.0.160.128302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=24472&in=1
IP 193.0.160.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=24472&in=1 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 302 Found
Date: Thu, 09 Feb 2023 02:43:45 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0MTI2NjM3MjQ3NDc3MTU2MxTiM9Q1j8_LKyr1zfSvMDEFAFo4sfUlAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 5 Mar 2024 02:43:45 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0MTI2NjM3MjQ3NDc3MTU2MxTiM9Q1j8_LKyr1zfSvMDEFAFo4sfUlAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_7vFwmtoZm5qaWhgZmRqZmYEAFav1tMQAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 5 Mar 2024 02:43:45 GMT; Secure; SameSite=None
Location: https://ps.eyeota.net/match?uid=5142336721717745361&bid=omt9pi0
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5cee7b98e5150c1f893636a54fc4a6a3
a4a5c0b5271d7489985e25bc9c5d912d4e2552d6
695a2faaf6485e37d403123c99b79a6c3cdf768592b487862cc23a10a6ab407e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2774
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:45 GMT
Last-Modified: Thu, 09 Feb 2023 01:57:31 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0bdb7270303181a8741369fcfa9709e7
e85aa6393d2a1013b0546050c5158a5685c6feb3
23fd96172c8f72d73d8b2a85d29684d36d3037df3247e294f15259724eebcaae
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4123
Cache-Control: max-age=127188
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:45 GMT
Etag: "63e39b9a-1d7"
Expires: Fri, 10 Feb 2023 14:03:33 GMT
Last-Modified: Wed, 08 Feb 2023 12:54:50 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
live.rezync.com/pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5124322324956194238&referrer=http%3A%2F%2Fgo.avidxchange.com%2F
54.230.111.7302 Found 759 B URL HTTP/2 live.rezync.com/pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5124322324956194238&referrer=http%3A%2F%2Fgo.avidxchange.com%2F
IP 54.230.111.7:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (673)
Hash ccfa869a9acdb286bba94e2d3e4532ba
6329fc9c56d831882e8079cbda7c2e0abdf5c96c
34d3e6045b693eb41eba2aff1e410951713b260b6af9a80b6214148d0a193fd4
GET /pixel?c=bd8618c307ae9885a12561b7191e2cea&cid=5124322324956194238&referrer=http%3A%2F%2Fgo.avidxchange.com%2F HTTP/1.1
Host: live.rezync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-type: text/html; charset=utf-8
content-length: 759
location: https://p.rfihub.com/cm?pub=39342&in=0&userid=39df7902-e7cf-49ae-8be0-b38989deb2f8%3A1675910625.593869&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D39df7902-e7cf-49ae-8be0-b38989deb2f8%253A1675910625.593869%26_%3D1675910625.5950348&cb=1675910625.5950563
date: Thu, 09 Feb 2023 02:43:45 GMT
set-cookie: zync-uuid=39df7902-e7cf-49ae-8be0-b38989deb2f8:1675910625.593869; Domain=rezync.com; Expires=Tue, 08 Aug 2023 02:43:45 GMT; Path=/; SameSite=None; Secure
sd-session-id=.eJwNyksOgyAQANC7zFoamOE3XMaIDAlppY3YTY13r8uXvBPmj-zb0qUfkI79KxOsr3ZrQDphtN8mT0jgDFpCJLTsvGGLFOGaYMgY7d3nVu5DXGpgjUrCWpXlRVTMolWmyJGLZKwxGR8cG-3RPRxT9AzXH5rbJfE.Y-Rd4Q.SwqbhWgi2K8Wzb9FCJOseQR2ZnA; Expires=Tue, 08 Aug 2023 02:43:45 GMT; HttpOnly; Path=/; SameSite=None; Secure
vary: Cookie
server: lighttpd/1.4.59
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xknCMdqCq80r0QfThT4RFT1q9EcCKBhzFZJcLHcLJnJedZfCru671w==
X-Firefox-Spdy: h2
dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5124322324956194238&forward=
185.80.36.245302 Found 0 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5124322324956194238&forward=
IP 185.80.36.245:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=57&external_user_id=5124322324956194238&forward= HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 09 Feb 2023 02:43:45 GMT
Server: Apache
Cache-Control: no-cache
Expires: 0
Location: /rum?cm_dsp_id=57&external_user_id=5124322324956194238&forward=&C=1
P3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
Pragma: no-cache
Content-Length: 0
Set-Cookie: CMID=Y.Rd4YqpOc0E4ix9dJzMgAAA; Path=/; Domain=casalemedia.com; Expires=Fri, 09 Feb 2024 02:43:45 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=4424; Path=/; Domain=casalemedia.com; Expires=Wed, 10 May 2023 02:43:45 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=4424; Path=/; Domain=casalemedia.com; Expires=Wed, 10 May 2023 02:43:45 GMT; Max-Age=7776000; Secure; SameSite=None
Keep-Alive: timeout=1, max=500
Connection: Keep-Alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 74f269ea6e0e5b8a5e9addb3b3e5ca39
4127eaa8db4d48a3be478e7b5a36b23d76965e3a
3b57a7b6466157656355da406be93258755ab94fa34af42da551189b5b399997
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2710
Cache-Control: max-age=122549
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:45 GMT
Etag: "63e38f00-1d7"
Expires: Fri, 10 Feb 2023 12:46:14 GMT
Last-Modified: Wed, 08 Feb 2023 12:01:04 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
us-u.openx.net/w/1.0/sd?id=537073062&val=5124322324956194238&r=
35.244.159.8200 OK 43 B URL HTTP/2 us-u.openx.net/w/1.0/sd?id=537073062&val=5124322324956194238&r=
IP 35.244.159.8:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /w/1.0/sd?id=537073062&val=5124322324956194238&r= HTTP/1.1
Host: us-u.openx.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept
server: OXGW/0.0.0
pragma: no-cache
p3p: CP="CUR ADM OUR NOR STA NID"
expires: Mon, 26 Jul 1997 05:00:00 GMT
date: Thu, 09 Feb 2023 02:43:45 GMT
content-type: image/gif
content-length: 43
cache-control: private, max-age=0, no-cache
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cnvrsns.clickmeter.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 Feb 2023 15:38:44 GMT
expires: Tue, 06 Feb 2024 15:38:44 GMT
cache-control: public, max-age=31536000
age: 212701
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sync.search.spotxchange.com/partner?adv_id=7180&uid=5124322324956194238&img=1
185.94.180.126302 Found 0 B URL HTTP/1.1 sync.search.spotxchange.com/partner?adv_id=7180&uid=5124322324956194238&img=1
IP 185.94.180.126:0
ASN #35220 SpotXchange, INC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /partner?adv_id=7180&uid=5124322324956194238&img=1 HTTP/1.1
Host: sync.search.spotxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx
Date: Thu, 09 Feb 2023 02:43:45 GMT
Content-Type: text/plain
Content-Length: 0
Connection: keep-alive
Set-Cookie: audience=92b37f67-a823-11ed-8cb9-155da6fd0106; expires=Thu, 09-Mar-2023 02:43:45 GMT; path=/; domain=.spotxchange.com; SameSite=none
Location: /partner?adv_id=7180&uid=5124322324956194238&img=1&__user_check__=1&sync_id=92b37fbd-a823-11ed-8cb9-155da6fd0106
X-fe: 91
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Cache-Control: no-store, no-cache, must-revalidate, proxy-revalidate, max-age=0
x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5124322324956194238
23.38.201.22200 OK 43 B URL HTTP/2 x.dlx.addthis.com/e/rocketfuel_sync?na_exid=5124322324956194238
IP 23.38.201.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /e/rocketfuel_sync?na_exid=5124322324956194238 HTTP/1.1
Host: x.dlx.addthis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
content-length: 43
expires: Thu, 09 Feb 2023 02:43:45 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 09 Feb 2023 02:43:45 GMT
strict-transport-security: max-age=2628000
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=1121&dpuuid=5124322324956194238&redir=
54.72.143.161302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=1121&dpuuid=5124322324956194238&redir=
IP 54.72.143.161:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=1121&dpuuid=5124322324956194238&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v046-03617f131.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5124322324956194238&redir=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=64252611766900006142687126991839504318; Max-Age=15552000; Expires=Tue, 08 Aug 2023 02:43:45 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: 1fCL+lSeSv4=
Content-Length: 0
Connection: keep-alive
fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
216.58.207.227200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 13052, version 1.0\012- data
Hash 7cf79fbd1df848510d7352274efc2401
5540b5a26cc7dfe25294c4eabe011e2c6cd60143
bc9a16cd945457ad9463cdaed95129b01c589466978dfee3d019d9c604b2171a
GET /s/sourcesanspro/v21/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://cnvrsns.clickmeter.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13052
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 22:02:03 GMT
expires: Mon, 05 Feb 2024 22:02:03 GMT
cache-control: public, max-age=31536000
age: 276102
last-modified: Wed, 27 Apr 2022 16:09:03 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 727 B IP 93.184.220.29:0
Hash 67ecd798982343e2efff5ea5c2fb5c9a
512d211e46f30686d4cd78ec9acc1eac736cc9f3
14ba4e09f1ee303928fd99d0694cd9c970303f948cfa4629360aa1df8e99c36f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3348
Cache-Control: max-age=103373
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:45 GMT
Etag: "63e3419a-2d7"
Expires: Fri, 10 Feb 2023 07:26:38 GMT
Last-Modified: Wed, 08 Feb 2023 06:30:50 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 727
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash beaa6502cac0d8464d58a86f0f4e4f2b
b66189e40ff7633e8136c7051bd8c6c43e110a26
db9b707f02f601c5cc831fcb1679b907f8dda2bf2b5489e14071b99ea2681013
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 09 Feb 2023 02:43:45 GMT
Last-Modified: Thu, 09 Feb 2023 01:47:19 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MWyO5u8oE8fcb-lu8hToSw2dqEcZVvg2tfgGw9U-PGLirTd2m8vbEw==
Age: 3386
ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5124322324956194238
185.89.210.122200 OK 43 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fsetuid%3Fentity%3D18%26code%3D5124322324956194238
IP 185.89.210.122:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 592ebefc7104d681d57852665e9ad514
15cdf8df32aa251dd6dd590a60bf9cf74474e7c5
4b5b6b15c6255109e06720cce42a06d3aead8b7874423d9c52cb0303212c25ef
GET /bounce?%2Fsetuid%3Fentity%3D18%26code%3D5124322324956194238 HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20812714p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Thu, 09 Feb 2023 02:43:45 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Accept-CH: Sec-CH-UA-Full-Version-List,Sec-CH-UA-Arch,Sec-CH-UA-Model,Sec-CH-UA-Platform-Version,Sec-CH-UA-Bitness
AN-X-Request-Uuid: 16c3dbae-d31f-4c7e-bb4e-ea724e45defb
Set-Cookie: anj=dTM7k!M4/YErk#WF']wIg2E?evpEP%!]tbPl1MNu::wpAk`W=me:[2Tk_?#_jFL>ke8uVyn<S-atD^F.!_6-zQEVk`!)l^zgqDdH; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 10-May-2023 02:43:45 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 954.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
beacon.krxd.net/usermatch.gif?partner_id=rfuel&partner_user_id=5124322324956194238
18.203.108.155204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner_id=rfuel&partner_user_id=5124322324956194238
IP 18.203.108.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner_id=rfuel&partner_user_id=5124322324956194238 HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Thu, 09 Feb 2023 02:43:45 GMT
set-cookie: _kuid_=PXlFRlEb; Expires=Tue, 08-Aug-23 02:43:45 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n015-dub-prod.krxd.net
x-request-time: D=29 t=1675910625
X-Firefox-Spdy: h2
status.geotrust.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 054fdcff5853ca82fe55fb7655ec00c4
b048e1d16384aeaeac003db9119c30fe78ec4054
62ad987e23c51b53598d860d77e3ff16525632567e9098a20ea557ca8c7f007b
POST / HTTP/1.1
Host: status.geotrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3367
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 09 Feb 2023 02:43:45 GMT
Last-Modified: Thu, 09 Feb 2023 01:47:39 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5124322324956194238
52.58.71.199200 OK 43 B URL HTTP/2 aa.agkn.com/adscores/g.pixel?sid=9212192898&rf=5124322324956194238
IP 52.58.71.199:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /adscores/g.pixel?sid=9212192898&rf=5124322324956194238 HTTP/1.1
Host: aa.agkn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:45 GMT
content-type: image/gif
content-length: 43
server: AAWebServer
p3p: policyref="https://www.agkn.com/p3p/p3p.xml",CP="NOI NID"
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: accept, cache-control, origin, x-requested-with, x-file-name, content-type
X-Firefox-Spdy: h2
sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D
151.101.130.49302 Found 0 B URL HTTP/2 sync-tm.everesttech.net/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D
IP 151.101.130.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: CP="NOI DSP COR LAW PSAo PSDo IVAo IVDo OUR BUS UNI DEM"
access-control-allow-origin: *
set-cookie: everest_g_v2=g_surferid~Y_Rd4QAAARoZqAAb; Path=/; Domain=.everesttech.net; Expires=Fri, 09-Feb-2024 02:43:45 GMT; Max-Age=31536000
location: https://sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y_Rd4QAAARoZqAAb
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Thu, 09 Feb 2023 02:43:45 GMT
via: 1.1 varnish
x-served-by: cache-bma1628-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1675910626.699152,VS0,VE92
cache-control: no-cache
pragma: no-cache
content-length: 0
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 5eecee8746b80be9e0c125cd1a6fbe62
6bb07051e8d9ef26d47f7df9846f589178d77cbb
adc26481b4eb6697f772d1d79de38769c179963e7e9df9b093d368f031472345
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:45 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 07 Feb 2023 13:56:50 GMT
Expires: Tue, 14 Feb 2023 13:56:49 GMT
Etag: "6bb07051e8d9ef26d47f7df9846f589178d77cbb"
Cache-Control: max-age=471783,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79694262efbcb4ff-OSL
a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
193.0.160.128200 OK 42 B URL HTTP/1.1 a.rfihub.com/cm?pub=445&in=0&forward=&google_error=3
IP 193.0.160.128:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /cm?pub=445&in=0&forward=&google_error=3 HTTP/1.1
Host: a.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20812714p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:45 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0sDSzMDUzMjM0NjU2NDQ3NhHiM9StNMg1TjEwz89K8jQAAMr-aJ8lAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 5 Mar 2024 02:43:45 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0sDSzMDUzMjM0NjU2NDQ3NhHiM9StNMg1TjEwz89K8jQAAMr-aJ8lAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
euds=H4sIAAAAAAAA_-NicjUGAEAxo38EAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_-NicjUO4jU0Mze1NDQwMzI1tzQGAODMtdETAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 5 Mar 2024 02:43:45 GMT; Secure; SameSite=None
Cache-Control: no-cache
Content-Type: image/gif
Content-Length: 42
Server: Jetty(9.3.29.v20201019)
sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y_Rd4QAAARoZqAAb
151.101.130.49200 OK 85 B URL HTTP/2 sync-tm.everesttech.net/ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y_Rd4QAAARoZqAAb
IP 151.101.130.49:0
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 5bec6606b8392065f9da9898ca6f7b14
73ac5b01b5e3293fb792179626e7f8369cdb944d
acccc501aa6afa3cfac15e8ddccf1561deed2ed08c2f7d652abbdbe9aa71609a
GET /ct/upi/pid/Mlpt2JaG/?redir=https%3A%2F%2Fp.rfihub.com%2Fcm%3Fin%3D1%26pub%3D21653%26userid%3D%24%7BTM_USER_ID%7D&_test=Y_Rd4QAAARoZqAAb HTTP/1.1
Host: sync-tm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20812714p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
server: Jetty(9.4.35.v20201120)
accept-ranges: bytes
date: Thu, 09 Feb 2023 02:43:45 GMT
via: 1.1 varnish
age: 2295
x-served-by: cache-bma1628-BMA
x-cache: HIT
x-cache-hits: 1003
x-timer: S1675910626.805460,VS0,VE0
cache-control: no-cache
pragma: no-cache
content-length: 85
X-Firefox-Spdy: h2
js.callrail.com/group/0/2883f105f08d7aabf45a/12/icap.js?t=1675910682628&GoogleAnalytics__ga=GA1.2.244140512.1675910680&ga=GA1.2.244140512.1675910680&uuid=b2f14f1c-0161-4c35-aa3b-5c82017fd246&ids%5B%5D=993629708
54.230.111.24200 OK 65 B URL HTTP/2 js.callrail.com/group/0/2883f105f08d7aabf45a/12/icap.js?t=1675910682628&GoogleAnalytics__ga=GA1.2.244140512.1675910680&ga=GA1.2.244140512.1675910680&uuid=b2f14f1c-0161-4c35-aa3b-5c82017fd246&ids%5B%5D=993629708
IP 54.230.111.24:0
Hash 5311fdde929f553ec998afab508b1087
1f9f82e86cd3f6611f5f078fe67b044acb4a2f17
69ff0dbd4179877e9e2858e9987c50f0ccd9fe01c7003ab5d7c8a08c601b6320
GET /group/0/2883f105f08d7aabf45a/12/icap.js?t=1675910682628&GoogleAnalytics__ga=GA1.2.244140512.1675910680&ga=GA1.2.244140512.1675910680&uuid=b2f14f1c-0161-4c35-aa3b-5c82017fd246&ids%5B%5D=993629708 HTTP/1.1
Host: js.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Thu, 09 Feb 2023 02:43:45 GMT
cache-control: max-age=0, private, must-revalidate
etag: W/"1643b5cec44cc597bc2cce3448ce5434"
x-request-id: f9ca18df-6b35-494c-a906-57ac364b5505
x-runtime: 0.023073
x-cache: Miss from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jSiDWl4ICTxBIOymVORV7Oha7vgSP3qRbWxgQg518yaojMuZKU3pxw==
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=119&user_id=5124322324956194238&expires=30
3.65.209.188302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=119&user_id=5124322324956194238&expires=30
IP 3.65.209.188:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=119&user_id=5124322324956194238&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 09 Feb 2023 02:43:45 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5124322324956194238&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=fa769055-423e-4015-b064-ccd4156e4bd9; path=/; expires=Fri, 09-Feb-2024 02:43:45 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675910625; path=/; expires=Fri, 09-Feb-2024 02:43:45 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1675910625; path=/; expires=Fri, 09-Feb-2024 02:43:45 GMT; domain=.bidswitch.net; samesite=none; secure
c=1675910625; path=/; expires=Fri, 09-Feb-2024 02:43:45 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
p.rfihub.com/cm?pub=39342&in=0&userid=39df7902-e7cf-49ae-8be0-b38989deb2f8%3A1675910625.593869&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D39df7902-e7cf-49ae-8be0-b38989deb2f8%253A1675910625.593869%26_%3D1675910625.5950348&cb=1675910625.5950563
193.0.160.128302 Found 0 B URL HTTP/1.1 p.rfihub.com/cm?pub=39342&in=0&userid=39df7902-e7cf-49ae-8be0-b38989deb2f8%3A1675910625.593869&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D39df7902-e7cf-49ae-8be0-b38989deb2f8%253A1675910625.593869%26_%3D1675910625.5950348&cb=1675910625.5950563
IP 193.0.160.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cm?pub=39342&in=0&userid=39df7902-e7cf-49ae-8be0-b38989deb2f8%3A1675910625.593869&forward=https%3A//idsync.rlcdn.com/501709.gif%3Fpartner_uid%3D39df7902-e7cf-49ae-8be0-b38989deb2f8%253A1675910625.593869%26_%3D1675910625.5950348&cb=1675910625.5950563 HTTP/1.1
Host: p.rfihub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20812714p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Date: Thu, 09 Feb 2023 02:43:45 GMT
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Set-Cookie: rud=H4sIAAAAAAAA_-MSNjU0MjE2MjI2MrE0NTO0NDEyNRXiM9Q1TitMjDQMCXX2LigEAESPPWolAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 5 Mar 2024 02:43:45 GMT; Secure; SameSite=None
ruds=H4sIAAAAAAAA_-MSNjU0MjE2MjI2MrE0NTO0NDEyNRXiM9Q1TitMjDQMCXX2LigEAESPPWolAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
euds=H4sIAAAAAAAA_wXByRGAQAgEwI_pYLEgx5iNuBCIkdv9Ha7YE2ChjnfowtOU1UylicTuksl7eRgWu9hp0HT8VfX1GDkAAAA; Path=/; Domain=.rfihub.com; Secure; SameSite=None
eud=H4sIAAAAAAAA_0XIsRWAMAgFwAmsMge-BAzw3UYMDGTptJZeeU9TwSpDZ0q7iw5cSR7ZKcThWBlcfg61idGV5z4hrnjb9p-zfeJPQZZJAAAA; Path=/; Domain=.rfihub.com; Expires=Tue, 5 Mar 2024 02:43:45 GMT; Secure; SameSite=None
Location: https://idsync.rlcdn.com/501709.gif?partner_uid=39df7902-e7cf-49ae-8be0-b38989deb2f8%3A1675910625.593869&_=1675910625.5950348
Content-Length: 0
Server: Jetty(9.3.29.v20201019)
dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5124322324956194238&forward=&C=1
185.80.36.245200 OK 43 B URL HTTP/1.1 dsum-sec.casalemedia.com/rum?cm_dsp_id=57&external_user_id=5124322324956194238&forward=&C=1
IP 185.80.36.245:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=57&external_user_id=5124322324956194238&forward=&C=1 HTTP/1.1
Host: dsum-sec.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20812714p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:45 GMT
Server: Apache
Cache-Control: no-cache
Content-Type: image/gif
Expires: 0
Pragma: no-cache
Content-Length: 43
Keep-Alive: timeout=1, max=499
Connection: Keep-Alive
ocsp.usertrust.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 24a37cc3f8ea441c4f4fd275772259c3
ed9197165f548d47f0c2849f045d1d4d67b38a99
61e075b553d09a2767f440ed5e814de74414a3368ab7999052edd785748093b6
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 08 Feb 2023 09:01:05 GMT
Expires: Wed, 15 Feb 2023 09:01:04 GMT
Etag: "ed9197165f548d47f0c2849f045d1d4d67b38a99"
Cache-Control: max-age=602648,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 372
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 796942638b01b511-OSL
x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5124322324956194238&expires=30
3.65.209.188200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=119&user_id=5124322324956194238&expires=30
IP 3.65.209.188:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=119&user_id=5124322324956194238&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20812714p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:45 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5124322324956194238&redir=
54.72.143.161200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5124322324956194238&redir=
IP 54.72.143.161:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=1121&dpuuid=5124322324956194238&redir= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20812714p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v046-0be6689a7.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: SMHkyfOlTSI=
Content-Length: 59
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash b62cc5ef1a79b8b97b5715d57e0af6e3
1aa6fa0822a1583d3fbca5e8d8b2c36954bc218c
82810671603c33f2b44f0e95a7365717731c7a31e2b4f15d4c308ec5552c3f81
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=129788
Date: Thu, 09 Feb 2023 02:43:45 GMT
Etag: "63e3a84f-1d7"
Expires: Fri, 10 Feb 2023 14:46:53 GMT
Last-Modified: Wed, 08 Feb 2023 13:49:03 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: VhYE7ex99FOphKoeDifqg6APGc8ih1ZHJnmGeIv_EkQoXeY4-PJLcA==
Age: 3470
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 2631e1f2e1e103d529b30009bc0ac580
56aa15f39c5266bfdbfa7bd79681f866f5c39988
0505b8dd9efe74afc6699331b39415e8ccda5da67cd153aa2ef57d28ff9023fe
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=141656
Date: Thu, 09 Feb 2023 02:43:45 GMT
Etag: "63e3d82a-1d7"
Expires: Fri, 10 Feb 2023 18:04:41 GMT
Last-Modified: Wed, 08 Feb 2023 17:13:14 GMT
Server: ECS (nyb/1D2F)
X-Cache: Miss from cloudfront
Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: EDBsCJGXl76achpa8-nMYsk78OXcnjbenLKHyKqHN3aF3rAfAfO8UQ==
Age: 3087
ps.eyeota.net/match?uid=5142336721717745361&bid=omt9pi0
3.120.214.218200 OK 0 B URL HTTP/1.1 ps.eyeota.net/match?uid=5142336721717745361&bid=omt9pi0
IP 3.120.214.218:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?uid=5142336721717745361&bid=omt9pi0 HTTP/1.1
Host: ps.eyeota.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://20812714p.rfihub.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Set-Cookie: SERVERID=21295~DM; Domain=eyeota.net; Path=/; Expires=Thu, 09 Feb 2023 02:53:45 GMT; Secure; SameSite=None;
P3P: CP="CURa ADMa DEVa TAIo PSAo PSDo OUR SAMo BUS UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR", policyref="http://ps.eyeota.net/w3c/p3p.xml"
Content-Length: 0
Date: Thu, 09 Feb 2023 02:43:45 GMT
bpi.rtactivate.com/tag/?id=11017&user_id=5124322324956194238
52.86.27.6200 OK 43 B URL HTTP/2 bpi.rtactivate.com/tag/?id=11017&user_id=5124322324956194238
IP 52.86.27.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /tag/?id=11017&user_id=5124322324956194238 HTTP/1.1
Host: bpi.rtactivate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: awselb/2.0
date: Thu, 09 Feb 2023 02:43:45 GMT
content-type: image/gif
content-length: 43
X-Firefox-Spdy: h2
ws14.hotjar.com/api/v2/client/ws
52.30.247.208101 Switching Protocols 0 B URL HTTP/1.1 ws14.hotjar.com/api/v2/client/ws
IP 52.30.247.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /api/v2/client/ws HTTP/1.1
Host: ws14.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.avidxchange.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JDMKndU6fYwYRtJJ5wKa/w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Thu, 09 Feb 2023 02:43:45 GMT
Content-Type: application/octet-stream
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: P7AChrtw5LjXAhNM1lUPn0++1Yw=
Sec-WebSocket-Extensions: permessage-deflate
598-wvb-246.mktoresp.com/webevents/visitWebPage?_mchNc=1675910682237&_mchCn=&_mchId=598-WVB-246&_mchTk=_mch-avidxchange.com-1675910682236-59805&mkt_tok=NTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_mchHo=www.avidxchange.com&_mchPo=&_mchRu=%2Fprivacy-policy%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=http%3A%2F%2Fgo.avidxchange.com%2F&_mchQp=utm_source%3DFooter__-__utm_medium%3Demail__-__utm_campaign%3DBPTemplate__-__mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg
192.28.147.68200 OK 28 B URL HTTP/1.1 598-wvb-246.mktoresp.com/webevents/visitWebPage?_mchNc=1675910682237&_mchCn=&_mchId=598-WVB-246&_mchTk=_mch-avidxchange.com-1675910682236-59805&mkt_tok=NTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_mchHo=www.avidxchange.com&_mchPo=&_mchRu=%2Fprivacy-policy%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=http%3A%2F%2Fgo.avidxchange.com%2F&_mchQp=utm_source%3DFooter__-__utm_medium%3Demail__-__utm_campaign%3DBPTemplate__-__mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg
IP 192.28.147.68:0
File type ASCII text, with no line terminators
Hash 9dafc521bd59955b4986f0fc3777f77a
5a572b4730d4a2bce2fa35597a0993c649f26c74
e4e90a7b8bacdfe395361149a9fd42f9192b68bdf1497e4454d0ab4c4917f746
POST /webevents/visitWebPage?_mchNc=1675910682237&_mchCn=&_mchId=598-WVB-246&_mchTk=_mch-avidxchange.com-1675910682236-59805&mkt_tok=NTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_mchHo=www.avidxchange.com&_mchPo=&_mchRu=%2Fprivacy-policy%2F&_mchPc=https%3A&_mchVr=162&_mchEcid=&_mchHa=&_mchRe=http%3A%2F%2Fgo.avidxchange.com%2F&_mchQp=utm_source%3DFooter__-__utm_medium%3Demail__-__utm_campaign%3DBPTemplate__-__mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg HTTP/1.1
Host: 598-wvb-246.mktoresp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx/1.20.1
Date: Thu, 09 Feb 2023 02:43:45 GMT
Content-Type: text/plain; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Request-Id: cbf53b95-ed8a-48d4-af7c-0892f86b779b
Content-Encoding: gzip
Access-Control-Allow-Origin: *
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 0cadc3bba66bbca1ec57d0812926077c
c2f7e5c47a259fe4b681683048355ef80fbb285a
c59a6a605fdc01ee5ac91d9d1338cb1748b197da840c50d7ef43c629b2618974
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=154812
Date: Thu, 09 Feb 2023 02:43:45 GMT
Etag: "63e3fe1d-1d7"
Expires: Fri, 10 Feb 2023 21:43:57 GMT
Last-Modified: Wed, 08 Feb 2023 19:55:09 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OLLTmEVRqILn0m8uoiBzdygK0lbOMeI6R0yJmMe8GLBgKwhsGNI-wA==
Age: 6529
clickmeter-com.s3.amazonaws.com/Web/404.png
52.216.94.59200 OK 6.9 kB URL HTTP/1.1 clickmeter-com.s3.amazonaws.com/Web/404.png
IP 52.216.94.59:0
File type PNG image data, 121 x 157, 8-bit/color RGBA, non-interlaced\012- data
Hash 45fa6690ad9b9966750397f9a8b03b24
5e36826427ffe77f324681b284631104c6ccf7bf
dd35d66e644c21521832234d977cd6f7c0f643a6e493f00424e9d1bce6297f7a
GET /Web/404.png HTTP/1.1
Host: clickmeter-com.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 5uH5pfjncVreO7do3R13pPDVl61lop/PJd8jlrIqUeD4LfKM9hhs2cTjF6GNGyfKrLBCWD7xO0I=
x-amz-request-id: JM5MKWE6P7FRZMKX
Date: Thu, 09 Feb 2023 02:43:46 GMT
Last-Modified: Fri, 19 Sep 2014 09:52:49 GMT
ETag: "45fa6690ad9b9966750397f9a8b03b24"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 6860
content.hotjar.io/
34.240.146.229200 OK 56 B IP 34.240.146.229:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bfaebce2208a1b135f87f995b45d7914
c1c5f7f0d36725b81b1108e0176576cec6ff277f
d3fad38bb81dba06980fbe4c4f31c84cdc338741b03f28eb93d528ac89ab7683
POST / HTTP/1.1
Host: content.hotjar.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Content-Type: text/plain; charset=UTF-8
Content-Length: 355796
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:46 GMT
content-type: application/json
content-length: 56
vary: Origin
access-control-allow-origin: *
X-Firefox-Spdy: h2
api-c52.nice-incontact.com/InContactAuthorizationServer/Token
50.112.182.136204 No Content 0 B URL HTTP/1.1 api-c52.nice-incontact.com/InContactAuthorizationServer/Token
IP 50.112.182.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /InContactAuthorizationServer/Token HTTP/1.1
Host: api-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://home-c52.nice-incontact.com/
Origin: https://home-c52.nice-incontact.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
Date: Thu, 09 Feb 2023 02:43:46 GMT
Connection: keep-alive
Set-Cookie: AWSALB=3oCNALBWAjAXs9x29eTfE4CG0H4SYdE+BAXjByBDkbOx3TStIMZtDGB1HxukzJk1u/qoPqC4DvV5eS9J4ju4eIaoZEIBCg7itmaXliu2g6NlrMxI4SP7ijE9gRpe; Expires=Thu, 16 Feb 2023 02:43:46 GMT; Path=/
AWSALBCORS=3oCNALBWAjAXs9x29eTfE4CG0H4SYdE+BAXjByBDkbOx3TStIMZtDGB1HxukzJk1u/qoPqC4DvV5eS9J4ju4eIaoZEIBCg7itmaXliu2g6NlrMxI4SP7ijE9gRpe; Expires=Thu, 16 Feb 2023 02:43:46 GMT; Path=/; SameSite=None; Secure
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: deflate
Expires: -1
Vary: Accept-Encoding
Server: Powered by Nice CXOne
Access-Control-Allow-Origin: https://home-c52.nice-incontact.com
Access-Control-Expose-Headers: Content-Encoding,icStatusDescription
Access-Control-Allow-Headers: Content-Type, Accept, Authorization, Originating-Service-Identifier, X-Correlation-ID
Access-Control-Max-Age: 86400
X-AspNet-Version: 4.0.30319
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
api-c52.nice-incontact.com/InContactAuthorizationServer/Token
50.112.182.136200 OK 681 B URL HTTP/1.1 api-c52.nice-incontact.com/InContactAuthorizationServer/Token
IP 50.112.182.136:0
Hash 3c49d62d08753da53bb20aa39579384d
2bc76c31ddcef08056a87869c29e88b88ec9b73d
523542be5bbefc8678a649f6effee46811950d8a7a17502171c463f3acb898ee
POST /InContactAuthorizationServer/Token HTTP/1.1
Host: api-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
authorization: basic UGF0cm9uIENoYXRAaW5Db250YWN0IEluYy46UmtKQk5rSXlOams1TWpZeU5FUkZSRGsxTkVOR05rSTJRVUUwT0RaRFJqQT0=
Content-Length: 55
Origin: https://home-c52.nice-incontact.com
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:46 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 681
Connection: keep-alive
Set-Cookie: AWSALB=VsDNeVq534UMwro8l3GBxgQXm4HkC0TnA2qYY+KAQ7ylZnvOWgJFrkWi57XsAeQguVmiEEoVqj6Fu5TTBCGRPu+a4IvYQWCdZ0Qbd21RDhuThb+GY85caVdb5rK2; Expires=Thu, 16 Feb 2023 02:43:46 GMT; Path=/
AWSALBCORS=VsDNeVq534UMwro8l3GBxgQXm4HkC0TnA2qYY+KAQ7ylZnvOWgJFrkWi57XsAeQguVmiEEoVqj6Fu5TTBCGRPu+a4IvYQWCdZ0Qbd21RDhuThb+GY85caVdb5rK2; Expires=Thu, 16 Feb 2023 02:43:46 GMT; Path=/; SameSite=None; Secure
Cache-Control: no-store, s-maxage=0, private
Pragma: no-cache,no-cache
Content-Encoding: deflate
Vary: Accept-Encoding
Server: Powered by Nice CXOne
Access-Control-Allow-Origin: https://home-c52.nice-incontact.com
Access-Control-Expose-Headers: Content-Encoding,icStatusDescription
X-AspNet-Version: 4.0.30319
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
sjrtp8-cdn.marketo.com/rtp-api/v1/rtp.js?aid=avidxchangeinc
23.53.48.147200 OK 0 B URL HTTP/1.1 sjrtp8-cdn.marketo.com/rtp-api/v1/rtp.js?aid=avidxchangeinc
IP 23.53.48.147:0
ASN #1299 Telia Company AB
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rtp-api/v1/rtp.js?aid=avidxchangeinc HTTP/1.1
Host: sjrtp8-cdn.marketo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Jetty(9.4.45.v20220203)
Content-Type: application/x-javascript; charset=UTF-8
Content-Length: 0
Strict-Transport-Security: max-age=63113904
Date: Thu, 09 Feb 2023 02:43:46 GMT
Connection: keep-alive
Set-Cookie: BIGipServersjrtp8_https=!MVLYRP7qCayflYdWncd96e0zKAEY/+pyaeZPz2XVas61fmwfTFbfEgRqJa03nC2yYcprw7nS4qCxJDM=; expires=Thu, 09-Feb-2023 03:18:46 GMT; path=/; Httponly; Secure
cdn.bizible.com/m/ipv?_biz_r=http%3A%2F%2Fgo.avidxchange.com%2F&_biz_h=-1777624096&_biz_u=10744f5d0c454ace8bfa99096ea67f70&_biz_s=893ffa&_biz_l=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_biz_t=1675910681343&_biz_i=Privacy%20Policy%20%7C%20AvidXchange&_biz_n=0&rnd=63722&cdn_o=a&_biz_z=1675910684072
152.195.15.58200 OK 43 B URL HTTP/2 cdn.bizible.com/m/ipv?_biz_r=http%3A%2F%2Fgo.avidxchange.com%2F&_biz_h=-1777624096&_biz_u=10744f5d0c454ace8bfa99096ea67f70&_biz_s=893ffa&_biz_l=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_biz_t=1675910681343&_biz_i=Privacy%20Policy%20%7C%20AvidXchange&_biz_n=0&rnd=63722&cdn_o=a&_biz_z=1675910684072
IP 152.195.15.58:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
GET /m/ipv?_biz_r=http%3A%2F%2Fgo.avidxchange.com%2F&_biz_h=-1777624096&_biz_u=10744f5d0c454ace8bfa99096ea67f70&_biz_s=893ffa&_biz_l=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_biz_t=1675910681343&_biz_i=Privacy%20Policy%20%7C%20AvidXchange&_biz_n=0&rnd=63722&cdn_o=a&_biz_z=1675910684072 HTTP/1.1
Host: cdn.bizible.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 374548
cache-control: no-cache, no-store
content-type: Image/GIF
date: Thu, 09 Feb 2023 02:43:46 GMT
expires: -1
last-modified: Sat, 04 Feb 2023 18:41:18 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
pragma: no-cache
server: ECS (ska/F706)
set-cookie: _BUID=10744f5d0c454ace8bfa99096ea67f70; domain=.bizible.com; path=/; max-age=31536000; SameSite=None; Secure
x-cache: HIT
content-length: 43
X-Firefox-Spdy: h2
cdn.bizibly.com/u?_biz_u=10744f5d0c454ace8bfa99096ea67f70&_biz_s=893ffa&_biz_l=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_biz_t=1675910684078&_biz_i=Privacy%20Policy%20%7C%20AvidXchange&rnd=378829&cdn_o=a&_biz_z=1675910684078
152.195.15.58200 OK 43 B URL HTTP/2 cdn.bizibly.com/u?_biz_u=10744f5d0c454ace8bfa99096ea67f70&_biz_s=893ffa&_biz_l=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_biz_t=1675910684078&_biz_i=Privacy%20Policy%20%7C%20AvidXchange&rnd=378829&cdn_o=a&_biz_z=1675910684078
IP 152.195.15.58:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
GET /u?_biz_u=10744f5d0c454ace8bfa99096ea67f70&_biz_s=893ffa&_biz_l=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_biz_t=1675910684078&_biz_i=Privacy%20Policy%20%7C%20AvidXchange&rnd=378829&cdn_o=a&_biz_z=1675910684078 HTTP/1.1
Host: cdn.bizibly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 349689
cache-control: no-cache, no-store
content-type: Image/GIF
date: Thu, 09 Feb 2023 02:43:47 GMT
expires: -1
last-modified: Sun, 05 Feb 2023 01:35:39 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
pragma: no-cache
server: ECS (ska/F70E)
set-cookie: _BUID=67aa72b26d4804d48f724e6403fe748d; domain=.bizibly.com; path=/; max-age=31536000; SameSite=None; Secure
x-cache: HIT
content-length: 43
X-Firefox-Spdy: h2
cdn.bizible.com/m/u?mapType=mkto&mapValue=id%3A598-WVB-246%26token%3A_mch-avidxchange.com-1675910682236-59805&_biz_u=10744f5d0c454ace8bfa99096ea67f70&_biz_s=893ffa&_biz_l=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_biz_t=1675910684080&_biz_i=Privacy%20Policy%20%7C%20AvidXchange&_biz_n=1&rnd=609513&cdn_o=a&_biz_z=1675910684180
152.195.15.58200 OK 43 B URL HTTP/2 cdn.bizible.com/m/u?mapType=mkto&mapValue=id%3A598-WVB-246%26token%3A_mch-avidxchange.com-1675910682236-59805&_biz_u=10744f5d0c454ace8bfa99096ea67f70&_biz_s=893ffa&_biz_l=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_biz_t=1675910684080&_biz_i=Privacy%20Policy%20%7C%20AvidXchange&_biz_n=1&rnd=609513&cdn_o=a&_biz_z=1675910684180
IP 152.195.15.58:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 6d22e4f2d2057c6e8d6fab098e76e80f
b80b11203d97fe01c5597ca3be70406ea48f5709
afe0dcfca292a0fae8bce08a48c14d3e59c9d82c6052ab6d48a22ecc6c48f277
GET /m/u?mapType=mkto&mapValue=id%3A598-WVB-246%26token%3A_mch-avidxchange.com-1675910682236-59805&_biz_u=10744f5d0c454ace8bfa99096ea67f70&_biz_s=893ffa&_biz_l=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&_biz_t=1675910684080&_biz_i=Privacy%20Policy%20%7C%20AvidXchange&_biz_n=1&rnd=609513&cdn_o=a&_biz_z=1675910684180 HTTP/1.1
Host: cdn.bizible.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Cookie: _BUID=10744f5d0c454ace8bfa99096ea67f70
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
age: 520165
cache-control: no-cache, no-store
content-type: Image/GIF
date: Thu, 09 Feb 2023 02:43:47 GMT
expires: -1
last-modified: Fri, 03 Feb 2023 02:14:22 GMT
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
pragma: no-cache
server: ECS (ska/F715)
x-cache: HIT
content-length: 43
X-Firefox-Spdy: h2
api-na1.niceincontact.com/incontactapi//services/v16.0/points-of-contact/8889afa5-797d-4d32-b1be-be5914175c53/chat-profile
99.83.255.148200 OK 1 B URL HTTP/1.1 api-na1.niceincontact.com/incontactapi//services/v16.0/points-of-contact/8889afa5-797d-4d32-b1be-be5914175c53/chat-profile
IP 99.83.255.148:0
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
OPTIONS /incontactapi//services/v16.0/points-of-contact/8889afa5-797d-4d32-b1be-be5914175c53/chat-profile HTTP/1.1
Host: api-na1.niceincontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization
Referer: https://home-c52.nice-incontact.com/
Origin: https://home-c52.nice-incontact.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:47 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: https://home-c52.nice-incontact.com
access-control-max-age: 86399
pragma: no-cache
access-control-allow-methods: GET,POST,PUT,DELETE,OPTIONS,PATCH
cache-control: no-store, private, s-maxage=0
access-control-allow-headers: Accept,Accept-Encoding,Accept-Language,Authorization,Cache-Control,Connection,Content-Language,Content-Type,Referer,User-Agent,Pragma,If-Modified-Since,X-Requested-With,App-version,authcode,Originating-Service-Identifier,Immediate-Service-Identifier,X-B3-TraceId,X-B3-SpanId
access-control-expose-headers: Accept,Accept-Encoding,Accept-Language,Authorization,Cache-Control,Connection,Content-Language,Content-Type,Referer,User-Agent,Pragma,If-Modified-Since,X-Requested-With,App-version,authcode,Originating-Service-Identifier,Immediate-Service-Identifier,X-B3-TraceId,X-B3-SpanId,Content-Encoding,icServerTime,Date,icBranchValue,icServerName,icStatusDescription
api-facade-id: ef89
api-na1.niceincontact.com/incontactapi//services/v16.0/points-of-contact/8889afa5-797d-4d32-b1be-be5914175c53/chat-profile
99.83.255.148200 Success 492 B URL HTTP/1.1 api-na1.niceincontact.com/incontactapi//services/v16.0/points-of-contact/8889afa5-797d-4d32-b1be-be5914175c53/chat-profile
IP 99.83.255.148:0
Hash b342d96e67e1de0b6def2e5503928cf8
82a1d751b4a9d9e4f7234e2861aa1a9a12616294
0394464e423910f9b2ce2e34126673475ad64b7a6f4d7aaf364022fcd4347798
GET /incontactapi//services/v16.0/points-of-contact/8889afa5-797d-4d32-b1be-be5914175c53/chat-profile HTTP/1.1
Host: api-na1.niceincontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/x-www-form-urlencoded
authorization: bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiJ9.eyJpY0JVSWQiOjQ2MDM2NTIsIm5hbWUiOiIiLCJpc3MiOiJodHRwczovL2FwaS5uaWNlLWluY29udGFjdC5jb20iLCJzdWIiOiJjbGllbnQ6MCIsImF1ZCI6IlBhdHJvbiBDaGF0QGluQ29udGFjdCBJbmMuIiwiZXhwIjoxNjc1OTE0MjI2LCJpYXQiOjE2NzU5MTA2MjYsImljU2NvcGUiOiI3IiwiaWNDbHVzdGVySWQiOiJDNTIiLCJuYmYiOjE2NzU5MTA2MjZ9.zeszqtxJaMqq2gSq9ZzQYz6Bdpv2l0WdNf-RN5DkDzvD_-Q-NUf6XHFfpQj3Pkssn25r2K-6hou_sFmOtDcz3s2SyoC0rE0bywPe-A_g2Gds5UZInnElggZNUGk3MFAHfVEkj-_8SYLs5LjNGzF_Ji6i4eizuzl1F0fgR9bf9dUvXqWIHqO7AJlPsztRuF9jiEr11S7rnxCAlf0SF_IC3lRtjHHLnYyQfwsV9Qa_NBGpY48YlOiRwr-dG3oie3BxD06FnYr6EyYir5bKDxUKvINi4oW8fVxdiXnTK_fCSUeyk6YGpVM-GbW-f6f85GzX1ufa2mrS_Py0jI6GFOf2ng
Origin: https://home-c52.nice-incontact.com
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 Success
Content-Type: application/json; charset=utf-8
Content-Length: 492
Connection: keep-alive
Cache-Control: private, no-store, s-maxage=0
Pragma: no-cache
Content-Encoding: deflate
Vary: Accept-Encoding
Server: Powered by Nice CXOne
Access-Control-Allow-Origin: https://home-c52.nice-incontact.com
Access-Control-Allow-Methods: GET,POST,PUT,DELETE,OPTIONS
Access-Control-Expose-Headers: Content-Encoding,icServerTime,Date,icBranchValue,icServerName,icStatusDescription
icServerTime: 2023-02-09T02:43:47.279Z
icServerName: AOB-C52API07
icBranchValue: 1
icStatusDescription: Success
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
Date: Thu, 09 Feb 2023 02:43:47 GMT
api-facade-id: ef89
X-Kong-Upstream-Latency: 10
X-Kong-Proxy-Latency: 1
cdn.bizible.com/xdc.js?_biz_u=10744f5d0c454ace8bfa99096ea67f70&_biz_h=-1777624096&cdn_o=a&jsVer=4.22.11.28
152.195.15.58200 OK 218 B URL HTTP/2 cdn.bizible.com/xdc.js?_biz_u=10744f5d0c454ace8bfa99096ea67f70&_biz_h=-1777624096&cdn_o=a&jsVer=4.22.11.28
IP 152.195.15.58:0
File type ASCII text, with CRLF line terminators
Hash ec9641cc05e88957256b5601c5b5e428
04399c550c9d1027fd7faa46d190f3823a40cae8
cb330047eb9bb5148d8b01e3152f1567f4a922186523591b65b29dff2afebf98
GET /xdc.js?_biz_u=10744f5d0c454ace8bfa99096ea67f70&_biz_h=-1777624096&cdn_o=a&jsVer=4.22.11.28 HTTP/1.1
Host: cdn.bizible.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Cookie: _BUID=10744f5d0c454ace8bfa99096ea67f70
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
cache-control: private, must-revalidate, max-age=21600
content-type: text/javascript; charset=utf-8
date: Thu, 09 Feb 2023 02:43:47 GMT
etag: 700C89DD
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
server: ECS (ska/F717)
set-cookie: ARRAffinity=247d33b37686b845806cd71789e679a90fb8b478222372d56333ce5bb668364e;Path=/;HttpOnly;Secure;Domain=acct.bizible.com
ARRAffinitySameSite=247d33b37686b845806cd71789e679a90fb8b478222372d56333ce5bb668364e;Path=/;HttpOnly;SameSite=None;Secure;Domain=acct.bizible.com
vary: Accept-Encoding
content-length: 218
X-Firefox-Spdy: h2
insight.adsrvr.org/track/up?adv=1r99zij&ref=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&upid=jqupdpd&upv=1.1.0
15.197.193.217200 OK 1.5 kB URL HTTP/2 insight.adsrvr.org/track/up?adv=1r99zij&ref=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&upid=jqupdpd&upv=1.1.0
IP 15.197.193.217:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c3d20ba1df3ffa37fb128e1c21fe2107
1e3f9d55f2a9e2460c0bf09c47ec009e26fde2f2
4a48bd2520e84a47dad7b20857e4fcc964b2fbc231ec57248e9c8c10e26ed5a3
GET /track/up?adv=1r99zij&ref=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&upid=jqupdpd&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:47 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
home-c52.nice-incontact.com/inContact/ChatClient/styles/svg/chat.svg
50.112.182.136200 OK 386 B URL HTTP/1.1 home-c52.nice-incontact.com/inContact/ChatClient/styles/svg/chat.svg
IP 50.112.182.136:0
File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8b6923b63818b3f6bdd93119a217181f
0694c19a6875c1c2fd7362da9c753433d59419c9
a24d3e4a62f343faf4c8ea3e1ec28f6c6bae2fc2c4870b0fb1bc8d9aa85d299c
GET /inContact/ChatClient/styles/svg/chat.svg HTTP/1.1
Host: home-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/inContact/ChatClient/index.html
Cookie: AWSALBCORS=CgvEB6vJn2wmOjWVVsPNV3zAEEC64xAHaxubOSl3mseNjYa7PjydXwXVGmv2caUv2yvS1Oba72aPnBimoQ7VXz1yuRK3/uFPnsIIH1Qrocz9frbjSSyaxfUljFBY; ASP.NET_SessionId=qwen2o5oyie0jwhuw22fmkaf
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:47 GMT
Content-Type: image/svg+xml
Content-Length: 386
Connection: keep-alive
Set-Cookie: AWSALB=+bbULaLB+zOvfQ42DMH3/sYeH5sxDjKKVS1mwt9vfD7aOy6gC4h+UztTj+P22o+K01O+tCRmgXuw+m1XJi8AiC6z8X9cQvRIIxxdCXVdKkbltBygNlyxcXvbT1aH; Expires=Thu, 16 Feb 2023 02:43:47 GMT; Path=/
AWSALBCORS=+bbULaLB+zOvfQ42DMH3/sYeH5sxDjKKVS1mwt9vfD7aOy6gC4h+UztTj+P22o+K01O+tCRmgXuw+m1XJi8AiC6z8X9cQvRIIxxdCXVdKkbltBygNlyxcXvbT1aH; Expires=Thu, 16 Feb 2023 02:43:47 GMT; Path=/; SameSite=None; Secure
Last-Modified: Sat, 10 Sep 2022 15:14:08 GMT
Accept-Ranges: bytes
ETag: "0e09f927c5d81:0"
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
home-c52.nice-incontact.com/inContact/ChatClient/styles/svg/sort-arrow.svg
50.112.182.136200 OK 903 B URL HTTP/1.1 home-c52.nice-incontact.com/inContact/ChatClient/styles/svg/sort-arrow.svg
IP 50.112.182.136:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash f7b0cd6cd878b858f00e9a28719467c6
ba73e5761711fe6171c940ddf80424ef49a1e82b
adde7699cf6827ab636fe1664a46c12be51f6c342476c4da57ec99f880da6e82
GET /inContact/ChatClient/styles/svg/sort-arrow.svg HTTP/1.1
Host: home-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/inContact/ChatClient/index.html
Cookie: AWSALBCORS=CgvEB6vJn2wmOjWVVsPNV3zAEEC64xAHaxubOSl3mseNjYa7PjydXwXVGmv2caUv2yvS1Oba72aPnBimoQ7VXz1yuRK3/uFPnsIIH1Qrocz9frbjSSyaxfUljFBY; ASP.NET_SessionId=qwen2o5oyie0jwhuw22fmkaf
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:47 GMT
Content-Type: image/svg+xml
Content-Length: 903
Connection: keep-alive
Set-Cookie: AWSALB=vRp7ctgNU1Iq5cQ5rXwxcegUKtUiCg6UXrrK83a7TDaXrAUWX9/+YMZWjFl/7xsJvDgQnxzJ9mK+NreeEUF88D9DXK6iUQRcUW2k3JoR9DYTWkGZNZAEGoF4iuDY; Expires=Thu, 16 Feb 2023 02:43:47 GMT; Path=/
AWSALBCORS=vRp7ctgNU1Iq5cQ5rXwxcegUKtUiCg6UXrrK83a7TDaXrAUWX9/+YMZWjFl/7xsJvDgQnxzJ9mK+NreeEUF88D9DXK6iUQRcUW2k3JoR9DYTWkGZNZAEGoF4iuDY; Expires=Thu, 16 Feb 2023 02:43:47 GMT; Path=/; SameSite=None; Secure
Last-Modified: Sat, 10 Sep 2022 15:14:08 GMT
Accept-Ranges: bytes
ETag: "0e09f927c5d81:0"
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
home-c52.nice-incontact.com/inContact/ChatClient/styles/themes/fonts/Roboto-Regular.woff
50.112.182.136200 OK 20 kB URL HTTP/1.1 home-c52.nice-incontact.com/inContact/ChatClient/styles/themes/fonts/Roboto-Regular.woff
IP 50.112.182.136:0
File type Web Open Font Format, TrueType, length 19520, version 2.1101\012- data
Hash bc03dc4e15adfdc212d9195e263b68e0
8302abc916a0b8dffd2c9a08782ff4799edd1d86
44729ee492010fc3989a0647666d7327b7900d48e4ea59caeb3f1263a31f55a1
GET /inContact/ChatClient/styles/themes/fonts/Roboto-Regular.woff HTTP/1.1
Host: home-c52.nice-incontact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/inContact/ChatClient/styles/themes/inContact/screen.css
Cookie: AWSALBCORS=CgvEB6vJn2wmOjWVVsPNV3zAEEC64xAHaxubOSl3mseNjYa7PjydXwXVGmv2caUv2yvS1Oba72aPnBimoQ7VXz1yuRK3/uFPnsIIH1Qrocz9frbjSSyaxfUljFBY; ASP.NET_SessionId=qwen2o5oyie0jwhuw22fmkaf
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Thu, 09 Feb 2023 02:43:47 GMT
Content-Type: application/font-woff
Content-Length: 19520
Connection: keep-alive
Set-Cookie: AWSALB=MFwvb2aNE9u3U8qxBNQznvB+cVjwKwwx6hr+4Nu/XNkWKH7ryBEPoNMYSSCJpD/LnIg1rKagXrr1RNMy5ztzE+jOVXtAeqNyjClZelauQApSO5CTkwj1DhHBOf38; Expires=Thu, 16 Feb 2023 02:43:47 GMT; Path=/
AWSALBCORS=MFwvb2aNE9u3U8qxBNQznvB+cVjwKwwx6hr+4Nu/XNkWKH7ryBEPoNMYSSCJpD/LnIg1rKagXrr1RNMy5ztzE+jOVXtAeqNyjClZelauQApSO5CTkwj1DhHBOf38; Expires=Thu, 16 Feb 2023 02:43:47 GMT; Path=/; SameSite=None; Secure
Last-Modified: Sat, 10 Sep 2022 15:14:08 GMT
Accept-Ranges: bytes
ETag: "0e09f927c5d81:0"
Server: Microsoft-IIS/8.5
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains
www.avidxchange.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 05 Jan 2023 22:36:25 GMT
etag: W/"63b750e9-4b4f"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e1a54b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/elementor/css/post-14.css?ver=1673016452
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/uploads/elementor/css/post-14.css?ver=1673016452
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/uploads/elementor/css/post-14.css?ver=1673016452 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 06 Jan 2023 14:47:32 GMT
etag: W/"63b83484-860"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e1a57b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/custom-css-js/9097.css?v=1665
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/uploads/custom-css-js/9097.css?v=1665
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/uploads/custom-css-js/9097.css?v=1665 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 04 Sep 2020 15:43:05 GMT
etag: W/"5f526089-8a8"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e6a93b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.raygun.io/raygun4js/raygun.min.js
54.230.111.32200 OK 0 B URL HTTP/2 cdn.raygun.io/raygun4js/raygun.min.js
IP 54.230.111.32:0
GET /raygun4js/raygun.min.js HTTP/1.1
Host: cdn.raygun.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 19 Jul 2022 21:15:14 GMT
server: AmazonS3
content-encoding: gzip
date: Wed, 08 Feb 2023 17:54:17 GMT
etag: W/"677413d0a23da339064232023ede5601"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GOJeOp3pC4_LQwhhDaNjEcAI7r8A2XbM3ADFlHxTVYs3hrJf6nlB7A==
age: 31768
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/themes/blankslate/style.css?ver=6.1.1
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/themes/blankslate/style.css?ver=6.1.1
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/themes/blankslate/style.css?ver=6.1.1 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 08 Nov 2022 05:06:31 GMT
etag: W/"6369e3d7-1039"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e0a52b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
partners.tremorhub.com/sync?UIRF=5124322324956194238&r=Ozt9f21NHxgu
3.208.194.102200 OK 0 B URL HTTP/2 partners.tremorhub.com/sync?UIRF=5124322324956194238&r=Ozt9f21NHxgu
IP 3.208.194.102:0
GET /sync?UIRF=5124322324956194238&r=Ozt9f21NHxgu HTTP/1.1
Host: partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://20812714p.rfihub.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:45 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
tag.demandbase.com/55882712.min.js
54.230.111.100200 OK 0 B URL HTTP/2 tag.demandbase.com/55882712.min.js
IP 54.230.111.100:0
GET /55882712.min.js HTTP/1.1
Host: tag.demandbase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Fri, 03 Feb 2023 23:17:46 GMT
x-amz-version-id: hdJBSjrpAaJpe.CIItV4ZdCVWCrmsAk9
server: AmazonS3
content-encoding: gzip
date: Thu, 09 Feb 2023 02:43:44 GMT
cache-control: public, max-age=3600
etag: W/"c71e8020750a11998fb3eeea0fec65d3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CJTRjPi0XcROmNhTPHlvaVjD2uVxMRGLz1YDUv5FbNLq9lrfM-p0pw==
age: 2720
strict-transport-security: max-age=63072000; includeSubDomains; preload
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 05 Jan 2023 22:36:26 GMT
etag: W/"63b750ea-2a5"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e3a6ab4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/custom-css-js/9205.css?v=2882
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/uploads/custom-css-js/9205.css?v=2882
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/uploads/custom-css-js/9205.css?v=2882 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 03 Sep 2020 13:53:15 GMT
etag: W/"5f50f54b-ad9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e6a92b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/custom-css-js/8223.css?v=79
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/uploads/custom-css-js/8223.css?v=79
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/uploads/custom-css-js/8223.css?v=79 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 11 Aug 2021 14:55:35 GMT
etag: W/"6113e4e7-ebd"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e6a96b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/plugins/powerpack-elements/assets/css/min/frontend.min.css?ver=2.9.14
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/plugins/powerpack-elements/assets/css/min/frontend.min.css?ver=2.9.14
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/powerpack-elements/assets/css/min/frontend.min.css?ver=2.9.14 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 06 Jan 2023 15:01:33 GMT
etag: W/"63b837cd-5152c"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e1a58b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/plugins/page-list/css/page-list.css?ver=5.3
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/plugins/page-list/css/page-list.css?ver=5.3
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/page-list/css/page-list.css?ver=5.3 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 05 Jan 2023 16:50:55 GMT
etag: W/"63b6ffef-60c"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e0a51b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ws.zoominfo.com/pixel/624c46862897e6001a3ea1b2
104.16.168.82200 OK 0 B URL HTTP/2 ws.zoominfo.com/pixel/624c46862897e6001a3ea1b2
IP 104.16.168.82:0
GET /pixel/624c46862897e6001a3ea1b2 HTTP/1.1
Host: ws.zoominfo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.avidxchange.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:44 GMT
content-type: text/javascript
vary: Accept-Encoding
x-powered-by: Express
x-content-type-options: nosniff
access-control-allow-headers: Content-Type,cf-ipcountry,service-version,x-appengine-user-ip,x-forwarded-for, x-ws-collect-type
access-control-allow-credentials: true
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 google
cf-cache-status: DYNAMIC
set-cookie: visitorId=220cd83000ae239ec9fd8b72a4492add3904502800ed38e58c6ebe19eb9502cf; Max-Age=31536000; Domain=ws.zoominfo.com; Path=/; Expires=Fri, 09 Feb 2024 02:43:43 GMT; Secure; SameSite=None
__cf_bm=J4vVdjW6GaaZlY3S3ERYhzv46OtZOtnVRfB6Kwai3vE-1675910624-0-AbxSmIuBUXMxdSsf546cImpNrPm38CN35pV2mfgP4e0Susuuu5BQq76fLArsGxZDaStua0SEfr2DwXDaKkGZ5kI=; path=/; expires=Thu, 09-Feb-23 03:13:44 GMT; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
_cfuvid=T6ehuYYXjKmz8Mru5BwIo8XlXaBdNqLwSJCIWHLKmpI-1675910624070-0-604800000; path=/; domain=.zoominfo.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7969425758c1b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/custom-css-js/8270.css?v=5175
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/uploads/custom-css-js/8270.css?v=5175
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/uploads/custom-css-js/8270.css?v=5175 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 19 Apr 2022 18:58:48 GMT
etag: W/"625f0668-a86"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e6a94b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/privacy-policy/?utm_source=Footer&utm_medium=email&utm_campaign=BPTemplate&mkt_tok=NTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/privacy-policy/?utm_source=Footer&utm_medium=email&utm_campaign=BPTemplate&mkt_tok=NTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /privacy-policy/?utm_source=Footer&utm_medium=email&utm_campaign=BPTemplate&mkt_tok=NTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://go.avidxchange.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
x-pingback: https://www.avidxchange.com/xmlrpc.php
link: <https://www.avidxchange.com/wp-json/>; rel="https://api.w.org/", <https://www.avidxchange.com/wp-json/wp/v2/pages/3>; rel="alternate"; type="application/json", <https://www.avidxchange.com/?p=3>; rel=shortlink
x-powered-by: WP Engine
x-cacheable: SHORT
cache-control: max-age=600, must-revalidate
x-cache: HIT: 1
x-cache-group: normal
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
referrer-policy: origin
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7969424ca9a9b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/plugins/integration-pods-GKantsios/assets/css/style.css?ver=6.1.1
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/plugins/integration-pods-GKantsios/assets/css/style.css?ver=6.1.1
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/integration-pods-GKantsios/assets/css/style.css?ver=6.1.1 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 19 Aug 2020 21:25:56 GMT
etag: W/"5f3d98e4-ff4"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e0a4cb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/plugins/wpforms/assets/css/wpforms-full.min.css?ver=1.7.9
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/plugins/wpforms/assets/css/wpforms-full.min.css?ver=1.7.9
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/wpforms/assets/css/wpforms-full.min.css?ver=1.7.9 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 06 Jan 2023 15:03:46 GMT
etag: W/"63b83852-c6f9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e1a5ab4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/custom-css-js/8226.css?v=3112
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/uploads/custom-css-js/8226.css?v=3112
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/uploads/custom-css-js/8226.css?v=3112 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 26 Apr 2022 19:01:01 GMT
etag: W/"6268416d-1dd0"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e6a95b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: W/"5fb4e3fe-2bd8"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e3a6fb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/custom-css-js/9210.css?v=7665
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/uploads/custom-css-js/9210.css?v=7665
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/uploads/custom-css-js/9210.css?v=7665 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 03 Sep 2020 18:04:14 GMT
etag: W/"5f51301e-13db"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e5a8bb4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-includes/css/classic-themes.min.css?ver=1
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-includes/css/classic-themes.min.css?ver=1
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Thu, 08 Dec 2022 22:53:04 GMT
etag: W/"63926ad0-d9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e0a48b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/custom-css-js/23739.css?v=7946
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/uploads/custom-css-js/23739.css?v=7946
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/uploads/custom-css-js/23739.css?v=7946 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 14 Jan 2021 22:14:37 GMT
etag: W/"6000c24d-175e"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e4a83b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.106:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 09 Feb 2023 02:43:42 GMT
date: Thu, 09 Feb 2023 02:43:42 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.callrail.com/group/0/2883f105f08d7aabf45a/12/swap_session.json
54.230.111.24200 OK 0 B URL HTTP/2 js.callrail.com/group/0/2883f105f08d7aabf45a/12/swap_session.json
IP 54.230.111.24:0
POST /group/0/2883f105f08d7aabf45a/12/swap_session.json HTTP/1.1
Host: js.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Content-Type: text/plain
Content-Length: 809
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Thu, 09 Feb 2023 02:43:44 GMT
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers:
access-control-max-age: 7200
cache-control: max-age=0, private, must-revalidate
etag: W/"218d0b0aae77e1cdce7c6ca6dbe40921"
vary: Origin
x-request-id: 8c546714-7783-4fde-b17a-531f15ce1dab
x-runtime: 0.069227
x-cache: Miss from cloudfront
via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: vpACt1O9m0CfPuYo9eoF9Rh6Cr6O5TuDOL3eEFyKGI54o2rN6vEsog==
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-1427306.js?sv=6
54.230.111.113200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-1427306.js?sv=6
IP 54.230.111.113:0
GET /c/hotjar-1427306.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Thu, 09 Feb 2023 02:43:43 GMT
access-control-allow-origin: *
cache-control: max-age=60
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
etag: W/f4589bc8b7fe4df51d0485519654981e
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xPh5xtdSSIAgZi9uP671cf86kSjxQV5paPFVXKN22eJslwk7V96ZNg==
X-Firefox-Spdy: h2
unpkg.com/markdown-it/dist/markdown-it.min.js
104.16.125.175302 Found 0 B URL HTTP/2 unpkg.com/markdown-it/dist/markdown-it.min.js
IP 104.16.125.175:0
GET /markdown-it/dist/markdown-it.min.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://home-c52.nice-incontact.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Thu, 09 Feb 2023 02:43:44 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /markdown-it@13.0.1/dist/markdown-it.min.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GRT0JTADHPT3Q7BCNWC14VDR-ams
cf-cache-status: HIT
age: 347
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 79694258aa5fb4f1-OSL
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 05 Jan 2023 22:36:26 GMT
etag: W/"63b750ea-29d"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e2a69b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.company-target.com/api/v2/ip.json?referrer=http%3A%2F%2Fgo.avidxchange.com%2F&page=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&page_title=Privacy%20Policy%20%7C%20AvidXchange
54.230.111.101200 OK 0 B URL HTTP/2 api.company-target.com/api/v2/ip.json?referrer=http%3A%2F%2Fgo.avidxchange.com%2F&page=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&page_title=Privacy%20Policy%20%7C%20AvidXchange
IP 54.230.111.101:0
POST /api/v2/ip.json?referrer=http%3A%2F%2Fgo.avidxchange.com%2F&page=https%3A%2F%2Fwww.avidxchange.com%2Fprivacy-policy%2F%3Futm_source%3DFooter%26utm_medium%3Demail%26utm_campaign%3DBPTemplate%26mkt_tok%3DNTk4LVdWQi0yNDYAAAGJzHA3sFSrr8GZZvbOBs_0Eukq2tg3J69PCS-Kmh6gGY-OIaPiQt0g7v4AtjR3ArQskToNECMowVdUAclAlCpY4f3ExGiqo4n56xdUO3A8Zg&page_title=Privacy%20Policy%20%7C%20AvidXchange HTTP/1.1
Host: api.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 63
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json;charset=utf-8
date: Thu, 09 Feb 2023 02:43:45 GMT
server: nginx
access-control-allow-origin: https://www.avidxchange.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
api-version: v2
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
identification-source: CENTRAL
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Wed, 08 Feb 2023 02:43:45 GMT
vary: Accept-Encoding, Origin
content-encoding: gzip
request-id: 16214bd5-a44b-45e3-b4ee-de69011b6627
x-cache: Miss from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FsmoorwjNJsFSrOCE59YS5udGvUJMCLym5qiYvjnftP6a8VQ3rB5fg==
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/435625/domain/avidxchange.com/token
54.230.111.8200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/435625/domain/avidxchange.com/token
IP 54.230.111.8:0
GET /partner/435625/domain/avidxchange.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Origin: https://www.avidxchange.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Thu, 09 Feb 2023 01:58:24 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LIXXxKW57vRSldxs0H_dgJQ7gxx6f_mZQIcD2NCMAF5Gek7gLfu0_A==
age: 2719
X-Firefox-Spdy: h2
scout-cdn.salesloft.com/sl.js
104.18.222.90200 OK 0 B URL HTTP/2 scout-cdn.salesloft.com/sl.js
IP 104.18.222.90:0
GET /sl.js HTTP/1.1
Host: scout-cdn.salesloft.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:43 GMT
content-type: application/javascript
x-amz-id-2: qf3ClpuTPcJIcaf9lDMbAj/C7KTb6wrTNVZvpPTuMcDn6J5apuWPupZ7ygGsCuih8R4rYooBk/g=
x-amz-request-id: N67V786YKMD3QBGX
last-modified: Mon, 13 Dec 2021 16:28:37 GMT
etag: W/"d74cc4825c8e333b2116da3fcc649db1"
x-amz-version-id: 6anzvBQcvmaBDc8BSO9zI6Th.IIiwArc
cf-cache-status: HIT
age: 1710
expires: Thu, 09 Feb 2023 06:43:43 GMT
cache-control: public, max-age=14400
vary: Accept-Encoding
strict-transport-security: max-age=0
access-control-allow-origin: *
server: cloudflare
cf-ray: 79694257de790b31-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.avidxchange.com/wp-content/uploads/custom-css-js/23587.css?v=8447
141.193.213.20200 OK 0 B URL HTTP/2 www.avidxchange.com/wp-content/uploads/custom-css-js/23587.css?v=8447
IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
GET /wp-content/uploads/custom-css-js/23587.css?v=8447 HTTP/1.1
Host: www.avidxchange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 09 Feb 2023 02:43:42 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 18 Nov 2020 20:34:32 GMT
etag: W/"5fb58558-867"
cache-control: public, max-age=31536000
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 7969424e5a87b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.schemaapp.com/javascript/highlight.js
54.230.111.3200 OK 0 B URL HTTP/2 cdn.schemaapp.com/javascript/highlight.js
IP 54.230.111.3:0
GET /javascript/highlight.js HTTP/1.1
Host: cdn.schemaapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.avidxchange.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 08 Feb 2023 09:18:23 GMT
x-amz-replication-status: COMPLETED
last-modified: Fri, 20 Jan 2023 21:46:27 GMT
etag: W/"29b726cbb59134540e2946b70e1c99bf"
x-amz-server-side-encryption: AES256
cache-control: max-age=699840
x-amz-version-id: SF675yj4AdlXgvI7dNenQSS.msZmf1kF
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: v2qKGM0Aod9hMVazbGXq8KuCc1IaPGc_8trqLMuNMxFGgKR3tp5MUw==
age: 62722
X-Firefox-Spdy: h2