soloadvanced.com/
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: soloadvanced.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 12 Dec 2022 03:50:10 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 12 Dec 2022 04:50:10 GMT
Location: https://soloadvanced.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m6iv0wAbWa56zemtEgNENsTpe7p1PzC7ll%2Bs2SpCzsA59w%2BNJFVANgbxJP89BWPh9lRMIJxiCk9BnC6li%2FNbzeBhRYRU5QktozI7BVnVwBWRb6hPBTwvWM2OCaluld6cJe8J"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77837e8dff2d0b31-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 43ad67f241ee3692a9c9c1da080dae58
6a024f7d71eeee257edc91ba9273416f634aaae5
636635b57f9e6d2ad9b1b949298ee7d3b5b7e251a63516ff68bfb1eceded5688
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "636635B57F9E6D2AD9B1B949298EE7D3B5B7E251A63516FF68BFB1ECEDED5688"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9091
Expires: Mon, 12 Dec 2022 06:21:42 GMT
Date: Mon, 12 Dec 2022 03:50:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 430f1651125c14bfa4924aa1f1a392e9
304141c5fe7ac8b370a67912b2592f9622de9600
315d77a9956f34b1615e38f5f1971dd05146980f8a36b35a8108d47ebba7e8e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "315D77A9956F34B1615E38F5F1971DD05146980F8A36B35A8108D47EBBA7E8E5"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7694
Expires: Mon, 12 Dec 2022 05:58:25 GMT
Date: Mon, 12 Dec 2022 03:50:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dbd022fec0a71226daaf29b7563a8896
c37d14dc7b3849a4bb815fa325fb5e70fae54039
22da5e6e3f9507688fc8cb02183d52cf38f4adf8b2c6c52eaf5f88182471efeb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "22DA5E6E3F9507688FC8CB02183D52CF38F4ADF8B2C6C52EAF5F88182471EFEB"
Last-Modified: Sun, 11 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9831
Expires: Mon, 12 Dec 2022 06:34:02 GMT
Date: Mon, 12 Dec 2022 03:50:11 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 12 Dec 2022 03:08:34 GMT
content-type: application/json
age: 2497
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: n9seva+y/NDuc/Hrhhb1xH1jjZy/9WXqmXEi0NRK/JhM2WsHlbsr/RzsaGxRDseusc5EgjgbB3A=
x-amz-request-id: C5Q23ZKGK2C1F0CG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 12 Dec 2022 02:51:20 GMT
age: 3531
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 12 Dec 2022 03:50:11 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1p5/bZmNAk1-8oM
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/bZmNAk1-8oM
IP
Hash e3af69273b4effec1a80fbac2e2f89bf
31e4aa10a7eb3680bfe5a6519988d2b420813280
bf4c1c5053c2ae78e6c3183d51e661c2c72e7d8aaedf02700be062f544248d9c
POST /s/gts1p5/bZmNAk1-8oM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:11 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 12 Dec 2022 03:07:56 GMT
age: 2535
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash e12bb655426d080117693ba116f398cf
8fe1f7f8d0b191baed2decba3523656da97077f5
2c25ba0d1c806de98d5489934acd8e2f17487e4f7e40c7f0d39094ce49f91b8d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5260
Cache-Control: max-age=110665
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:11 GMT
Etag: "63959db0-1d7"
Expires: Tue, 13 Dec 2022 10:34:36 GMT
Last-Modified: Sun, 11 Dec 2022 09:06:56 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
e1.o.lencr.org/
200 OK 345 B IP
ASN #20940 Akamai International B.V.
Hash 3958d85a21a3d5fa8725dc675c9451f5
7d56f1f1a5acc8ccee165a1ac56b294eee8e1ecd
a71293a21b6ddf6b3e302d7e849af3fa3b00e81ab96cfbc0a83b312dbeafda33
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A71293A21B6DDF6B3E302D7E849AF3FA3B00E81AB96CFBC0A83B312DBEAFDA33"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10724
Expires: Mon, 12 Dec 2022 06:48:55 GMT
Date: Mon, 12 Dec 2022 03:50:11 GMT
Connection: keep-alive
ocsp.pki.goog/s/gts1p5/bZmNAk1-8oM
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/bZmNAk1-8oM
IP
Hash e3af69273b4effec1a80fbac2e2f89bf
31e4aa10a7eb3680bfe5a6519988d2b420813280
bf4c1c5053c2ae78e6c3183d51e661c2c72e7d8aaedf02700be062f544248d9c
POST /s/gts1p5/bZmNAk1-8oM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:11 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Tzp5NoBVNycwN2wiW8CZNQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ++2jImSTzz1jNeaULJdN8RZ/LLc=
www.squadhelp.com/html/static_images/icon-heart.svg
200 OK 14 kB URL HTTP/2 www.squadhelp.com/html/static_images/icon-heart.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (682)
Hash 80aab130c118d795afe0d2f83fbf9dba
81f0b5fb62d93b160ca58b8582d060a2c4b03310
5f89e305b4fa08cd5a0683bbe36921a59dc7f53d74b840a3744f230dce8159b3
GET /html/static_images/icon-heart.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/a03b7d742d634005005d8afc9c5eff3b.css
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:36:00 GMT
etag: W/"63431490-312"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 4230571
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9aece5b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/modules/marketplace/assets/fonts/bubble/ProductSans-Bold.woff2
200 OK 20 kB URL HTTP/2 www.squadhelp.com/modules/marketplace/assets/fonts/bubble/ProductSans-Bold.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 20100, version 1.0\012- data
Hash eb964ca850eecca0ccad41e2905742cc
5c07dcf2dc8a0cb41f79aa6242386ba3526518c0
46c3a9dd12310f604a7003f51fc8b81509f63bfda367f1d537854f0120ba30bc
GET /modules/marketplace/assets/fonts/bubble/ProductSans-Bold.woff2 HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.squadhelp.com/var/a03b7d742d634005005d8afc9c5eff3b.css
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: application/octet-stream
content-length: 20100
last-modified: Mon, 12 Sep 2022 15:01:34 GMT
etag: "631f49ce-4e84"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 4220236
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9b0cfab512-OSL
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/icon-arrow-long-right.svg
200 OK 635 B URL HTTP/2 www.squadhelp.com/html/static_images/icon-arrow-long-right.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash b4714a00fdbd4043b7b85c46b57a5d03
2d0413d9072678f3c11f0698e05cc354b7f0612f
a835706c72e2f4c392cd920fc9f01e1160f0cef7f35ac5bbbcfe231f2e2e9067
GET /html/static_images/icon-arrow-long-right.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/a03b7d742d634005005d8afc9c5eff3b.css
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:36:02 GMT
etag: W/"63431492-e1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 4230571
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9afcecb512-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/favicon.ico
200 OK 106 kB URL HTTP/2 www.squadhelp.com/favicon.ico
IP
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size 106 kB (105739 bytes)
Hash c3c258eb27de49cfa12809abc571de39
924c28ae88311c11e04dbea9f8bf0c5a0ae9e7fc
83691263d0e10e065f0036a568249c77fdc1c151eb106bfaca79ebbb0dd433d7
GET /favicon.ico HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/soloadvanced?lp=d
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:13 GMT
content-type: image/x-icon
last-modified: Thu, 13 Aug 2015 11:52:45 GMT
etag: W/"55cc850d-3ed"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 4240026
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9b5d20b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2bbc2a332da069e062c141b6755efb07
e7cb19a32562264a6858b73f90caff1fe7887a29
5fad6e64460cced764a9d312bc67cf858e5b28e5b2e107dc790bc5973f1ecd1e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:13 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
widget.intercom.io/widget/ld9mkn53
200 OK 6.2 kB URL HTTP/2 widget.intercom.io/widget/ld9mkn53
IP
File type Unicode text, UTF-8 text, with very long lines (18920), with no line terminators
Hash 38251027ad0bf63d036dd7f38394700b
8f2b8c8c8869e94cb2f23c310a7e3c1dce5b6b9f
6f5fe4ac98c295ddfe38be4a0f514ea443dce3d2cfe5d0d1147ce58fbca1eb1c
GET /widget/ld9mkn53 HTTP/1.1
Host: widget.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 6171
last-modified: Fri, 09 Dec 2022 16:16:48 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: qYGjJj3kZpVy8eMtjAAcihQkT19G0Iad
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Dec 2022 03:33:43 GMT
cache-control: max-age=900, s-maxage=900, public
etag: "38251027ad0bf63d036dd7f38394700b"
x-cache: Error from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Yyn0soKGNt070hoywhxAmT_CE6LtfMFGaJcshmJS7BDuJA2OVDpMLg==
age: 990
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
js.intercomcdn.com/frame.93d4bfa2.js
200 OK 139 kB URL HTTP/2 js.intercomcdn.com/frame.93d4bfa2.js
IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 139 kB (138632 bytes)
Hash 8746dddf366855a2ba9aaa73bd2c2015
0bcc7772fbf4726e60e23da06d5d7a39b0791aec
f3e7399feb7d2a0b5872e107085615a8f50df95b287d0a751c7da9c8c14364d4
GET /frame.93d4bfa2.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 138632
last-modified: Fri, 09 Dec 2022 16:15:04 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: 2XnKPPxHyncXL9PgReKr5vRfyEeHeLHU
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Dec 2022 02:16:52 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "8746dddf366855a2ba9aaa73bd2c2015"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 9k8QNyIRCAzNSkx4lGokmTJPJImOR-kMdTwRjpLgHt_ZZWjIOqkLBg==
age: 5601
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
js.intercomcdn.com/vendor.97c49be4.js
200 OK 108 kB URL HTTP/2 js.intercomcdn.com/vendor.97c49be4.js
IP
File type Unicode text, UTF-8 text, with very long lines (65431)
Size 108 kB (108308 bytes)
Hash 085e10e9e993a94201776f5c9524aac1
b5075cd0af7a458215c8ab37ac93cc79aab4a4d6
cd6caf372447408461fc454c208cec7a7c537c5b2e43564342cb61736d3a2b05
GET /vendor.97c49be4.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 108308
last-modified: Fri, 09 Dec 2022 16:15:04 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: Bt8tYyzefGN0V0x4Un7YM.IbADBRZgSW
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Dec 2022 01:54:13 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "085e10e9e993a94201776f5c9524aac1"
x-cache: Hit from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: nH41VMZso0b5rUtdxLfz9YMUYSKQflvbzNYzArDcImI35tsF3izF_Q==
age: 6962
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/twitter.svg
200 OK 1.2 kB URL HTTP/2 www.squadhelp.com/html/static_images/twitter.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1241)
Hash 1c21c59b951bdb9f377e1e87af258f09
3eff068f2d762b66153b06f15d6796c8b17e0008
c00e3e0db35fd6b7e7e62e407bcc808b3eda9b8a4c8b9334a99c2f94b96f28ad
GET /html/static_images/twitter.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/a03b7d742d634005005d8afc9c5eff3b.css
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:35:56 GMT
etag: W/"6343148c-541"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 4230571
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9afcf1b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9220
Expires: Mon, 12 Dec 2022 06:23:53 GMT
Date: Mon, 12 Dec 2022 03:50:13 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d35fcd5d7e74c530535b18d57ed5f587
3b9bf9e02593b63108515f4df7cae57ce62145e7
4bdb744a2d9ac6d051f5192dbf3e00ba1b18208930655e6752fd6ccd118faff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BDB744A2D9AC6D051F5192DBF3E00BA1B18208930655E6752FD6CCD118FAFF0"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9220
Expires: Mon, 12 Dec 2022 06:23:53 GMT
Date: Mon, 12 Dec 2022 03:50:13 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 5184dd25af1338cf463ef7dccca65c9b
7719a53c40f1078afc9b5d651499601e143ff14e
768a75f6bd99b7343467e953b9d3663df822b7d501e3bc02a96ec2c9c856ad2b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 12 Dec 2022 03:50:13 GMT
Last-Modified: Mon, 12 Dec 2022 03:20:36 GMT
Server: ECS (nyb/1D2E)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6RM7OhfpBJ9RWU4dkwumxEEVrlbAs5HvvIKfNMCC73K8eX-jygSzfg==
Age: 1777
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c9bdec4-23b4-47d9-b623-556f664c1757.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c9bdec4-23b4-47d9-b623-556f664c1757.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 21eb88f40afd0bb66fdf8413994ef404
d6d6804120d4c8a7f33425ce99cc7801286a39c8
78340bbac6950c4f7006182b173a0a0b93518412c65a4192d9977ffb92250f20
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c9bdec4-23b4-47d9-b623-556f664c1757.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7304
x-amzn-requestid: 454b4968-df15-4b5a-bb09-85c75f1e476e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAD2yFTmoAMFWsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964cf8-417e7a746455cbee1a61e421;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:34:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4m6uqrN4OsMQdfz5iUoBvoOHVWHmA_YsCvz45GSjtZCJSmqduuKXAA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 21:34:48 GMT
age: 22525
etag: "d6d6804120d4c8a7f33425ce99cc7801286a39c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5d9c5ff-aaa2-4c2a-ab2b-661f84126bf7.jpeg
200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5d9c5ff-aaa2-4c2a-ab2b-661f84126bf7.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 86bce3d677c0dd541440ebf38920020d
f11e21b6ad97e07b1d7103ad40a2e158e06fda73
9e23bc16cd1402d9124ebb9e625a5580f677ca9e008d3e04dc95080072fd1df4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5d9c5ff-aaa2-4c2a-ab2b-661f84126bf7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7104
x-amzn-requestid: b1117224-be51-4e21-8b3b-01e5485f0af0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAD2yH4loAMFuWQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964cf8-1382e1a6710239ec629eedb8;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:34:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: A--8wjYJWCj_JD6eaj3FoD0dLarj6gvH2uQrmsEDLgPwZdQgtUmaoA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 21:34:48 GMT
age: 22525
etag: "f11e21b6ad97e07b1d7103ad40a2e158e06fda73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88407255-b58e-4d61-b541-1988ad75d924.jpeg
200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88407255-b58e-4d61-b541-1988ad75d924.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e59be0fbcd4346b5443bbdcef48ec35
c05a1da112086b95fdbf9e6708e3b18c31e86571
1ca6f638b2eb25ae571b7e90bb2608a9f58ff9bf19ef5b1a63d2139b58d4874e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88407255-b58e-4d61-b541-1988ad75d924.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5984
x-amzn-requestid: ed8f43e9-be23-4523-8b59-dd466ab09daa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAENsHo5oAMFtLQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964d8a-7aaa2ff15d6a0e302b2872ed;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: asLy1WSXwJsEdHYd8FOCHmoGdFNFYpeXz5phL0gQ_in3YBNpYnPgoA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 21:55:56 GMT
age: 21257
etag: "c05a1da112086b95fdbf9e6708e3b18c31e86571"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde328206-b913-49f3-9a85-6ccf3ddb1dee.jpeg
200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde328206-b913-49f3-9a85-6ccf3ddb1dee.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03a041f97f828bf7e3cb9af23202d164
66360922920cdf1a9412930d5fd0339fe4845b6d
63f96ad2555a107107efcade18fdeb4cc9f2aaf65650c6945b300a9ff41f6655
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde328206-b913-49f3-9a85-6ccf3ddb1dee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5979
x-amzn-requestid: 929d1f96-64db-4280-8b90-852246063c37
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAD33GQJIAMF4Ng=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964cfe-79604f955b788ac9319e2e3e;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:34:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lkyT46jQIc9ZPYgCyWS2l5HBQIIHqSlJ4Lu3DrOQHf-JbrSK_zQ6_g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 21:34:55 GMT
age: 22518
etag: "66360922920cdf1a9412930d5fd0339fe4845b6d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6db22fa-e5c2-451e-bd92-a8e75524b559.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6db22fa-e5c2-451e-bd92-a8e75524b559.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 36dd97656d1d3eaef837e4ff7c670e33
cd08e74fb849ebca2b5ac29519c47954845316ea
9d3debf9afab17bb787b26c2ff1d9581d28f80f407c4a1cff4ea5dc5b9471032
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb6db22fa-e5c2-451e-bd92-a8e75524b559.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8517
x-amzn-requestid: 6bddc0ae-a697-4404-b319-366a6e5b706e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAENjHvbIAMFSrw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964d89-4601dc8570003f1372c67252;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:37:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QuL72bfHoHNGLmaN0dfeyoi3sUlKSi0yqIDG8VFPATT2b9HreGvbdw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 22:00:46 GMT
age: 20967
etag: "cd08e74fb849ebca2b5ac29519c47954845316ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/search-insights@1.3.1
200 OK 2.9 kB URL HTTP/2 cdn.jsdelivr.net/npm/search-insights@1.3.1
IP
File type ASCII text, with very long lines (10262)
Hash f66557a8cde2590db029b6b8304378db
11bbbcd7974761b20ec50d17f4049977315d9d08
9ab7d5c8a5762c81158601720fd131bef233a57193e6daaa8d1ad26e5912f1d3
GET /npm/search-insights@1.3.1 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.3.1
x-jsd-version-type: version
etag: W/"2817-FGLI0cv/s1qAA3nM5zLdFEpck2Q"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 12 Dec 2022 03:50:13 GMT
age: 4483503
x-served-by: cache-fra-eddf8230023-FRA, cache-bma1662-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2870
X-Firefox-Spdy: h2
www.redditstatic.com/ads/pixel.js
200 OK 7.7 kB URL HTTP/2 www.redditstatic.com/ads/pixel.js
IP
File type ASCII text, with very long lines (25224)
Hash 3528fd00b652f61a266eb584d96f4fcc
d89e16aa1323c6c4f1ed3941122020684a599361
77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332
GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 16:45:46 GMT
etag: "3528fd00b652f61a266eb584d96f4fcc"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Mon, 12 Dec 2022 03:50:13 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ef42f8e068ff42b6c4526007bb1fd117
26dc12f55b364a16a8c33b772ddc4a23c607e4bf
52a23d73b9d7cd4a8b4128ec0e9681dc57e14f087e20dc2e70b5e5db29102e87
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=120423
Date: Mon, 12 Dec 2022 03:50:13 GMT
Etag: "6395c3c3-1d7"
Expires: Tue, 13 Dec 2022 13:17:16 GMT
Last-Modified: Sun, 11 Dec 2022 11:49:23 GMT
Server: ECS (bsa/EB1B)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4ArpLr-_39Qk3G4fYyt5y-3sxVnSRXDCEyx_KAWvNuidgytVJwfKTg==
Age: 5273
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
Hash c570cfd842947fe060f707c14963a71f
01089bf7d99f54652b7467fe39c24234a5e190d9
fb028f5de4a37adb274fd9fb10983c2eca30073eb47cd70214f1ec709790b445
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Connection: keep-alive
Content-Length: 1462
Content-Type: application/ocsp-response
Etag: "2691D94909049AB161734E88FF9F501412473692"
Expires: Mon, 12 Dec 2022 14:00:00 UTC
Last-Modified: Mon, 12 Dec 2022 02:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
Accept-Ranges: bytes
Date: Mon, 12 Dec 2022 03:50:13 GMT
Via: 1.1 varnish
Age: 3385
X-Served-By: cache-bma1659-BMA
X-Cache: HIT
X-Cache-Hits: 2
X-Timer: S1670817013.437971,VS0,VE0
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7c3e1ad1682fd1e6a3eebba0e7e6bb40
f94fdcc036b8c47cd065de451368dee74ae1048c
fbe581229b3165034ea683dc641acca3e96db5387b5aa7a7e0dfce353066e3c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FBE581229B3165034EA683DC641ACCA3E96DB5387B5AA7A7E0DFCE353066E3C2"
Last-Modified: Sat, 10 Dec 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12971
Expires: Mon, 12 Dec 2022 07:26:24 GMT
Date: Mon, 12 Dec 2022 03:50:13 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 8c5bbda2779c0c76adfea6dbf7b92f12
f56caca35deec95a117e7a761b4792377ef66a80
eba19588924f236fd6c772a7f7801b5b257f74e0a7d723ff002ca49df3ab5973
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137644
Date: Mon, 12 Dec 2022 03:50:13 GMT
Etag: "639605d4-1d7"
Expires: Tue, 13 Dec 2022 18:04:17 GMT
Last-Modified: Sun, 11 Dec 2022 16:31:16 GMT
Server: ECS (dcb/7EA7)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lMnbe41PcnkhXCxZ1MaPfFkJdHjb35-miOEJfiv-xZeOk9_-5ZPqLA==
Age: 5581
script.fixel.ai/config/FXL-1150-2383.json
200 OK 0 B URL HTTP/2 script.fixel.ai/config/FXL-1150-2383.json
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /config/FXL-1150-2383.json HTTP/1.1
Host: script.fixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.squadhelp.com/
Origin: https://www.squadhelp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Mon, 12 Dec 2022 03:42:29 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: aftKZdm2ErL4Yf9eOkcylCyw6nJlWNfJKzBC5s6tBi-d13_gIBcHFg==
age: 465
X-Firefox-Spdy: h2
script.fixel.ai/config/FXL-1150-2383.json
200 OK 152 B URL HTTP/2 script.fixel.ai/config/FXL-1150-2383.json
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 651a6d3ba7143f83f44261232093a38c
43e11c4cc441663daf605df0414947c8756f2155
7a5cfb625e89e99af010b95040c9b9fdd6f518b9b87da64206c00fbb120933d1
GET /config/FXL-1150-2383.json HTTP/1.1
Host: script.fixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 152
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Mon, 01 Feb 2021 10:13:36 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: VlbH.UIcLlGlg9QOIym1wMb.PKZS9R_3
accept-ranges: bytes
server: AmazonS3
date: Mon, 12 Dec 2022 03:47:32 GMT
etag: "651a6d3ba7143f83f44261232093a38c"
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dZzR4RjnSiV4ESNfBvcCwfRh1e0Gy9Azyl5nVFOc-a7JnlmKGpHU0w==
age: 163
X-Firefox-Spdy: h2
q.quora.com/_/ad/dcf3487c2f234553bf375cb5ea4c260b/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd
200 OK 43 B URL HTTP/1.1 q.quora.com/_/ad/dcf3487c2f234553bf375cb5ea4c260b/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /_/ad/dcf3487c2f234553bf375cb5ea4c260b/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd HTTP/1.1
Host: q.quora.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Mon, 12 Dec 2022 03:50:13 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,f9a74a01894026ec12bc1e6e66e7715f,10.0.0.114,53214,91.90.42.154,,85684762735,1,1670817013.663,0.001,,.,0,0,0.000,0.004,-,0,0,197,195,97,10,34729,,,,,,-,
Content-Length: 43
Connection: keep-alive
ocsp.digicert.com/
200 OK 727 B IP
Hash a5f8fdf24395c0c421a46780db7d6d73
85204193079cffad02e359004c2da710400d776e
bd219faff2734c3085bd7594558825ad05869b2721ef518694434a72b7fd27c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=132030
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:13 GMT
Etag: "639605b3-2d7"
Expires: Tue, 13 Dec 2022 16:30:43 GMT
Last-Modified: Sun, 11 Dec 2022 16:30:43 GMT
Server: nginx
Content-Length: 727
snap.licdn.com/li.lms-analytics/insight.min.js
200 OK 4.6 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (12961)
Hash c1a25b303b61b25e995516f5559bcdea
3c16a6fa3a2a6dc59d57a9ea1588c4f259884688
2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 17 Nov 2022 18:52:45 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=66144
date: Mon, 12 Dec 2022 03:50:14 GMT
content-length: 4581
x-cdn: AKAM
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 633462c5bc4d631d0f28109676f1c4ef
5e971024687c599a40822616459355ab75a69aa6
464513db00c7735b28f8140ecd0a3a0641fce311481f736a946a1ed8e8e881d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 12 Dec 2022 02:41:08 GMT
expires: Mon, 12 Dec 2022 04:41:08 GMT
cache-control: public, max-age=7200
age: 4146
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
js-agent.newrelic.com/552.2d6a2503-1220.js
200 OK 5.9 kB URL HTTP/2 js-agent.newrelic.com/552.2d6a2503-1220.js
IP
File type ASCII text, with very long lines (21423)
Hash 097ef34c5f5d635a147bca3721bd605b
3b31ef3cfb1d62d9884d631ec2467b9d6b0d46e2
3e05d4e42c1e87b516b525574b20d2570dccc50d1bd1b2956d6421699aa19914
GET /552.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Lx7LUNyC193WWpSv5hW/L7UEeNSlDwufm33KpA2sv5a1ht8efI/6s62/R2OVbNZKkoG/gUHXaFI=
x-amz-request-id: VK0V8BCV38T7WVVS
last-modified: Wed, 05 Oct 2022 14:53:43 GMT
etag: "777ac0df4dba632ad1b2955c88dd51ac"
x-amz-version-id: 7EjqUQ3uiXAFqO0VnIOp2ymSTJq3JZwD
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 12 Dec 2022 03:50:14 GMT
via: 1.1 varnish
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 745
x-timer: S1670817014.078133,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 5890
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Mon, 12 Dec 2022 03:50:14 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1669-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
amplify.outbrain.com/cp/obtp.js
200 OK 5.3 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP
File type ASCII text, with very long lines (16574), with no line terminators
Hash 5cdda5ed80a4ee13f700ae502f7cd4ec
0e6aa932abf3c56561a686aa3e8d069aaa3ca228
d54fc3e1792330cc768902f861f0a79ecffbfd23b8db14f354e8fcefd1c831c1
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "fe80c55f1e1387116ff9765261ed192c:1669645506.686439"
Last-Modified: Mon, 28 Nov 2022 14:22:05 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Mon, 12 Dec 2022 04:10:14 GMT
Date: Mon, 12 Dec 2022 03:50:14 GMT
Content-Length: 5269
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 3a1942bd2fc7c60d1cfffd1b72f202c1
2b95e8b0f97322d14ba4797016bf34314795771f
219bdf287c5cd0a9141d291c0d07db3831f095f2be854cbfe654ac57f2b7e49e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4600
Cache-Control: max-age=139523
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Etag: "63961102-1d7"
Expires: Tue, 13 Dec 2022 18:35:37 GMT
Last-Modified: Sun, 11 Dec 2022 17:18:58 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b14162cab0131ca3a7e7c1c6d72c77f3
87a1ae365bc2a459c323770eb9632d28649b2b1b
759526e8274b5fa52e1a46496e286cc04466a27c41a8f20de6aee1b756feb87c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/bat.js
200 OK 12 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39124), with no line terminators
Hash d925a898de26295fdebfc90203ef46fa
77dd3f5893b76530e08058d50e8f9aef017e80c7
8f4a413fec7e48f5ac290f4596fef33b6396e7fb31080ec0203a5ec817d140c8
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11460
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 05 Dec 2022 17:15:50 GMT
accept-ranges: bytes
etag: "027e538cd8d91:0"
vary: Accept-Encoding
set-cookie: MUID=309F7944312F689124B76B3C30786995; domain=.bing.com; expires=Sat, 06-Jan-2024 03:50:14 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 9EC05A5A9DA94F118A4E6968AE2ADABF Ref B: OSL30EDGE0321 Ref C: 2022-12-12T03:50:14Z
date: Mon, 12 Dec 2022 03:50:13 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 633462c5bc4d631d0f28109676f1c4ef
5e971024687c599a40822616459355ab75a69aa6
464513db00c7735b28f8140ecd0a3a0641fce311481f736a946a1ed8e8e881d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 633462c5bc4d631d0f28109676f1c4ef
5e971024687c599a40822616459355ab75a69aa6
464513db00c7735b28f8140ecd0a3a0641fce311481f736a946a1ed8e8e881d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1670817011597&cv=11&fst=1670817011597&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Jf_hCIzXoNECENGCzOsD&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&auid=120752073.1670817012&rfmt=3&fmt=4
200 OK 917 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1670817011597&cv=11&fst=1670817011597&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Jf_hCIzXoNECENGCzOsD&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&auid=120752073.1670817012&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (1922), with no line terminators
Hash 104b78ea8e2aa29e81a85b4d16438961
28c40b72f2cf31f5ec9fad0ac37864ef797dcc69
ca5baa01784bc183fd2b063ef8c8bca84965a5719d37ec18723e96e417082827
GET /pagead/viewthroughconversion/1030947153/?random=1670817011597&cv=11&fst=1670817011597&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Jf_hCIzXoNECENGCzOsD&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&auid=120752073.1670817012&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 03:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 917
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 12-Dec-2022 04:05:14 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1670817011741&cv=11&fst=1670817011741&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&auid=120752073.1670817012&data=event%3Dgtag.config&rfmt=3&fmt=4
200 OK 884 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1670817011741&cv=11&fst=1670817011741&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&auid=120752073.1670817012&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (1893), with no line terminators
Hash 1ddbf5f1249a6d377b820c85877762fd
bb4c8749a6fc2d0464bda071d9f706535920f8c6
b049f926ce597ce1f44c9b078908c45f8d64f7e63b682ef1515376affe663227
GET /pagead/viewthroughconversion/1030947153/?random=1670817011741&cv=11&fst=1670817011741&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&auid=120752073.1670817012&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 03:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 884
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 12-Dec-2022 04:05:14 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-conversion/1030947153/?random=1670817011590&cv=11&fst=1670817011590&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=DP_eCJK8xO0BENGCzOsD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&value=0&bttype=purchase&auid=120752073.1670817012&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
302 Found 63 B URL HTTP/2 www.google.com/pagead/1p-conversion/1030947153/?random=1670817011590&cv=11&fst=1670817011590&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=DP_eCJK8xO0BENGCzOsD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&value=0&bttype=purchase&auid=120752073.1670817012&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4
IP
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/1030947153/?random=1670817011590&cv=11&fst=1670817011590&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=DP_eCJK8xO0BENGCzOsD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&value=0&bttype=purchase&auid=120752073.1670817012&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 03:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/1030947153/?random=1670817011590&cv=11&fst=1670817011590&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=DP_eCJK8xO0BENGCzOsD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&value=0&bttype=purchase&auid=120752073.1670817012&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1670817011575&cv=11&fst=1670817011575&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&auid=120752073.1670817012&data=ecomm_pagetype%3Dproduct&rfmt=3&fmt=4
200 OK 889 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1670817011575&cv=11&fst=1670817011575&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&auid=120752073.1670817012&data=ecomm_pagetype%3Dproduct&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (1903), with no line terminators
Hash 8352a834f4b5bd9f7b8f433ee7fd10e1
a458f28eed641fc9bb898aa8d63b2d1ad8953d77
81a3bb1e802489c56ecaeacf8f5d365bd0774854fe7688b7ae80513d6cbe9010
GET /pagead/viewthroughconversion/1030947153/?random=1670817011575&cv=11&fst=1670817011575&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&auid=120752073.1670817012&data=ecomm_pagetype%3Dproduct&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 03:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 889
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 12-Dec-2022 04:05:14 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc57568b-de5b-4cc8-9e29-a57a302df9b6.jpeg
200 OK 42 B URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc57568b-de5b-4cc8-9e29-a57a302df9b6.jpeg
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc57568b-de5b-4cc8-9e29-a57a302df9b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5619
x-amzn-requestid: df7189d2-5cad-43a2-9511-20c5de53f710
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dAEMPFCSIAMF4uA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63964d81-729683c606fd6abc5bc70534;Sampled=0
x-amzn-remapped-date: Sun, 11 Dec 2022 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: kbfjvh64NjCUE-e-3z7W58vyJMisRwERUV_W99jn3vrErY4bF1SFsg==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Dec 2022 21:59:55 GMT
etag: "6bbd19dbf5112b5c52a1ccbfff3c9d7d0ab030da"
content-type: image/jpeg
age: 21018
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1670817011660&cv=11&fst=1670817011660&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&auid=120752073.1670817012&data=dynx_pagetype%3Dother&rfmt=3&fmt=4
200 OK 889 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1670817011660&cv=11&fst=1670817011660&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&auid=120752073.1670817012&data=dynx_pagetype%3Dother&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (1897), with no line terminators
Hash 13da9783cd54d3385989b07e13a44037
0c1cc4f04e2ae007f044e589d5dfd33c8932cb76
2267f48994f22851950e4f485f43182b24c5afe5df6334bd34055d25b42f32f4
GET /pagead/viewthroughconversion/1030947153/?random=1670817011660&cv=11&fst=1670817011660&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&auid=120752073.1670817012&data=dynx_pagetype%3Dother&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 03:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 889
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 12-Dec-2022 04:05:14 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash ef019950fc6b50e9529e8b155a12106c
6afb749a3540fc752cf127ca7e517510098a4391
0b602212719a764b2b81f0253f2cec7e8470aae35eb22e95b5e9069b9e6706e8
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: o02SFfneyuuY/3Jm/HSYXAU7piGCVVFwDkg6pxzqARhs8j0LQZhnshd4mYsJbZVOiXcKtv74yoSg/yZQkWDxKA==
content-length: 27317
x-fb-trip-id: 1679558926
date: Mon, 12 Dec 2022 03:50:14 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.clarity.ms/tag/3xq9rdybkj
200 OK 2.1 kB URL HTTP/2 www.clarity.ms/tag/3xq9rdybkj
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash eb7580a7fc10549d2cae376d7cc5c8cf
63e2dcd6053ae42ea3c82f500f4b79abc2e90a3d
5dcbf68200eda58fcd9d195aac7f47dfd80e727923fd95062e4e1c4e0d0c0ad0
GET /tag/3xq9rdybkj HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=3c891636c831429f9fe2281fa1b22e7e.20221212.20231212; expires=Tue, 12 Dec 2023 03:50:14 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-cache: CONFIG_NOCACHE
x-azure-ref: 09qSWYwAAAAC2Hs907aW/Sp7vIt4peaBBU1ZHMjBFREdFMDUwOQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Mon, 12 Dec 2022 03:50:13 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 3a1942bd2fc7c60d1cfffd1b72f202c1
2b95e8b0f97322d14ba4797016bf34314795771f
219bdf287c5cd0a9141d291c0d07db3831f095f2be854cbfe654ac57f2b7e49e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4600
Cache-Control: max-age=139523
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Etag: "63961102-1d7"
Expires: Tue, 13 Dec 2022 18:35:37 GMT
Last-Modified: Sun, 11 Dec 2022 17:18:58 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a41c1c2a6aad29835a33369555bbe359
4e104748d3d8c3237d58e03b6f7493fcc9182142
a0495e2ab6ed55134a4bf56eb85252977c6978eb965b14724d47e3c979f25ab4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alb.reddit.com/rp.gif?ts=1670817011880&id=t2_bc56g0l6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=7cb6c2a1-e860-4da9-bbea-62fc699e5e45&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8
200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1670817011880&id=t2_bc56g0l6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=7cb6c2a1-e860-4da9-bbea-62fc699e5e45&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1670817011880&id=t2_bc56g0l6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=7cb6c2a1-e860-4da9-bbea-62fc699e5e45&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Mon, 12 Dec 2022 03:50:14 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-VJ36JWQDE1>m=2oebu0&_p=666233315&cid=1736455015.1670817012&ul=en-us&sr=1280x1024&_s=1&sid=1670817011&sct=1&seg=0&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&dt=soloadvanced.com&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-VJ36JWQDE1>m=2oebu0&_p=666233315&cid=1736455015.1670817012&ul=en-us&sr=1280x1024&_s=1&sid=1670817011&sct=1&seg=0&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&dt=soloadvanced.com&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VJ36JWQDE1>m=2oebu0&_p=666233315&cid=1736455015.1670817012&ul=en-us&sr=1280x1024&_s=1&sid=1670817011&sct=1&seg=0&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&dt=soloadvanced.com&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.squadhelp.com
date: Mon, 12 Dec 2022 03:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
acsbapp.com/apps/app/dist/js/app.js
200 OK 142 kB URL HTTP/2 acsbapp.com/apps/app/dist/js/app.js
IP
File type Unicode text, UTF-8 text, with very long lines (59833), with no line terminators
Size 142 kB (142525 bytes)
Hash 3328713291f813a6402e7d54eb4cc24e
72a3620ea7e686116441e85010c96fe7b8e44f67
7ac3d0a077656460faa6697235aed26cc67a3c11c9d39ad27a0efa24f238cd30
GET /apps/app/dist/js/app.js HTTP/1.1
Host: acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Tue, 13 Dec 2022 03:50:13 GMT
content-type: application/x-javascript
last-modified: Sun, 11 Dec 2022 10:07:06 GMT
etag: "6ac0a-6395abca-467e28e500d9d499;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 142525
date: Mon, 12 Dec 2022 03:50:13 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 313 B IP
Hash 5a595f83a90fba5dc1975424bb013228
000f13613ba137b6bea0f2fb0084a884e4af8fce
1f17bca4f7b00542f305fdc8b3fbd989d35fc30c28b8d48504d63b7dcd8eb790
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4956
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Last-Modified: Mon, 12 Dec 2022 02:27:38 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 313
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash aa90cfa2fb5e0088674c3cceadcaaca3
c74bf042d7017214433f1257d59311dd94a5c5ec
71e1e6560f8fa39e81735c4092226863540d98b6c98f0c3b466de7390bcd5d06
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=92984
Date: Mon, 12 Dec 2022 03:50:14 GMT
Etag: "639558b0-1d7"
Expires: Tue, 13 Dec 2022 05:39:58 GMT
Last-Modified: Sun, 11 Dec 2022 04:12:32 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zoZS5l9qcpNtht8cnnVkHC4XcOWXdUBT0oiMY-IW7HH4JjRdGtSR9Q==
Age: 5246
tags.srv.stackadapt.com/events.js
301 Moved Permanently 65 B URL HTTP/1.1 tags.srv.stackadapt.com/events.js
IP
File type HTML document, ASCII text
Hash f80e89783ec551e69632712d99fd2224
a760361995b52b09f655a2bb469d7dd464619692
c052ddf9a69031b36e27713dfc2ca1d3494de9e0436c5bb35d17d92dac2c61bd
GET /events.js HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=utf-8
Date: Mon, 12 Dec 2022 03:50:14 GMT
Location: https://qvdt3feo.com/events.js
Content-Length: 65
Connection: keep-alive
t.co/i/adsct?bci=3&eci=2&event_id=aeb0f752-42cc-4424-82a0-209330f6ebec&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ff419208-24ed-4653-b543-4461393c361c&tw_document_href=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.29
200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=aeb0f752-42cc-4424-82a0-209330f6ebec&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ff419208-24ed-4653-b543-4461393c361c&tw_document_href=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=aeb0f752-42cc-4424-82a0-209330f6ebec&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ff419208-24ed-4653-b543-4461393c361c&tw_document_href=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:14 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=5dac7057-50eb-4556-9955-e2b5cafd21be; Max-Age=63072000; Expires=Wed, 11 Dec 2024 03:50:14 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 06a7f52cb2dba343
strict-transport-security: max-age=0
x-response-time: 108
x-connection-hash: 56653fb31427045b8c8681a6ccbbea07d0d621e791cc3d3375e73e66430f5493
X-Firefox-Spdy: h2
js-agent.newrelic.com/290.2d6a2503-1220.js
200 OK 3.4 kB URL HTTP/2 js-agent.newrelic.com/290.2d6a2503-1220.js
IP
File type ASCII text, with very long lines (8544)
Hash b9baa2cb6a3b1a3d0fda03cd7db51631
42d37467e05182e3cab2fcb54577dc462adcf50b
31a8b4d47298cae24c66e37256a51474ae88a745fdfec79f99b2d43608e6d822
GET /290.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: fhmr6WetDM+g2i2QlvVMRpxUR5FtkKdG9L63CCQ3CSWsvtR6j++f9vvc73sttpIYqURa2xyYTRk=
x-amz-request-id: VK0ZFWF8T6343F8V
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "13898fbb4d7a1f83fc6722c4c12faf40"
x-amz-version-id: C4hj6k9j4I7xXuTBZvcbX78Bf.Ep8KMk
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 12 Dec 2022 03:50:14 GMT
via: 1.1 varnish
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 746
x-timer: S1670817015.535195,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 3424
X-Firefox-Spdy: h2
js-agent.newrelic.com/368.2d6a2503-1220.js
200 OK 1.4 kB URL HTTP/2 js-agent.newrelic.com/368.2d6a2503-1220.js
IP
File type ASCII text, with very long lines (3382)
Hash fa50a55750d1d0978fca32be5dbc3988
a7f447621d48b3ecf7fc0192b515d506d3d1ad18
c621038fb07e536af8a1ec6d260853dfe69055dc2fb526700919c53b3b7e5f20
GET /368.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: kwoAxcBtx2IMbi3IHVdur3TxF/StXF2YgQ/J5F/J0LqxQRcevbbS10v8PBtCq89jFlCdbzEZt0Y=
x-amz-request-id: VK0S7FDBAB0EX9VY
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "16b4f3676c3859e1378a2ccdebbad675"
x-amz-version-id: zC.KoTaM7bjdFj.W4KQMilxtjXXSNPks
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 12 Dec 2022 03:50:14 GMT
via: 1.1 varnish
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 743
x-timer: S1670817015.535578,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 1443
X-Firefox-Spdy: h2
js-agent.newrelic.com/768.2d6a2503-1220.js
200 OK 2.2 kB URL HTTP/2 js-agent.newrelic.com/768.2d6a2503-1220.js
IP
File type ASCII text, with very long lines (5523)
Hash 98a96a3306b7723c0b8c4bff074cdd9f
e9070da7daa34fa2d8ac2e4ec00e3c499ea37516
a6079d50fa4c72b521fd865e67be080b5b21c336a71dbf7a1800a12ad42384f7
GET /768.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: YghQGw//W98CcE+uLEc2bIpyY1zfBy1cvSl3ZbHItGIBbBbjBYrgjjDhKdNnyagoNGaVfLpI2xM=
x-amz-request-id: VK0XNZM280HMN60Q
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "d6cc8b42eda6fd7734014b03b87b5787"
x-amz-version-id: 0CJw6LdyBdZcjhOiVrtC0pLcOFtA3d5G
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 12 Dec 2022 03:50:14 GMT
via: 1.1 varnish
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 747
x-timer: S1670817015.535935,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 2225
X-Firefox-Spdy: h2
js-agent.newrelic.com/775.2d6a2503-1220.js
200 OK 632 B URL HTTP/2 js-agent.newrelic.com/775.2d6a2503-1220.js
IP
File type ASCII text, with very long lines (1169)
Hash 661520fd0dfebb919d68a69b60ca426f
b85ef80a0e0d95bf4904f9ce4fad56c49ae035be
ecd489671c6255fee8370fc1f8f4e99519ef8d4c4c0ab06640b0c021642e1db7
GET /775.2d6a2503-1220.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
x-amz-id-2: n5W3M8HU3EdwDhPARC2iiAf1as95kdLfrN2+qdL0W35SMVzIqjIlMR9W7ck8oTAzeIw6lrJi5fM=
x-amz-request-id: VK0MRM6MJ78HXF3Y
last-modified: Wed, 05 Oct 2022 14:53:42 GMT
etag: "1dfdb74c0491489bf04c6deadb56add2"
x-amz-version-id: y1AQ2bnjUbwuFOuSS5MP1vew1dGw.1iz
content-type: application/javascript
server: AmazonS3
access-control-allow-origin: *
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Mon, 12 Dec 2022 03:50:14 GMT
via: 1.1 varnish
x-served-by: cache-bma1640-BMA
x-cache: HIT
x-cache-hits: 746
x-timer: S1670817015.536270,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 632
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/34987/domain/squadhelp.com/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/34987/domain/squadhelp.com/token
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/34987/domain/squadhelp.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.squadhelp.com/
Origin: https://www.squadhelp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Sun, 11 Dec 2022 05:19:16 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CvXnH1mJz4EpT8h4tlqRth3GWqFTY60ZDLFnzMbHBY1w6ZUNAYA0QA==
age: 81058
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=15226519&tm=gtm002&Ver=2&mid=e2fc414d-e934-4e89-b4de-d48c37bfe83c&sid=14a2df6079d011edbd03e58292768e98&vid=14a30f3079d011edb4366dab90165b96&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=soloadvanced.com&p=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&r=<=2246&evt=pageLoad&sv=1&rn=990867
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=15226519&tm=gtm002&Ver=2&mid=e2fc414d-e934-4e89-b4de-d48c37bfe83c&sid=14a2df6079d011edbd03e58292768e98&vid=14a30f3079d011edb4366dab90165b96&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=soloadvanced.com&p=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&r=<=2246&evt=pageLoad&sv=1&rn=990867
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=15226519&tm=gtm002&Ver=2&mid=e2fc414d-e934-4e89-b4de-d48c37bfe83c&sid=14a2df6079d011edbd03e58292768e98&vid=14a30f3079d011edb4366dab90165b96&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=soloadvanced.com&p=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&r=<=2246&evt=pageLoad&sv=1&rn=990867 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=3344BB2C35736CBA0286A95434246DB8; domain=.bing.com; expires=Sat, 06-Jan-2024 03:50:14 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 6654A6742CC44B849F8FFA3A353FD11E Ref B: OSL30EDGE0321 Ref C: 2022-12-12T03:50:14Z
date: Mon, 12 Dec 2022 03:50:13 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=15226519&tm=gtm002&Ver=2&mid=e2fc414d-e934-4e89-b4de-d48c37bfe83c&sid=14a2df6079d011edbd03e58292768e98&vid=14a30f3079d011edb4366dab90165b96&vids=0&msclkid=N&pagetype=product&en=Y&sw=1280&sh=1024&sc=24&evt=custom&rn=575802
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=15226519&tm=gtm002&Ver=2&mid=e2fc414d-e934-4e89-b4de-d48c37bfe83c&sid=14a2df6079d011edbd03e58292768e98&vid=14a30f3079d011edb4366dab90165b96&vids=0&msclkid=N&pagetype=product&en=Y&sw=1280&sh=1024&sc=24&evt=custom&rn=575802
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=15226519&tm=gtm002&Ver=2&mid=e2fc414d-e934-4e89-b4de-d48c37bfe83c&sid=14a2df6079d011edbd03e58292768e98&vid=14a30f3079d011edb4366dab90165b96&vids=0&msclkid=N&pagetype=product&en=Y&sw=1280&sh=1024&sc=24&evt=custom&rn=575802 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=196AD5B48A7D6A11251DC7CC8B2A6B35; domain=.bing.com; expires=Sat, 06-Jan-2024 03:50:14 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C6490E563EB44F51867E07B6F57D0B4E Ref B: OSL30EDGE0321 Ref C: 2022-12-12T03:50:14Z
date: Mon, 12 Dec 2022 03:50:13 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f69c32ac7b9825b1255fed72f425fe77
58e0fb4b9d5c835bb222a73b5fd939af76991485
7e61ce2f34c53d0730f5e88d26fb87651af80f1356ccb9ccc5a6efa2b255195c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f69c32ac7b9825b1255fed72f425fe77
58e0fb4b9d5c835bb222a73b5fd939af76991485
7e61ce2f34c53d0730f5e88d26fb87651af80f1356ccb9ccc5a6efa2b255195c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f69c32ac7b9825b1255fed72f425fe77
58e0fb4b9d5c835bb222a73b5fd939af76991485
7e61ce2f34c53d0730f5e88d26fb87651af80f1356ccb9ccc5a6efa2b255195c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f69c32ac7b9825b1255fed72f425fe77
58e0fb4b9d5c835bb222a73b5fd939af76991485
7e61ce2f34c53d0730f5e88d26fb87651af80f1356ccb9ccc5a6efa2b255195c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f69c32ac7b9825b1255fed72f425fe77
58e0fb4b9d5c835bb222a73b5fd939af76991485
7e61ce2f34c53d0730f5e88d26fb87651af80f1356ccb9ccc5a6efa2b255195c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 312 B IP
Hash 24806b65da7b40c5db8eefe69a4b4374
667076eb7fe24d1398ad5a761f2587ace73b9273
81821b6ffc2256417ba4112ec790e6c73c23f2109310e404cfe27776c3d2b564
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6516
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Last-Modified: Mon, 12 Dec 2022 02:01:39 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 312
www.google.no/pagead/1p-user-list/1030947153/?random=1670817011660&cv=11&fst=1670814000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&data=dynx_pagetype%3Dother&fmt=3&is_vtc=1&random=3597491786&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1030947153/?random=1670817011660&cv=11&fst=1670814000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&data=dynx_pagetype%3Dother&fmt=3&is_vtc=1&random=3597491786&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1030947153/?random=1670817011660&cv=11&fst=1670814000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&data=dynx_pagetype%3Dother&fmt=3&is_vtc=1&random=3597491786&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 03:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
api-iam.intercom.io/messenger/web/ping
200 OK 1.8 kB URL HTTP/2 api-iam.intercom.io/messenger/web/ping
IP
Hash 49a4dd847502062ff4940ca82b4c2225
78dc68e8e05de3bbc4ae535583ba126cf2535403
fa38dc071491fb15c38911b339867c9b54b1badc7639e38049a5385276b13543
POST /messenger/web/ping HTTP/1.1
Host: api-iam.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 374
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:14 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cache-control: max-age=0, private, must-revalidate
x-ratelimit-limit: 13333
x-ratelimit-reset: 1670817020
strict-transport-security: max-age=31556952; includeSubDomains; preload
x-ratelimit-remaining: 13328
access-control-allow-origin: https://www.squadhelp.com
vary: Accept,Accept-Encoding
x-intercom-version: ce06807ee2ce6357fe9e41fbe0a92e0e0251658d
x-xss-protection: 1; mode=block
content-encoding: gzip
x-request-id: 0036ld3pk7fpl0vvqr2g
access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, OPTIONS
etag: W/"7f0ecffb643b50a337171d70040720b0"
x-runtime: 0.324937
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server: nginx
x-ami-version: ami-0a24581f9166fc519
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1030947153/?random=1670817011741&cv=11&fst=1670814000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3108526508&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1030947153/?random=1670817011741&cv=11&fst=1670814000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3108526508&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1030947153/?random=1670817011741&cv=11&fst=1670814000000&bg=ffffff&guid=ON&async=1>m=2oabu0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=3108526508&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 03:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-conversion/1030947153/?random=1670817011590&cv=11&fst=1670817011590&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=DP_eCJK8xO0BENGCzOsD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&value=0&bttype=purchase&auid=120752073.1670817012&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/1030947153/?random=1670817011590&cv=11&fst=1670817011590&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=DP_eCJK8xO0BENGCzOsD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&value=0&bttype=purchase&auid=120752073.1670817012&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/1030947153/?random=1670817011590&cv=11&fst=1670817011590&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=DP_eCJK8xO0BENGCzOsD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&value=0&bttype=purchase&auid=120752073.1670817012&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 03:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1030947153/?random=1670817011597&cv=11&fst=1670814000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Jf_hCIzXoNECENGCzOsD&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&fmt=3&is_vtc=1&random=778516998&rmt_tld=1&ipr=y
200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1030947153/?random=1670817011597&cv=11&fst=1670814000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Jf_hCIzXoNECENGCzOsD&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&fmt=3&is_vtc=1&random=778516998&rmt_tld=1&ipr=y
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1030947153/?random=1670817011597&cv=11&fst=1670814000000&bg=ffffff&guid=ON&async=1>m=2wgbu0&u_w=1280&u_h=1024&label=Jf_hCIzXoNECENGCzOsD&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tiba=soloadvanced.com&fmt=3&is_vtc=1&random=778516998&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 12 Dec 2022 03:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/p/action/15226519.js
204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/15226519.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/15226519.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=3C26C611C247615B0040D469C31060D8; domain=.bing.com; expires=Sat, 06-Jan-2024 03:50:14 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A17CEBA7C3B5441AA18CD33EFB7E0283 Ref B: OSL30EDGE0321 Ref C: 2022-12-12T03:50:14Z
date: Mon, 12 Dec 2022 03:50:14 GMT
X-Firefox-Spdy: h2
cdn.acsbapp.com/cache/app/squadhelp.com/config.json
200 OK 158 B URL HTTP/2 cdn.acsbapp.com/cache/app/squadhelp.com/config.json
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash a6f3cfc5aebbda618b614128caa9d068
28e06c0542de4756c5f09220b152d1a9d470dceb
839d5d64d3783e3aa71ec976e74e479af70e535c382ea835c7582165668493bc
GET /cache/app/squadhelp.com/config.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Origin: https://www.squadhelp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Tue, 13 Dec 2022 03:50:14 GMT
content-type: application/json
last-modified: Mon, 12 Dec 2022 03:48:16 GMT
etag: "9e-6396a480-93737e9751860b30;;;"
accept-ranges: bytes
content-length: 158
date: Mon, 12 Dec 2022 03:50:14 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1670817012378&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd
302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1670817012378&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=34987&time=1670817012378&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34987%26time%3D1670817012378%26url%3Dhttps%253A%252F%252Fwww.squadhelp.com%252Fname%252Fsoloadvanced%253Flp%253Dd%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQLqAuD6MENUWgAAAYUEdGOKGBbG2aFHqM42QoMJpPmJVIHyfuZZMwCFJOtTquIP_dSbWOaPYn5vnQ; Max-Age=2592000; Expires=Wed, 11 Jan 2023 03:50:14 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQKOBbgp4B1CWgAAAYUEdGOKqgnitBQRV2bBI2bal6BJBdtDjRa-OipSDwromsLVzftciEJnWSenx5QQzV4t3w; Max-Age=2592000; Expires=Wed, 11 Jan 2023 03:50:14 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&d772a9b0-61d5-4ef8-868a-c01a224443f3"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 12-Dec-2023 03:50:14 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2452:u=1:x=1:i=1670817014:t=1670903414:v=2:sig=AQHUWlM2PlHTzZS4lpvLR0o_uquDVmSf"; Expires=Tue, 13 Dec 2022 03:50:14 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXvmWaktV6wPDd1tO32mw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 2568E1BE0887480B92FE694511AA3F7D Ref B: OSL30EDGE0220 Ref C: 2022-12-12T03:50:14Z
date: Mon, 12 Dec 2022 03:50:13 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
302 Found 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=022D1AA3233945558EDE27EB3A98407C&RedC=c.clarity.ms&MXFR=2EEA9CE917376E702B348E9113376038
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=2EEA9CE917376E702B348E9113376038; domain=.clarity.ms; expires=Sat, 06-Jan-2024 03:50:14 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Mon, 12 Dec 2022 03:50:13 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash be36fdcbab5a82c4711b6eb21d16120b
4589a6e36d78df3d385043a6041da679f0b366e4
423e6b90363e7b036ae2270c3dbc280d6a3621c721b1b92aefb377fed560d227
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
200 OK 471 B IP
Hash 110e2f3f2b3b9f8bca77eeb4fb4e5cdb
8da8cd9c8f1ea386cc44e04c762da66ffe59fe0c
c66170116aefa5191bb9aad2717f9b54282689e28c1edff106a10e7f466d1753
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2764
Cache-Control: max-age=156417
Content-Type: application/ocsp-response
Date: Mon, 12 Dec 2022 03:50:14 GMT
Etag: "63965a2b-1d7"
Expires: Tue, 13 Dec 2022 23:17:11 GMT
Last-Modified: Sun, 11 Dec 2022 22:31:07 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
nexus-websocket-a.intercom.io/pubsub/5-5i57DhsVlNXYFkKShJRqBU74Xdi50oTWB3J_dgAfXgE87IZFASil7yz7L-zmVPkJDVAo_sAFpj8_nzxLHi4E6goTE8MzHqdY-dVx?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined
101 Switching Protocols 0 B URL HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-5i57DhsVlNXYFkKShJRqBU74Xdi50oTWB3J_dgAfXgE87IZFASil7yz7L-zmVPkJDVAo_sAFpj8_nzxLHi4E6goTE8MzHqdY-dVx?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pubsub/5-5i57DhsVlNXYFkKShJRqBU74Xdi50oTWB3J_dgAfXgE87IZFASil7yz7L-zmVPkJDVAo_sAFpj8_nzxLHi4E6goTE8MzHqdY-dVx?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined HTTP/1.1
Host: nexus-websocket-a.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.squadhelp.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: h9PgazDTuHBm4FQdkC7caQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Mon, 12 Dec 2022 03:50:14 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: rWnrNakbjn8Ggb5w919CTAakOS0=
Sec-WebSocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-11585500-1&cid=1736455015.1670817012&jid=785010627&gjid=631735659&_gid=104959273.1670817012&_u=aCDAgEADQAAAAGAAI~&z=437043577
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-11585500-1&cid=1736455015.1670817012&jid=785010627&gjid=631735659&_gid=104959273.1670817012&_u=aCDAgEADQAAAAGAAI~&z=437043577
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-11585500-1&cid=1736455015.1670817012&jid=785010627&gjid=631735659&_gid=104959273.1670817012&_u=aCDAgEADQAAAAGAAI~&z=437043577 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.squadhelp.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 12 Dec 2022 03:50:14 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=aeb0f752-42cc-4424-82a0-209330f6ebec&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ff419208-24ed-4653-b543-4461393c361c&tw_document_href=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.29
200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=aeb0f752-42cc-4424-82a0-209330f6ebec&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ff419208-24ed-4653-b543-4461393c361c&tw_document_href=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=aeb0f752-42cc-4424-82a0-209330f6ebec&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=ff419208-24ed-4653-b543-4461393c361c&tw_document_href=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:13 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_qI3ibhXrVvdkUtzBBW2qeg=="; Max-Age=63072000; Expires=Wed, 11 Dec 2024 03:50:14 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 08d4435c7c42b1aa
strict-transport-security: max-age=631138519
x-response-time: 103
x-connection-hash: 9226cbe3388fb24a6b773e3faa78657222b6fa7f23642afbc271fefb80cbf366
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 9bdb1eff323423419b509fa9d6a1c8df
325a9ac89ba307832e4c7c7607466d64092b125b
03f46292ad4b28800bb28b1bdff06e513c3e5a0b213eee03c30ce8195e76e035
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163941
Date: Mon, 12 Dec 2022 03:50:14 GMT
Etag: "63966c8b-1d7"
Expires: Wed, 14 Dec 2022 01:22:35 GMT
Last-Modified: Sun, 11 Dec 2022 23:49:31 GMT
Server: ECS (nyb/1D2D)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: BbKWWAEZrkp110m-J6J5ghyakqukvqk6fCboXuC7YMidnNdj4PvzUw==
Age: 5585
tr.outbrain.com/cachedClickId?marketerId=00307c4941e2958412d6d5d587832791fc
200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=00307c4941e2958412d6d5d587832791fc
IP
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=00307c4941e2958412d6d5d587832791fc HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 03:50:14 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: 9e40a172dcab76ad1c0110ad47bd7755
content-encoding: gzip
cdn.acsbapp.com/cache/app/en.build.json
200 OK 26 kB URL HTTP/2 cdn.acsbapp.com/cache/app/en.build.json
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65461), with no line terminators
Hash 4e6620319fd1fe5365a32e358d293913
1747831e6afdb8deff12172c2210e848be647fba
9175fba4e40d02dd332237fe9f8e2d1985e9d50fe2be298b93deacb1c589ef8f
GET /cache/app/en.build.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Origin: https://www.squadhelp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Tue, 13 Dec 2022 03:50:14 GMT
content-type: application/json
last-modified: Sun, 11 Dec 2022 10:08:03 GMT
etag: "3b8a8-6395ac03-d435ed947e16af5b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25889
date: Mon, 12 Dec 2022 03:50:14 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
c.bing.com/c.gif?CtsSyncId=022D1AA3233945558EDE27EB3A98407C&RedC=c.clarity.ms&MXFR=2EEA9CE917376E702B348E9113376038
302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=022D1AA3233945558EDE27EB3A98407C&RedC=c.clarity.ms&MXFR=2EEA9CE917376E702B348E9113376038
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=022D1AA3233945558EDE27EB3A98407C&RedC=c.clarity.ms&MXFR=2EEA9CE917376E702B348E9113376038 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=022D1AA3233945558EDE27EB3A98407C&MUID=1F4FDC29C45C6CF007A9CE51C50B6D20
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=1F4FDC29C45C6CF007A9CE51C50B6D20; domain=c.bing.com; expires=Sat, 06-Jan-2024 03:50:14 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 7128B71FF76B4AD4B61014EDD258DEC8 Ref B: OSL30EDGE0321 Ref C: 2022-12-12T03:50:14Z
date: Mon, 12 Dec 2022 03:50:14 GMT
content-length: 0
X-Firefox-Spdy: h2
tr.outbrain.com/unifiedPixel?marketerId=00307c4941e2958412d6d5d587832791fc&apiObjVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&optOut=false&bust=023946112111935214&referrer=
200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00307c4941e2958412d6d5d587832791fc&apiObjVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&optOut=false&bust=023946112111935214&referrer=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=00307c4941e2958412d6d5d587832791fc&apiObjVersion=1.1&obtpVersion=2.0.5&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&optOut=false&bust=023946112111935214&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 03:50:14 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: e8255c21ecce51c752ea14f40d6e077e
content-encoding: gzip
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34987%26time%3D1670817012378%26url%3Dhttps%253A%252F%252Fwww.squadhelp.com%252Fname%252Fsoloadvanced%253Flp%253Dd%26liSync%3Dtrue
302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34987%26time%3D1670817012378%26url%3Dhttps%253A%252F%252Fwww.squadhelp.com%252Fname%252Fsoloadvanced%253Flp%253Dd%26liSync%3Dtrue
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34987%26time%3D1670817012378%26url%3Dhttps%253A%252F%252Fwww.squadhelp.com%252Fname%252Fsoloadvanced%253Flp%253Dd%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1670817012378&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&c42ab093-d8bd-4fee-821d-dd47f7a1d069"; Domain=.linkedin.com; Expires=Tue, 12-Dec-2023 03:50:14 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20221212035014a4add2b6-2f73-468b-81a7-bac91d9add51AQFDxDiOuTQ_5gP1ZctvW8gxyuiXW0eR"; Domain=.www.linkedin.com; Expires=Tue, 12-Dec-2023 03:50:14 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzA4MTcwMTQ7MjswMjE+a/3HhBzFA0Uh5lISQ6DU33igYQxTh1l++n6R6GbTCw==; Domain=.linkedin.com; Expires=Sat, 10 Jun 2023 03:50:14 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2452:u=1:x=1:i=1670817014:t=1670903414:v=2:sig=AQHUWlM2PlHTzZS4lpvLR0o_uquDVmSf"; Expires=Tue, 13 Dec 2022 03:50:14 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com onyx.www.linkedin.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXvmWapRVVQVqosD2eoKA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 1DB3EAAE5E394939AF5D351BA663D830 Ref B: OSL30EDGE0220 Ref C: 2022-12-12T03:50:14Z
date: Mon, 12 Dec 2022 03:50:14 GMT
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=776488579087398&ev=PageView&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&rl=&if=false&ts=1670817013260&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670817013259.733342350&it=1670817012535&coo=false&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=776488579087398&ev=PageView&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&rl=&if=false&ts=1670817013260&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670817013259.733342350&it=1670817012535&coo=false&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=776488579087398&ev=PageView&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&rl=&if=false&ts=1670817013260&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1670817013259.733342350&it=1670817012535&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 12 Dec 2022 03:50:15 GMT
X-Firefox-Spdy: h2
b.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1239
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.squadhelp.com
access-control-allow-credentials: true
date: Mon, 12 Dec 2022 03:50:14 GMT
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/sa.css
200 OK 27 B URL HTTP/1.1 tags.srv.stackadapt.com/sa.css
IP
Hash 83f5ba33314db5f218488a5a51da1455
87a21689afa235c4c65437334085be4bf5cca170
3f100e5e6ff270dadb43b44878f0118a2389dee0d844acc102b5179d70a824dc
GET /sa.css HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: text/css
Date: Mon, 12 Dec 2022 03:50:15 GMT
Content-Length: 27
Connection: keep-alive
bam.nr-data.net/1/a159e7928d?a=126710130&v=1220.PROD&to=Y1NTZ0ZUDUVRUkZbVloZZEFdGk0cQFlC&rst=3799&ck=0&s=be9eaf64c78fd2c6&ref=https://www.squadhelp.com/name/soloadvanced&ap=172&be=2235&fe=112&dc=95&perf=%7B%22timing%22:%7B%22of%22:1670817009111,%22n%22:0,%22f%22:665,%22dn%22:667,%22dne%22:685,%22c%22:711,%22s%22:716,%22ce%22:875,%22rq%22:876,%22rp%22:1950,%22rpe%22:1950,%22dl%22:1961,%22di%22:2181,%22ds%22:2206,%22de%22:2211,%22dc%22:2229,%22l%22:2229,%22le%22:2246%7D,%22navigation%22:%7B%7D%7D&fcp=2182&at=TxRQEQ5OHks%3D&jsonp=NREUM.setToken
200 OK 77 B URL HTTP/1.1 bam.nr-data.net/1/a159e7928d?a=126710130&v=1220.PROD&to=Y1NTZ0ZUDUVRUkZbVloZZEFdGk0cQFlC&rst=3799&ck=0&s=be9eaf64c78fd2c6&ref=https://www.squadhelp.com/name/soloadvanced&ap=172&be=2235&fe=112&dc=95&perf=%7B%22timing%22:%7B%22of%22:1670817009111,%22n%22:0,%22f%22:665,%22dn%22:667,%22dne%22:685,%22c%22:711,%22s%22:716,%22ce%22:875,%22rq%22:876,%22rp%22:1950,%22rpe%22:1950,%22dl%22:1961,%22di%22:2181,%22ds%22:2206,%22de%22:2211,%22dc%22:2229,%22l%22:2229,%22le%22:2246%7D,%22navigation%22:%7B%7D%7D&fcp=2182&at=TxRQEQ5OHks%3D&jsonp=NREUM.setToken
IP
File type ASCII text, with no line terminators
Hash f1442f5831dbbe0210da2d7a4180d6b8
2ade23c6c7a001c66f0c0a9a101ec152747b434e
c6acf9fb2ecc1b144c51bd0337bbf1c26db3df2f649ac2da5c56db20d93eb3ef
GET /1/a159e7928d?a=126710130&v=1220.PROD&to=Y1NTZ0ZUDUVRUkZbVloZZEFdGk0cQFlC&rst=3799&ck=0&s=be9eaf64c78fd2c6&ref=https://www.squadhelp.com/name/soloadvanced&ap=172&be=2235&fe=112&dc=95&perf=%7B%22timing%22:%7B%22of%22:1670817009111,%22n%22:0,%22f%22:665,%22dn%22:667,%22dne%22:685,%22c%22:711,%22s%22:716,%22ce%22:875,%22rq%22:876,%22rp%22:1950,%22rpe%22:1950,%22dl%22:1961,%22di%22:2181,%22ds%22:2206,%22de%22:2211,%22dc%22:2229,%22l%22:2229,%22le%22:2246%7D,%22navigation%22:%7B%7D%7D&fcp=2182&at=TxRQEQ5OHks%3D&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 12 Dec 2022 03:50:15 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 77837ea63d00b515-OSL
Access-Control-Allow-Origin: *
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip
web1.acsbapp.com/apps/app/dist/media/logomono.svg
200 OK 1.2 kB URL HTTP/2 web1.acsbapp.com/apps/app/dist/media/logomono.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash 5a1c5c803738f6acbab0a79379c92c10
9f4639325d9e8e69ccc2bfc30d0f83d7dd11cd79
04009697f389893748179c149cad7b1e399d23a2284637350fe07ad94ffa5350
GET /apps/app/dist/media/logomono.svg HTTP/1.1
Host: web1.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Tue, 12 Dec 2023 03:50:15 GMT
content-type: image/svg+xml
last-modified: Mon, 26 Sep 2022 21:02:04 GMT
etag: "1034-6332134c-7705bf7dfc5e498d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1210
date: Mon, 12 Dec 2022 03:50:15 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=022D1AA3233945558EDE27EB3A98407C&MUID=1F4FDC29C45C6CF007A9CE51C50B6D20
200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=022D1AA3233945558EDE27EB3A98407C&MUID=1F4FDC29C45C6CF007A9CE51C50B6D20
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=022D1AA3233945558EDE27EB3A98407C&MUID=1F4FDC29C45C6CF007A9CE51C50B6D20 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Mon, 12-Dec-2022 04:00:15 GMT; path=/; SameSite=None; Secure;
date: Mon, 12 Dec 2022 03:50:14 GMT
content-length: 42
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1670817012378&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&liSync=true
200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1670817012378&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&liSync=true
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=34987&time=1670817012378&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&2c030f22-993e-4678-8f62-1b4c63537601"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 12-Dec-2023 03:50:15 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2433:u=1:x=1:i=1670817015:t=1670903415:v=2:sig=AQFocodYmvEEcvKBmYwmNCHuClaRdd7t"; Expires=Tue, 13 Dec 2022 03:50:15 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXvmWaveytcA2j2D9zUvw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 49EB67132E184C48BC0275608E38665B Ref B: OSL30EDGE0220 Ref C: 2022-12-12T03:50:15Z
date: Mon, 12 Dec 2022 03:50:14 GMT
content-length: 0
X-Firefox-Spdy: h2
b.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 60585
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.squadhelp.com
access-control-allow-credentials: true
date: Mon, 12 Dec 2022 03:50:14 GMT
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/saq_pxl?uid=tMfPTakOcQhbY9oPuRxQ5Q&is_js=true&landing_url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&t=soloadvanced.com&tip=UhptEi2FaeeUMFp5s3d1XvFPHexr0wUYWvMfqySyD7E&host=https://www.squadhelp.com&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo
200 OK 116 B URL HTTP/1.1 tags.srv.stackadapt.com/saq_pxl?uid=tMfPTakOcQhbY9oPuRxQ5Q&is_js=true&landing_url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&t=soloadvanced.com&tip=UhptEi2FaeeUMFp5s3d1XvFPHexr0wUYWvMfqySyD7E&host=https://www.squadhelp.com&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 9e29b9729014a4e6a0f9acf522daa07d
7ecad4e87388022ea224a8752b5ccf02aa3abcac
65d6fc76a8f26596cce60b33939093689c23e38cdc324343e82b3e7951ea84a1
GET /saq_pxl?uid=tMfPTakOcQhbY9oPuRxQ5Q&is_js=true&landing_url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd&t=soloadvanced.com&tip=UhptEi2FaeeUMFp5s3d1XvFPHexr0wUYWvMfqySyD7E&host=https://www.squadhelp.com&sa-user-id-v2=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo&sa-user-id=s%253A.o6W7wkJsHSTU4%252BLlDruZ%252FwNjVcUZZMvakQpSatDoAgo HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: https://www.squadhelp.com
Content-Type: text/plain; charset=utf-8
Date: Mon, 12 Dec 2022 03:50:15 GMT
Set-Cookie: sa-user-id=s%3A0-39dc7fe1-10fb-4546-67f6-5fc16a784463.AGAFY5SjOTyxXXSoTEOrB7VE%2FUbJUL2oUi%2BnKHff1VI; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3AOdx_4RD7RUZn9l_BanhEY1taKpo.MPaZlM4l6AocZGmNzUPR5t%2FyvLZwNVSx3PIz0Jwc7dc; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 116
Connection: keep-alive
qvdt3feo.com/events.js
200 OK 5.9 kB IP
Hash 59ac6c942d6bbd2bb53af6c4f9626c4d
0d8a21f1fde948aa6731ddfc4e7520e0042de89a
fea046c9bf872dc12dbd83e21e939a3570bc6d6b78c9e2809a82b95c8eacc704
GET /events.js HTTP/1.1
Host: qvdt3feo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:14 GMT
content-type: text/javascript
access-control-allow-origin: *
cache-control: max-age=5
content-encoding: gzip
X-Firefox-Spdy: h2
trc-events.taboola.com/1344021/log/3/unip?en=pre_d_eng_tb&tos=1569&scd=39&ssd=1&est=1670817012626&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670817014199&vi=1670817012624&ri=9fc136e5f612020d97a3f45d57555704&ref=null&cv=20221211-7-RELEASE&item-url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1344021/log/3/unip?en=pre_d_eng_tb&tos=1569&scd=39&ssd=1&est=1670817012626&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670817014199&vi=1670817012624&ri=9fc136e5f612020d97a3f45d57555704&ref=null&cv=20221211-7-RELEASE&item-url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1344021/log/3/unip?en=pre_d_eng_tb&tos=1569&scd=39&ssd=1&est=1670817012626&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1670817014199&vi=1670817012624&ri=9fc136e5f612020d97a3f45d57555704&ref=null&cv=20221211-7-RELEASE&item-url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Mon, 12 Dec 2022 03:50:16 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.squadhelp.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
b.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 65626
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.squadhelp.com
access-control-allow-credentials: true
date: Mon, 12 Dec 2022 03:50:16 GMT
X-Firefox-Spdy: h2
trc-events.taboola.com/1344021/log/3/unip?en=pre_d_eng_tb&tos=4571&scd=39&ssd=1&est=1670817012626&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670817017200&vi=1670817012624&ri=9fc136e5f612020d97a3f45d57555704&ref=null&cv=20221211-7-RELEASE&item-url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1344021/log/3/unip?en=pre_d_eng_tb&tos=4571&scd=39&ssd=1&est=1670817012626&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670817017200&vi=1670817012624&ri=9fc136e5f612020d97a3f45d57555704&ref=null&cv=20221211-7-RELEASE&item-url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1344021/log/3/unip?en=pre_d_eng_tb&tos=4571&scd=39&ssd=1&est=1670817012626&ver=35&isls=true&src=i&invt=3000&rv=1&tim=1670817017200&vi=1670817012624&ri=9fc136e5f612020d97a3f45d57555704&ref=null&cv=20221211-7-RELEASE&item-url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Mon, 12 Dec 2022 03:50:18 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.squadhelp.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
www.squadhelp.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
200 OK 0 B URL HTTP/2 www.squadhelp.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/soloadvanced?lp=d
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: application/javascript
last-modified: Wed, 07 Dec 2022 18:45:45 GMT
etag: W/"6390df59-4d7"
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9a5ca8b512-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Wed, 14 Dec 2022 03:50:12 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
www.squadhelp.com/static_images/logo.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/static_images/logo.svg
IP
GET /static_images/logo.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/soloadvanced?lp=d
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: image/svg+xml
last-modified: Mon, 12 Sep 2022 15:00:45 GMT
etag: W/"631f499d-1321"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 4230572
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9a5ca4b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/youtube.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/html/static_images/youtube.svg
IP
GET /html/static_images/youtube.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/a03b7d742d634005005d8afc9c5eff3b.css
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:35:45 GMT
etag: W/"63431481-36d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 4230571
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9b0cf6b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/icon-arrow-down-blue.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/html/static_images/icon-arrow-down-blue.svg
IP
GET /html/static_images/icon-arrow-down-blue.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/a03b7d742d634005005d8afc9c5eff3b.css
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:36:03 GMT
etag: W/"63431493-326"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 4230571
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9afcedb512-OSL
content-encoding: br
X-Firefox-Spdy: h2
script.fixel.ai/script/Fixel.min.js
200 OK 0 B URL HTTP/2 script.fixel.ai/script/Fixel.min.js
IP
GET /script/Fixel.min.js HTTP/1.1
Host: script.fixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 31 May 2021 09:44:32 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: qn3ku6T2KTYfiw1ZK.qbHtFFDfyG1XJc
server: AmazonS3
content-encoding: gzip
date: Mon, 12 Dec 2022 03:47:32 GMT
etag: W/"bd757ff2fd05d44091740f66680801be"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BMiqy7UbtHhjRtWmQ5-irbJQ8ndQCjHzzKRjCskS2X-vEipaTM03ew==
age: 264
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.6.43/clarity.js
200 OK 0 B URL HTTP/2 www.clarity.ms/eus2/s/0.6.43/clarity.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /eus2/s/0.6.43/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d90b0402dd6f4c"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-azure-ref-originshield: 0da+VYwAAAACOmg2zy8lBSZ0Z+X067AfyQU1TMDRFREdFMTkxOAA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
x-azure-ref: 09qSWYwAAAADY8ym9zM5sS4Yi2BBl54enU1ZHMjBFREdFMDUwOQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Mon, 12 Dec 2022 03:50:14 GMT
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/34987/domain/squadhelp.com/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/34987/domain/squadhelp.com/token
IP
GET /partner/34987/domain/squadhelp.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Mon, 12 Dec 2022 03:11:17 GMT
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: f0FBuS3gK_BvdLIV6h9_dZk3TAtFERRGa6yHm56m46S16XEyXSvEaw==
age: 2337
access-control-allow-origin: *
access-control-expose-headers: *
X-Firefox-Spdy: h2
soloadvanced.com/
301 Moved Permanently 0 B IP
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: soloadvanced.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Mon, 12 Dec 2022 03:50:11 GMT
content-type: text/html
location: https://www.squadhelp.com/name/soloadvanced?lp=d
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2Mzwv9eIkWyKtntaFs6o%2BiJNE9MYn7p1Qgg4AuTyXrp5aNHu6Xlh5VGDigiR3AB27VZ0QhZM2emUnAAinGJWDtJREulpSuFlcMARv15%2BXduOuPrF%2FOkJLtb%2B%2FtJwppdzVVMv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77837e9038370afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.squadhelp.com/static_images/approved-footer-2.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/static_images/approved-footer-2.svg
IP
GET /static_images/approved-footer-2.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/soloadvanced?lp=d
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: image/svg+xml
last-modified: Tue, 27 Sep 2022 17:47:30 GMT
etag: W/"63333732-14e52"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 4230572
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9a5ca5b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/facebook.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/html/static_images/facebook.svg
IP
GET /html/static_images/facebook.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/a03b7d742d634005005d8afc9c5eff3b.css
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:35:47 GMT
etag: W/"63431483-428"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 4230571
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9afcf0b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/name/soloadvanced?lp=d
200 OK 0 B URL HTTP/2 www.squadhelp.com/name/soloadvanced?lp=d
IP
GET /name/soloadvanced?lp=d HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
endpoint: sh-live-next
cf-cache-status: MISS
last-modified: Mon, 12 Dec 2022 03:50:12 GMT
set-cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=; path=/; expires=Mon, 12-Dec-22 04:20:12 GMT; domain=.squadhelp.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 77837e93097db512-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 0 B URL HTTP/2 www.squadhelp.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/soloadvanced?lp=d
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: application/javascript
last-modified: Wed, 07 Dec 2022 18:45:45 GMT
etag: W/"6390df59-302c"
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9a5ca9b512-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Wed, 14 Dec 2022 03:50:12 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/instagam.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/html/static_images/instagam.svg
IP
GET /html/static_images/instagam.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/a03b7d742d634005005d8afc9c5eff3b.css
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:35:50 GMT
etag: W/"63431486-da3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 4230571
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9afcf3b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/icon-hamburger.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/html/static_images/icon-hamburger.svg
IP
GET /html/static_images/icon-hamburger.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/a03b7d742d634005005d8afc9c5eff3b.css
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:35:51 GMT
etag: W/"63431487-c6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 4226221
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9aece9b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/in.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/html/static_images/in.svg
IP
GET /html/static_images/in.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/a03b7d742d634005005d8afc9c5eff3b.css
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:35:59 GMT
etag: W/"6343148f-373"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 4230571
vary: Accept-Encoding
server: cloudflare
cf-ray: 77837e9afcf5b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/var/a03b7d742d634005005d8afc9c5eff3b.css
200 OK 0 B URL HTTP/2 www.squadhelp.com/var/a03b7d742d634005005d8afc9c5eff3b.css
IP
GET /var/a03b7d742d634005005d8afc9c5eff3b.css HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/soloadvanced?lp=d
Cookie: __cf_bm=13Z5eLob8slGFjo6F4bhgv3cDt8siuQI.9fv2Kd0d7k-1670817012-0-AWN8YftfBkGxLFwDkU7vZ5TjonMItW33aqI5JhXy8BurQGl2D5/+iykjcorc06gOIutggBvf0rU00JE0b/8CEDo=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 12 Dec 2022 03:50:12 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Mon, 14 Nov 2022 13:19:17 GMT
etag: W/"63724055-4188f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2040642
server: cloudflare
cf-ray: 77837e9a4ca3b512-OSL
content-encoding: br
X-Firefox-Spdy: h2
trc.taboola.com/1344021/trc/3/json?tim=1670817012632&data=%7B%22id%22%3A421%2C%22ii%22%3A%22%2Fname%2Fsoloadvanced%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670817012624%2C%22cv%22%3A%2220221211-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Flp%3Dd%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dsquadhelp%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670817012631%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A39%2C%22supv%22%3Atrue%7D%7D&pubit=i
200 OK 0 B URL HTTP/2 trc.taboola.com/1344021/trc/3/json?tim=1670817012632&data=%7B%22id%22%3A421%2C%22ii%22%3A%22%2Fname%2Fsoloadvanced%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670817012624%2C%22cv%22%3A%2220221211-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Flp%3Dd%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dsquadhelp%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670817012631%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A39%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP
GET /1344021/trc/3/json?tim=1670817012632&data=%7B%22id%22%3A421%2C%22ii%22%3A%22%2Fname%2Fsoloadvanced%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1670817012624%2C%22cv%22%3A%2220221211-7-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Flp%3Dd%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dsquadhelp%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1670817012631%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.squadhelp.com%2Fname%2Fsoloadvanced%3Flp%3Dd%22%2C%22tos%22%3A1%2C%22ssd%22%3A1%2C%22scd%22%3A39%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Mon, 12 Dec 2022 03:50:14 GMT
via: 1.1 varnish
x-served-by: cache-bma1640-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670817015.546760,VS0,VE94
vary: Accept-Encoding
x-vcl-time-ms: 94
X-Firefox-Spdy: h2
172.67.128.71
141.226.228.48
23.33.119.27
104.22.53.96
93.184.220.29
151.101.84.157