GET www.ntiva.com/hs-fs/hubfs/pmmi-1.webp?width=42&height=45&name=pmmi-1.webp
200 OK 454 B URL GET www.ntiva.com/hs-fs/hubfs/pmmi-1.webp?width=42&height=45&name=pmmi-1.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 42x45, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 6cd7ce3879121ddafd8fb0a621db47f2
54ab8b7354fcf15abe8aaaeb49b96fb223795a85
78a70f13409887f75b351843acdc5938fcd7418d67776a675115baa9d9cd59eb
GET /hs-fs/hubfs/pmmi-1.webp?width=42&height=45&name=pmmi-1.webp HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 454
cf-ray: 9208440e2dd59312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfFHPU93I8PkGEiXSFnpZs6Mm1jwLHEtGmwmfLf1dhDQ:6cd7ce3879121ddafd8fb0a621db47f2"
last-modified: Wed, 05 Jul 2023 16:29:06 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 1db03b964c596a103fbc1af4b6ebb7c4.cloudfront.net (CloudFront)
cache-tag: F-123503502459,P-3012736,FLS-ALL
cf-bgj: imgq:0,h2pri
cf-resized: internal=ok/m q=0 n=489+0 c=0+0 v=2025.3.0 l=454 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z0JcqlckzVRewF%2B0703fjvzysO0XnLMHD9Oi7QhqnvFFTq%2BFtC5tzHgN62Q9W%2Fqh6lenhhMAObWetFXVCWKMi1Cj51Ug3KgbVseQD%2F8STG0FS%2F6bQISdZWMFk6dUU8g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST obs.segreencolumn.com/mon
200 OK 0 B URL POST obs.segreencolumn.com/mon
IP
Certificate IssuerZeroSSL
Subject*.segreencolumn.com
Fingerprint3B:63:25:99:FB:62:85:51:48:57:1D:7D:F3:41:B8:7D:67:82:CB:D0
ValidityFri, 07 Feb 2025 00:00:00 GMT - Thu, 08 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.segreencolumn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1731
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Cookie: cg_uuid=539d407ac997a330f713580dffcf0ae8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.ntiva.com
content-type: application/json
date: Sat, 15 Mar 2025 01:34:08 GMT
content-length: 0
X-Firefox-Spdy: h2
GET fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap
200 OK 10 kB URL GET fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700&display=swap
IP
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintF1:11:17:AF:9C:89:34:EE:D5:CB:84:40:84:EA:01:19:A9:F6:ED:C2
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
Hash ac9cc59aa5362fbdf77e40cde49f0d56
be28a1f46f6e8f49bf0fdb0902fda03d15c0a97e
6077f728b7de97728b0ee9201adb3b4c798af167869fef07caaa2b01c397d4c6
GET /css2?family=Inter:wght@400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 15 Mar 2025 01:33:57 GMT
date: Sat, 15 Mar 2025 01:33:57 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/template_assets/108932910376/1720641607926/ntiva-2023/js/main.min.js
200 OK 1.7 kB URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/template_assets/108932910376/1720641607926/ntiva-2023/js/main.min.js
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type JavaScript source, ASCII text, with very long lines (1749), with no line terminators
Hash 62c65081dc083b0265b9d1889223b5df
85e17a96d2fa65575cd7d828da05c90398d6f2c5
8bb7c880e9641d1a30a17c9444dfee6ea64a15f4d324026e8016d79903d947e1
GET /hs-fs/hub/3012736/hub_generated/template_assets/108932910376/1720641607926/ntiva-2023/js/main.min.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 920844025a0b9312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
etag: W/"56b4a65f4abc1fa5ee25eb639093267c"
last-modified: Wed, 10 Jul 2024 20:00:09 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 824fe21e467658628899bdd8725649ee.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: nLOwibxFEVmlWQXkeT7IRUNn0dkv-nR50cWyx6ivtffLJsaWA_Ij5g==
x-amz-cf-pop: IAD89-C1
x-amz-id-2: 4bqKO1oWkagXwGn5EMtTg6UrQJyloMQfmZDzffu+Iy7wX0v9pa8T878fTWC/wqYVV7rgFXJyvvbbqynYwAEN3g==
x-amz-meta-created-unix-time-millis: 1720641608072
x-amz-replication-status: COMPLETED
x-amz-request-id: FRN2421VWE27EHZG
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: 0nMxDVf05OiRSj3Cg9AsikfJ7knIbO4m
x-cache: RefreshHit from cloudfront
x-envoy-upstream-service-time: 156
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-6548769dcd-r6w2c
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: db79bb82-4f3a-4c21-aee8-a7cd50c37eac
x-request-id: db79bb82-4f3a-4c21-aee8-a7cd50c37eac
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DrcgbrV5ap%2FdNCSszZUMQ9jtMQNKOPFvOjFOAGxk3XbIDQ0qkpeeoAMo%2Bcuk2zi5RQc4Z%2Blz30wTolqFa2KeffB3OCOsGbaQVHthIMw5A9osJsVrS6Q4ApPXrZR%2BYug%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET js.hs-analytics.net/analytics/1742002200000/3012736.js
200 OK 70 kB URL GET js.hs-analytics.net/analytics/1742002200000/3012736.js
IP
Certificate IssuerGoogle Trust Services
Subjecths-analytics.net
FingerprintFC:65:05:8A:55:BE:F6:CC:1B:61:B1:CD:D2:7F:0B:C5:57:94:AF:29
ValiditySun, 02 Feb 2025 00:15:15 GMT - Sat, 03 May 2025 01:15:12 GMT
File type JavaScript source, ASCII text, with very long lines (64645)
Hash c869bc7e97891b91d4ce38b6a8ca80ad
b4b256e4049f09b64db84213a5e52f86a799722d
cc70d5649c0f0d51d34a72b947fcc8b769139286eb14547e1c2ce6c1aba95c9c
GET /analytics/1742002200000/3012736.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: text/javascript
x-amz-id-2: FVwze6bycD/CMOMEGPqYdOFBs+hkqY4Vt+vm6Hu9DyV8L4wCPAzC9Lz0Xf7NJ4ka491RMx3FKK+o8FJ9x7Q6qvXs48TRXkDbcpXWl3BBSU0=
x-amz-request-id: 91D6M3MAX5KTN1SD
last-modified: Wed, 05 Feb 2025 17:24:24 GMT
etag: W/"c869bc7e97891b91d4ce38b6a8ca80ad"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Sat, 15 Mar 2025 01:38:59 GMT
content-encoding: gzip
x-envoy-upstream-service-time: 66
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: f8d671ff-4a99-4b5b-a3e2-8b1933763aac
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-fbbff5ddb-5css4
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: f8d671ff-4a99-4b5b-a3e2-8b1933763aac
cf-cache-status: MISS
set-cookie: __cf_bm=af9MUX.Ko1Udj_pcjwCusEsAsi07T8Qp5OBQf7gZC08-1742002439-1.0.1.1-sXCjayIRVTBV7GR6qj2bSi3z2HUDR6EQNwIrYKiNvCCt.Y2wI2U4CTehDf9lN6e17PJSismbU1EdlVlcjb6V1W05.xdu1z7YwbMhnQvuhUc; path=/; expires=Sat, 15-Mar-25 02:03:59 GMT; domain=.hs-analytics.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 9208440f48e20afe-OSL
X-Firefox-Spdy: h2
POST www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.ntiva.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=838794754.1742002439&dt=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&auid=1313079655.1742002439&navt=n&npa=1>m=45He53d0v810996057za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&tft=1742002439504&tfd=3807&apve=1
200 OK 0 B URL POST www.google.com/ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.ntiva.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=838794754.1742002439&dt=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&auid=1313079655.1742002439&navt=n&npa=1>m=45He53d0v810996057za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&tft=1742002439504&tfd=3807&apve=1
IP
Certificate IssuerGoogle Trust Services
Subjectwww.google.com
Fingerprint53:F5:E3:47:F6:DC:80:83:14:A1:CE:39:7B:A1:98:61:74:03:86:E2
ValidityMon, 06 Jan 2025 08:37:56 GMT - Mon, 31 Mar 2025 08:37:55 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ccm/collect?en=page_view&dl=https%3A%2F%2Fwww.ntiva.com%2F&scrsrc=www.googletagmanager.com&frm=0&rnd=838794754.1742002439&dt=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&auid=1313079655.1742002439&navt=n&npa=1>m=45He53d0v810996057za200&gcd=13l3l3l2l1l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719&tft=1742002439504&tfd=3807&apve=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
content-type: text/plain
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
date: Sat, 15 Mar 2025 01:34:00 GMT
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.ntiva.com
access-control-expose-headers: date,vary,vary,vary,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET js.zi-scripts.com/unified/v1/master/getSubscriptions
200 OK 146 B URL GET js.zi-scripts.com/unified/v1/master/getSubscriptions
IP
Certificate IssuerGoogle Trust Services
Subjectzi-scripts.com
Fingerprint54:05:DE:DC:33:8D:64:E8:27:7C:AE:84:48:BB:7C:3F:0B:85:EF:0C
ValiditySat, 18 Jan 2025 10:29:52 GMT - Fri, 18 Apr 2025 11:29:32 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 9bdf1ca1aa2536de472dce8e9b445728
cde75b0219b8c866a7f14a11f5dc5b331ca89238
3a4483effc209917edb657334c90b66afb03eaf394af9f6f0b29e8dfba57fd71
GET /unified/v1/master/getSubscriptions HTTP/1.1
Host: js.zi-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer 2aac5c82841680028644
visited_url: https://www.ntiva.com/
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:06 GMT
content-type: application/json; charset=utf-8
etag: W/"92-ftGtZG3LYdrdrlVk3C+f8OloRFo"
apigw-requestid: HcbaUggMPHcEMCw=
x-powered-by: Express
access-control-allow-origin: https://www.ntiva.com
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: E8nNiQcMKusLcO5XSynpqABJ6UEKTvdQf-HoQqvfdhQA8JiEHppsgg==
cf-cache-status: DYNAMIC
priority: u=4,i=?0
server: cloudflare
cf-ray: 92084437c95c56c3-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109430373135/1689364280344/module_109430373135_hero.min.css
200 OK 2.4 kB URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109430373135/1689364280344/module_109430373135_hero.min.css
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (2401), with no line terminators
Hash a2eeec1229af1f21dd40de125436483b
4f5598849ebf019a8317817f38902ac77d2f3680
9f2aaf8b19bb148187dda67a728edf0c64c255a4d2b6beb3eba7bddf8c357d76
GET /hs-fs/hub/3012736/hub_generated/module_assets/109430373135/1689364280344/module_109430373135_hero.min.css HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: text/css
cf-ray: 9208440229fa9312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
content-encoding: gzip
etag: W/"a2eeec1229af1f21dd40de125436483b"
last-modified: Fri, 14 Jul 2023 19:51:21 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 9b097dfab92228268a37145aac5629c0.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: TQbCvjg7sOC2EocTG45cRecN2gOb1EwKuAqUtjuokL0Jh3I-x2zhhg==
x-amz-cf-pop: IAD89-C1
x-amz-id-2: zjwrifeXmEePWhUaKzNyY7GDmGicm3MhvQJh4I56FhgWJ91gQ1EnbLHNl9kgrl2Ysk4eRk3ICEk=
x-amz-meta-created-unix-time-millis: 1689364280344
x-amz-replication-status: COMPLETED
x-amz-request-id: NTCRPDP7142Y5BHA
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: NfJA30RDs5d0LY2ZvpEFjZ4nNg8H8.Hf
x-cache: RefreshHit from cloudfront
x-envoy-upstream-service-time: 168
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-7849459c5c-tm9g7
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: 3c532764-145a-4fe6-b607-7b4b0bd2e317
x-request-id: 3c532764-145a-4fe6-b607-7b4b0bd2e317
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yqat%2FgH3ACLPwmKwxyPdwMqGiESnesTPtjRrPPx2U8UifdYA9HIH0Bud1BdBL7fqloAEwauso2cnZPyaCgUTaZ6PBBb6RKrspJLGUOdwD6D0vqgeglqPPf6nm9o3tas%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Mar 2025 09:23:55 GMT
expires: Fri, 13 Mar 2026 09:23:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
age: 144604
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.ntiva.com/hubfs/ntiva%20logo_favicon-01.png
200 OK 964 B URL GET www.ntiva.com/hubfs/ntiva%20logo_favicon-01.png
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash 0fbd85ebb14b3062ded7b591ceb9b20c
9c6483b3025201607837aa7d28de08aea5cbc5a2
c26d889130cea7613205e7a2b84fc92d0ec0bf31f1e026e5f72f564244488ff4
GET /hubfs/ntiva%20logo_favicon-01.png HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:03 GMT
content-type: image/webp
content-length: 964
cf-ray: 920844246d919312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 393048
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
content-disposition: inline; filename="ntiva%20logo_favicon-01.webp"
etag: "46934ac84f4cba955ca0d63322869ba3"
last-modified: Fri, 14 Jul 2023 18:21:46 GMT
set-cookie: __cf_bm=Uw3D6v1bvqPCNqp.OL_.vJOBiJlOHYhdKeDebRKhVbE-1742002443-1.0.1.1-ii5GCzIWkQJ5iBzi98eAzHHh8YO3TPgmTtIO6GwXatxGa9uCexB1a8.DOVTEUqywgL5gcu1HkSqsczkDe5LA3nZ0txTtghriCSC_oAewX5o; path=/; expires=Sat, 15-Mar-25 02:04:03 GMT; domain=.hubspot.net; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 1461474e0d89d7660f19f427648cae0e.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-5443223044,FD-5415865797,P-3012736,FLS-ALL
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=1952
edge-cache-tag: F-5443223044,FD-5415865797,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: _AdsM-UCnFgbSW8Db2r9WQmI8Au52bXLWEAR748hUCiglYLhYUbZdA==
x-amz-cf-pop: ARN53-P1
x-cache: Miss from cloudfront
x-robots-tag: all
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IzFIOemxDCI890W3kWk4Cb%2BieERojM18Owwy8R1%2FY%2BlnhNjGXGOJmQO%2FmxZerL3h7A0oO7HK3OqV2wErwlxusV33p2piV0XylFuui3%2FF8m2f8ubXzsfnBPWDsyeLVtI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET obs.segreencolumn.com/ct?id=46496&url=https%3A%2F%2Fwww.ntiva.com%2F&sf=0&tpi=&ch=Ntiva&uvid=&tsf=0&tsfmi=&tsfu=&cb=1742002442632&hl=2&op=0&ag=2881387774&rand=74955906529155126667120198900221192081268510811097087298896825867106911901756241808902&fs=1280x1024&fst=1280x1024&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=&cri=Kl0vF2TY9W&pto=6936&ver=63&gac=105610842.1742002441&mei=&ap=&fe=1&duid=1.1742002442.vKqCNSj5XUxI2aZ7&suid=1.1742002442.Feq1i50o6EVlK9Gv&tuid=1.1742002442.Rhq3I8wMXzTHwdJP&fbc=->m=W10%3D&it=89%2C3868%2C714&fbcl=-&gacl=-&gacsd=-&rtic=-&rtict=-&bgc=-&spa=1&urid=0&ab=&sck=-&io=aGA2Oi17bmY2Og%3D%3D
200 OK 4.2 kB URL GET obs.segreencolumn.com/ct?id=46496&url=https%3A%2F%2Fwww.ntiva.com%2F&sf=0&tpi=&ch=Ntiva&uvid=&tsf=0&tsfmi=&tsfu=&cb=1742002442632&hl=2&op=0&ag=2881387774&rand=74955906529155126667120198900221192081268510811097087298896825867106911901756241808902&fs=1280x1024&fst=1280x1024&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=&cri=Kl0vF2TY9W&pto=6936&ver=63&gac=105610842.1742002441&mei=&ap=&fe=1&duid=1.1742002442.vKqCNSj5XUxI2aZ7&suid=1.1742002442.Feq1i50o6EVlK9Gv&tuid=1.1742002442.Rhq3I8wMXzTHwdJP&fbc=->m=W10%3D&it=89%2C3868%2C714&fbcl=-&gacl=-&gacsd=-&rtic=-&rtict=-&bgc=-&spa=1&urid=0&ab=&sck=-&io=aGA2Oi17bmY2Og%3D%3D
IP
Certificate IssuerZeroSSL
Subject*.segreencolumn.com
Fingerprint3B:63:25:99:FB:62:85:51:48:57:1D:7D:F3:41:B8:7D:67:82:CB:D0
ValidityFri, 07 Feb 2025 00:00:00 GMT - Thu, 08 May 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (4313), with no line terminators
Hash a2b73a2102663d1a2f0086b38db9b6ca
16ba54b63a1ce52ab78b3e5461a742515c7a9c7d
9927ce34e906c177b06a6147e2797261eabb9cd5b69e3db9bc0326870988420f
GET /ct?id=46496&url=https%3A%2F%2Fwww.ntiva.com%2F&sf=0&tpi=&ch=Ntiva&uvid=&tsf=0&tsfmi=&tsfu=&cb=1742002442632&hl=2&op=0&ag=2881387774&rand=74955906529155126667120198900221192081268510811097087298896825867106911901756241808902&fs=1280x1024&fst=1280x1024&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D%3D&dep=0&pre=0&sdd=&cri=Kl0vF2TY9W&pto=6936&ver=63&gac=105610842.1742002441&mei=&ap=&fe=1&duid=1.1742002442.vKqCNSj5XUxI2aZ7&suid=1.1742002442.Feq1i50o6EVlK9Gv&tuid=1.1742002442.Rhq3I8wMXzTHwdJP&fbc=->m=W10%3D&it=89%2C3868%2C714&fbcl=-&gacl=-&gacsd=-&rtic=-&rtict=-&bgc=-&spa=1&urid=0&ab=&sck=-&io=aGA2Oi17bmY2Og%3D%3D HTTP/1.1
Host: obs.segreencolumn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Sat, 15 Mar 2025 01:34:03 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=539d407ac997a330f713580dffcf0ae8; Max-Age=29030400; Path=/; Expires=Sat, 14 Feb 2026 01:34:03 GMT; HttpOnly; Secure; SameSite=None
timing-allow-origin: https://www.ntiva.com
content-length: 1670
X-Firefox-Spdy: h2
GET js.hs-banner.com/v2/cf-location
200 OK 5 B URL GET js.hs-banner.com/v2/cf-location
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjecths-banner.com
Fingerprint1B:79:5D:2A:63:36:C1:AC:79:67:E5:5F:EB:17:F4:BA:29:4D:0F:74
ValidityMon, 20 Jan 2025 21:28:35 GMT - Sun, 20 Apr 2025 22:28:32 GMT
File type ASCII text, with no line terminators
Hash b1f6be35db4eaa3bb90336dc8f11b692
90d22ddf084d60e3d7f68dc5cb992294e635d4b5
488dc128fdfaff655e401b7f289504b48096f1f82c8cbe105b98d242b76fa501
GET /v2/cf-location HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:34:05 GMT
content-type: text/plain;charset=UTF-8
content-length: 5
access-control-allow-origin: *
cache-control: private, max-age=1500
set-cookie: __cf_bm=JpaAExkTcS5f2AObkguTQVEHeIH2PzDKr7lXi0FM9ec-1742002445-1.0.1.1-NpsgInDqdb6Q6b7OQaI_tgxzHgi9wkdPPC9gEn46DMmesBAOM1Rzh1xqI6fwjvB7DbtJ04hUcbI4gr.ci3EBJ7ZTw2c7vCB2huqJD1pVMD0; path=/; expires=Sat, 15-Mar-25 02:04:05 GMT; domain=.hs-banner.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 92084432fb24b51d-OSL
X-Firefox-Spdy: h2
OPTIONS js.zi-scripts.com/unified/v1/master/getSubscriptions
204 No Content 0 B URL OPTIONS js.zi-scripts.com/unified/v1/master/getSubscriptions
IP
Certificate IssuerGoogle Trust Services
Subjectzi-scripts.com
Fingerprint54:05:DE:DC:33:8D:64:E8:27:7C:AE:84:48:BB:7C:3F:0B:85:EF:0C
ValiditySat, 18 Jan 2025 10:29:52 GMT - Fri, 18 Apr 2025 11:29:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /unified/v1/master/getSubscriptions HTTP/1.1
Host: js.zi-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,visited_url
Referer: https://www.ntiva.com/
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 204 No Content
date: Sat, 15 Mar 2025 01:34:06 GMT
access-control-allow-headers: Origin,X-Requested-With,Content-Type,Accept,Authorization,X-Amp-Device-Id,X-Amp-Session-Id,visited_url,_zitok,forwarded,x-ziaccesstoken
apigw-requestid: HcbaPiElvHcESHA=
x-powered-by: Express
access-control-allow-origin: https://www.ntiva.com
vary: Origin
access-control-allow-methods: POST, GET, OPTIONS, PATCH, DELETE, PUT
x-cache: Miss from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0XmqSKwfXD1LFa-jSPg4jy5vnHVjIJmBIG0WB35e7_8Q5NiHuUlBlw==
cf-cache-status: DYNAMIC
priority: u=4,i=?0
server: cloudflare
cf-ray: 9208443678a756c3-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
200 OK 136 kB IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
Size 136 kB (135811 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:33:56 GMT
content-type: text/html; charset=UTF-8
cache-control: s-maxage=10800, max-age=0
last-modified: Thu, 13 Mar 2025 10:43:02 GMT
link: </hs/hsstatic/content-cwv-embed/static-1.1293/embed.js>; rel=preload; as=script,</hs/hsstatic/cos-i18n/static-1.53/bundles/project.js>; rel=preload; as=script,</_hcms/forms/v2.js>; rel=preload; as=script
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
edge-cache-tag: CT-55167303252,P-3012736,CW-109390934937,CW-109424039347,CW-109430373135,CW-109503576739,CW-109506047289,CW-109520695090,CW-109521242634,CW-109522382100,CW-123384915609,CW-172193166478,E-108932910376,E-108933042998,E-108934481844,E-108935346730,E-111711468188,E-123518033993,PGS-ALL,SW-3,GC-109390936582,GC-109426653088,GC-123383677774,TS-108934389355
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-hs-cache-config: BrowserCache-5s-EdgeCache-180s
x-hs-cache-control: s-maxage=10800, max-age=0
x-hs-cf-cache-status: HIT
x-hs-content-id: 55167303252
x-hs-hub-id: 3012736
x-hs-prerendered: Thu, 13 Mar 2025 10:43:02 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n6l9qGBwXm8vuaDGv3krpxSwX7u2Y2zjmGP1IJoKuYk4qny6PtpOE0MlhpxQtLAfgyuYIOnIceH0JcaBcW58ThwOzrrw1KTYbkVi8Si%2BpxBBl8UhRGR7F1X6P5mKIIg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; path=/; expires=Sat, 15-Mar-25 02:03:56 GMT; domain=.www.ntiva.com; HttpOnly; Secure; SameSite=None
_cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; path=/; domain=.www.ntiva.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 920843fe184092e6-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
cf-h2-pushed: </hs/hsstatic/content-cwv-embed/static-1.1293/embed.js>,</hs/hsstatic/cos-i18n/static-1.53/bundles/project.js>,</_hcms/forms/v2.js>
X-Firefox-Spdy: h2
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109522382100/1688513903885/module_109522382100_home-cta.min.css
200 OK 785 B URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109522382100/1688513903885/module_109522382100_home-cta.min.css
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (785), with no line terminators
Hash 63206c61d55a517659fab930e11e4977
b5f9c7d925e5230241999f0e159440a0ad6317cc
5dacf9b00e32f1ba25f7825b8e69ad29c5e16d1aa9fa8965e4686db924a057e6
GET /hs-fs/hub/3012736/hub_generated/module_assets/109522382100/1688513903885/module_109522382100_home-cta.min.css HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: text/css
cf-ray: 920844024a049312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
etag: W/"63206c61d55a517659fab930e11e4977"
last-modified: Tue, 04 Jul 2023 23:38:24 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 88b63cb2f8aab28c7291262ffc15282e.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: 9ZVjTJ8WRGqgeZT6ENbhD7xGngeMPsctq8CnlMLqsAmhj4Ba88i8Vw==
x-amz-cf-pop: IAD89-C1
x-amz-id-2: NfEzJMDfi66yPbxl4SsC/0Wbbfymgvib0L+l7sEPDkOuPGO2zBfEjwb8FWv8e6IQwDqYv2xPWcg=
x-amz-meta-created-unix-time-millis: 1688513903885
x-amz-replication-status: COMPLETED
x-amz-request-id: S36CNKWGYETCVHES
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: DE8YkasRIWbEGRM_PjC0D0a2SF3Sw7zL
x-cache: Miss from cloudfront
x-envoy-upstream-service-time: 175
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-54797cf595-nxgmh
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: fd748486-0c0f-4229-bb08-60c72aece005
x-request-id: fd748486-0c0f-4229-bb08-60c72aece005
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MOFS9IqoLlrh7q%2F5VuNS8f0SlOj%2BJLgfzHyJU%2BJkPxend1V3UCrQt7KeK4eOj6x7DTKEyE0I32nJopYXJ67ceLafJDID6DM0nHtkCQOGtTpbpQASCPfM4zJhWpnhTtQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hubfs/cta-image.webp
200 OK 30 kB URL GET www.ntiva.com/hubfs/cta-image.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash 75c962b7816d576766486c9b1ad303c6
d25c061443c47f00739170281a9a8be50807299a
1dea1ba91ffa4966ad466fe53bcadce15c7d8451f5e1390c6c21225115f2e450
GET /hubfs/cta-image.webp HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:58 GMT
content-type: image/webp
content-length: 29682
cf-ray: 92084408cc349312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "75c962b7816d576766486c9b1ad303c6"
last-modified: Tue, 04 Jul 2023 22:44:43 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 c2eb9b44aa5080bf631af7c8ed97f7de.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-123415747132,P-3012736,FLS-ALL
edge-cache-tag: F-123415747132,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: RBtcgILZg3m4RZgm-TkR0YjjDZTG9_qiqGB2ZeRVWpTG4JdQ6Ubvyw==
x-amz-cf-pop: ARN53-P1
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SI4UJpflUDIk7NhVshEFT5OXZLBNesd9BstSTb%2FWZ1GmtcEZN%2BgyYf0iN24fTIZUOUgu2y2i26Q1s77v5s5ici6Bm2Cep0edb8gXpDXjyZNRbUTZJ3WJvPZz62RWPWo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/_hcms/forms/embed/v3/form/3012736/94785f9f-3166-49b7-a9c4-669243469306/json?hs_static_app=forms-embed&hs_static_app_version=1.8092&X-HubSpot-Static-App-Info=forms-embed-1.8092
200 OK 11 kB URL GET www.ntiva.com/_hcms/forms/embed/v3/form/3012736/94785f9f-3166-49b7-a9c4-669243469306/json?hs_static_app=forms-embed&hs_static_app_version=1.8092&X-HubSpot-Static-App-Info=forms-embed-1.8092
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_hcms/forms/embed/v3/form/3012736/94785f9f-3166-49b7-a9c4-669243469306/json?hs_static_app=forms-embed&hs_static_app_version=1.8092&X-HubSpot-Static-App-Info=forms-embed-1.8092 HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: application/json;charset=utf-8
cf-ray: 9208440bbcf79312-CPH
cf-cache-status: DYNAMIC
cache-control: max-age=0, no-cache, no-store
set-cookie: __cf_bm=9ohjk673X94lz7jaQkOyk1qOaaVdDmrm4t7jn5gzAGk-1742002439-1.0.1.1-.dwdVnll516I1N4tJOMYD3BK4bGIVlI5XhvkrfWgV2K4.dPEm_4l6RJA0XLyEoTJIQMq3M.z4GA3Sd3JjIzZE4WaYTWypogVrI8L2bHGkrY; path=/; expires=Sat, 15-Mar-25 02:03:59 GMT; domain=.hsforms.net; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: origin, accept-encoding
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: OPTIONS, GET
access-control-expose-headers: X-Origin-Hublet
access-control-max-age: 180
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-envoy-upstream-service-time: 26
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-5c76648889-sp6kb
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 726286f1-95c3-4aa6-ae7f-e4b4037e1ece
x-origin-hublet: na1
x-request-id: 726286f1-95c3-4aa6-ae7f-e4b4037e1ece
x-robots-tag: none
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TROMYvd5joiUiJBqgn4RItNYRzRq%2Bo3CzWmgdUVcXm8idSmn9uF3RvryJ72CKcJJzjXbSH1rJY9imDh6x7%2BpK1GTeP1xMyucoUsaB9vErDmLzxIaJd0IJAnXONARtOk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hubfs/carroll_seating_logo-gry.png?width=250&height=40&name=carroll_seating_logo-gry.png
200 OK 7.0 kB URL GET www.ntiva.com/hs-fs/hubfs/carroll_seating_logo-gry.png?width=250&height=40&name=carroll_seating_logo-gry.png
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash 330398d6281ad5e3d58a90d1b9903ba2
6b36f3e016edc9ee60318727f122c8237a396a47
d2e09cf95b95400506a9bd6c2bfac751e7e90d29dfdf5f22196036a9775e90f6
GET /hs-fs/hubfs/carroll_seating_logo-gry.png?width=250&height=40&name=carroll_seating_logo-gry.png HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 7034
cf-ray: 9208440e3dec9312-CPH
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cf0dTivLJo_w9-GTObpWB_a7fQ27EMgvri4-SX7WPdDQ:3d3f052897d99720adf6da71b36d71e2"
last-modified: Thu, 21 Sep 2023 18:06:45 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 e3d4442c9380e0f8994d148c9677eac4.cloudfront.net (CloudFront)
cache-tag: F-135977622856,P-3012736,FLS-ALL
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=490+6 c=0+5 v=2025.3.1 l=7034 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hpomJsz9pB7W7lcMAGic3DwpJHMAptqW%2FW8S6gdQeQE38S6tpuPzRhxtHRrGO7dfjZfVPV2LI6%2B647QiW856P71t2zSBRqWdESwv6Q3tExeZKVzuSnvgsJl16FBWz%2FA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.googletagmanager.com/gtm.js?id=GTM-5X4TV6L
200 OK 368 kB URL GET www.googletagmanager.com/gtm.js?id=GTM-5X4TV6L
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (11498)
Size 368 kB (368494 bytes)
Hash 161c8fe68071ec9b596858a9589f1a04
9395b679f1d13841f27b25fdd4f5d4236c35f604
3a8da187f597479ff280adde15dfc6125a9604ff20329bc4b5d578edb03c2605
GET /gtm.js?id=GTM-5X4TV6L HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Mar 2025 01:34:04 GMT
expires: Sat, 15 Mar 2025 01:34:04 GMT
cache-control: private, max-age=900
last-modified: Sat, 15 Mar 2025 00:20:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1262:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1262:0
report-to: {"group":"ascgcycc:1262:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1262:0"}],}
server: Google Tag Manager
content-length: 124116
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET d10lpsik1i8c69.cloudfront.net/css/reset.css
200 OK 2.3 kB URL GET d10lpsik1i8c69.cloudfront.net/css/reset.css
IP
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type ASCII text, with very long lines (2270), with no line terminators
Hash 7144eaceff0b31347712515a6116074e
11f3d16b597548414607e522504d89748dfaa133
401f533697cfb484598d2da76b5f4708bbca985a1fab42dbcfaa0741374d3245
GET /css/reset.css HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css
date: Wed, 18 Sep 2024 23:09:04 GMT
last-modified: Thu, 25 Jan 2024 18:19:39 GMT
etag: W/"7144eaceff0b31347712515a6116074e"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qPM4bGFnUan-_lIxAVf_N5Loye0d3I9PeUn2cQoPa-VXXxL_U2P65A==
age: 15301503
X-Firefox-Spdy: h2
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109424039347/1722926731286/module_109424039347__header.min.js
200 OK 826 B URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109424039347/1722926731286/module_109424039347__header.min.js
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (879), with no line terminators
Hash ed483c24c29ad5bb9da01ab23562e6cc
4314b004ec9096ac27270fe910e890c4ad4c4190
23be30e619123a699185df3a8b290c2bb93523b8c4e87356ada8eef55d7bed52
GET /hs-fs/hub/3012736/hub_generated/module_assets/109424039347/1722926731286/module_109424039347__header.min.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 920844025a0c9312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
etag: W/"fef8bd93705831b7a682b640facbc0e2"
last-modified: Tue, 06 Aug 2024 06:45:32 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 40c1e5c4b3789c2ca411f57891da3fe4.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: cDVyMm4yYWeGhGKVfXEW0_teJVPBVLSuZoSyvADsjbeLl5qTsfec1g==
x-amz-cf-pop: IAD61-P1
x-cache: Miss from cloudfront
x-envoy-upstream-service-time: 242
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-7f89d4c7c5-cjx28
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 4
x-hubspot-correlation-id: 9eca524d-04cb-4e96-aedc-8fa4b621116b
x-request-id: 9eca524d-04cb-4e96-aedc-8fa4b621116b
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=329UfHYjRjpzL4eQrrBPXrZG9c1hBsp%2FsRcgpGvef5Qmeklih2QRamJOkTvzFT3K58Ga7RD0zRAN7%2BoS9dlsFQk4J9GNkn1KJgEojveaPByMy51hgdGxbW%2F1tuywC3k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET tools.luckyorange.com/core/lo.js?site-id=a8b01208
200 OK 13 kB URL GET tools.luckyorange.com/core/lo.js?site-id=a8b01208
IP
Certificate IssuerAmazon
Subjectluckyorange.com
FingerprintF0:E7:5A:37:B1:D7:47:7D:D7:DC:58:91:50:3D:7A:9B:71:46:21:08
ValidityThu, 17 Oct 2024 00:00:00 GMT - Fri, 14 Nov 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (13393), with no line terminators
Hash 993a8efc519cb1e57ca411d3081e3e14
cd20f685392159f8e360c86c1f3d081664feb212
4dfcc788bad5eb0f80a47424d17873fec68f0aed8fb850c93bfa662190cbc3c4
GET /core/lo.js?site-id=a8b01208 HTTP/1.1
Host: tools.luckyorange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
content-length: 4845
last-modified: Thu, 13 Mar 2025 20:03:29 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Sat, 15 Mar 2025 01:03:34 GMT
cache-control: max-age=3600
etag: "3f457e8942571346745ddb800e956245"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6NU3LsR4tteF9YvDVDH_OBTsfPLQ_rZphbbJXcMfqKExawdo6TgWCw==
age: 1827
X-Firefox-Spdy: h2
GET www.ntiva.com/hubfs/ntiva-2023/home/arrow-carousel.svg
200 OK 243 B URL GET www.ntiva.com/hubfs/ntiva-2023/home/arrow-carousel.svg
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type SVG Scalable Vector Graphics image
Hash f3027406eac701e8f0469693982ead87
1cd53bad23ef98dfab64d1e66f89323e2a495357
ab6d73daf85300ade2bf6ee034a79e72851fa6390def62719776c03b201e28d6
GET /hubfs/ntiva-2023/home/arrow-carousel.svg HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn2.hubspot.net/
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:00 GMT
content-type: image/svg+xml
cf-ray: 9208441788ba9312-CPH
cf-cache-status: HIT
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: W/"812f7796aac41b6ae2811129aa2d929c"
last-modified: Tue, 30 May 2023 20:47:22 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 e1cbeb53ecac8d22eb72c392510efd7c.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-117993442150,FD-111529810612,P-3012736,FLS-ALL
edge-cache-tag: F-117993442150,FD-111529810612,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: QMYMIG5An2zuJjX7kyfg6chm-dIMShXwgteYjkASVmChdJFd9MWHjQ==
x-amz-cf-pop: HEL51-P4
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rXopEA7Y1lA9Y2d%2FWg4MAbidoqAB8DtmjEsMW90WUrBQ3dfZ95aZzJmLtcYMoB2jT3uqSX%2F8m3oEi9EOlksJVEsmzbA32x2N%2BTK1jqR0CQIxETLYVHxYlS%2Fkq6lKgDI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-JKTPCKN83D&cid=105610842.1742002441>m=45je53d0v881685058z8810996057za200zb810996057&aip=1&dma=1&dma_cps=syphamo&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&frm=0&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&z=1587689646
200 OK 42 B URL GET www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-JKTPCKN83D&cid=105610842.1742002441>m=45je53d0v881685058z8810996057za200zb810996057&aip=1&dma=1&dma_cps=syphamo&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&frm=0&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&z=1587689646
IP
Certificate IssuerGoogle Trust Services
Subject*.google.no
Fingerprint26:B7:26:CB:C6:A9:06:E9:C0:85:18:1A:20:54:87:E3:8B:35:EC:7C
ValidityWed, 26 Feb 2025 15:35:45 GMT - Wed, 21 May 2025 15:35:44 GMT
File type GIF image data, version 89a, 1 x 1
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-JKTPCKN83D&cid=105610842.1742002441>m=45je53d0v881685058z8810996057za200zb810996057&aip=1&dma=1&dma_cps=syphamo&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&frm=0&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&z=1587689646 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 15 Mar 2025 01:34:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-hubspot&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719
200 OK 278 kB URL GET www.googletagmanager.com/gtag/js?id=G-hubspot&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719
IP
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (2432)
Size 278 kB (278314 bytes)
Hash 67af3cf57adb1533f64bc263f9ed34af
6bbf22090540b0e3db730fd218dbec88394156bf
974718e0b6e864e5c2ebc0700a85feb2db7889679df895f016118f58f40c73bf
GET /gtag/js?id=G-hubspot&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Mar 2025 01:34:03 GMT
expires: Sat, 15 Mar 2025 01:34:03 GMT
cache-control: private, max-age=900
last-modified: Sat, 15 Mar 2025 00:20:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 100609
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.ntiva.com/hs/hsstatic/AsyncSupport/static-1.122/sass/rss_post_listing.css
200 OK 910 B URL GET www.ntiva.com/hs/hsstatic/AsyncSupport/static-1.122/sass/rss_post_listing.css
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (912), with no line terminators
Hash 4cd883dfca0b64e807cb664e159262e6
19eae40428b89fc60d5e44f1c10d0c2d732093a3
cf1abf6b807114d21f977e664bdbf649af157665d41b960629d1113d2fb455cb
GET /hs/hsstatic/AsyncSupport/static-1.122/sass/rss_post_listing.css HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/cheq-ppc-invalid-users
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441; _cq_duid=1.1742002442.vKqCNSj5XUxI2aZ7; _cq_suid=1.1742002442.Feq1i50o6EVlK9Gv
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: text/css
cf-ray: 9208442bf8ef9312-CPH
cf-cache-status: HIT
age: 151864
cache-control: public, max-age=31536000
etag: W/"e1b521ec14a912d6d385c21388ec7d79"
expires: Sun, 15 Mar 2026 01:34:04 GMT
last-modified: Fri, 17 Dec 2021 15:26:10 GMT
set-cookie: __cf_bm=1rQklqboE1yJpt95y9YX2rm8H4EA4binfRuGiD5KKRo-1742002444-1.0.1.1-_0M321K7W7YoHXO6m_Q3bAWDoLPzJEa0eDXdEJtIog75vMSMqAlUHUIzjmSUZaWK0xsyXOT6V4YZO0nmcRLxUokFuelv9vSOtrdNaCMFv1k; path=/; expires=Sat, 15-Mar-25 02:04:04 GMT; domain=.hubspotusercontent.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 a1883601a786b7317faec0d94ef154f2.cloudfront.net (CloudFront)
x-amz-cf-id: n4iw0sVjGiNpjhoacKPTE1sSw2KrAiycxMvg9lFAfV4ThfGx0YHwmQ==
x-amz-cf-pop: ARN56-P2
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-version-id: YluxiXaQWSQWC28IUPv3NXYXDi68ylxl
x-cache: RefreshHit from cloudfront
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PbTtrLt8xvoDAzsFO0dIJ%2F54JXejyxVQ3Is2Z4QmKJ5edz7vPH1G%2BzI0Zk1tLE4rRovcx4hynFIpOyaz2vJB9clrSmFOoxKI8PJ7spHHzPi08bZTGJU219GCOSc97Ao%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/123384915609/1719868213942/module_123384915609_home-technology-global.min.css
200 OK 866 B URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/123384915609/1719868213942/module_123384915609_home-technology-global.min.css
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (866), with no line terminators
Hash d1ef2f535bd1616e1edb644abb3d4633
7c5c2ab7c2622d20756122341479bce56a4ae5c6
ca60231752bb2a9da78fe4723709ead29094fe12b9c96c2715af1134ede1a432
GET /hs-fs/hub/3012736/hub_generated/module_assets/123384915609/1719868213942/module_123384915609_home-technology-global.min.css HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: text/css
cf-ray: 920844024a019312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
etag: W/"d1ef2f535bd1616e1edb644abb3d4633"
last-modified: Mon, 01 Jul 2024 21:10:14 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 936f33bed45438343f0ef2adff442814.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: 0FM9dGRgK5SKoNEqd-2CHcrvfKzDddYHYFGL2HohxtkTI2D0KmcA-A==
x-amz-cf-pop: IAD89-C1
x-amz-id-2: /FhCk6Ity2K7R+y0cIEaAhLOuDgg5qQMcSv9gWDNupH8WtCBv50OkKY7gIClWEoZ2Wz3u7udqwg=
x-amz-meta-created-unix-time-millis: 1719868213942
x-amz-replication-status: COMPLETED
x-amz-request-id: BWVJBNM6K2QFP47R
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: .vuTWQaYh9f_EzQe4jC8yuxikXAQONhv
x-cache: RefreshHit from cloudfront
x-envoy-upstream-service-time: 130
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-679cd85c5c-whvkh
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: 3f34ce32-c0a4-4725-9c0a-30d7aea65f95
x-request-id: 3f34ce32-c0a4-4725-9c0a-30d7aea65f95
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f3tJOMWwlMOcDXZ0%2FVbr2lhua0a2C37PAC4ZHc0lBaWolaiPi7FZp8V9mkDzXsCoK8mIakTX96T6t9nw2CzP5ACbvBH9z7PH6I9OjedXj4Y9Ul02ev46G4MBC%2B7gr04%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs/hsstatic/HubspotToolsMenu/static-1.432/js/index.js
200 OK 12 kB URL GET www.ntiva.com/hs/hsstatic/HubspotToolsMenu/static-1.432/js/index.js
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type JavaScript source, ASCII text, with very long lines (12106)
Hash 964183570d894379603a2e05c6ce87c7
04d16b4d33994f67183bfd0d9e681920303bb69a
9014013a02a3d0c4a5405d882ea08ba3ce2e80507e3dd1677fefb63e36a0766a
GET /hs/hsstatic/HubspotToolsMenu/static-1.432/js/index.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: application/javascript
cf-ray: 920844027a189312-CPH
cf-cache-status: HIT
age: 809004
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"964183570d894379603a2e05c6ce87c7"
expires: Sun, 15 Mar 2026 01:33:57 GMT
last-modified: Wed, 05 Mar 2025 15:46:22 GMT
set-cookie: __cf_bm=rv4srmqwW_wnmRuJhtb6W4Pesxhq1vQG.p.4fVcLjZY-1742002437-1.0.1.1-hP8L1UAzEEMyNSOCTLm4_gwWNsAhp.tf6xI_BKh2oR3jTQOJaw.CaDIpds_268cFTr.ywFqR88oS7rsiUVY_Oo0_lZHqZQNA6bnh1uOS6Rs; path=/; expires=Sat, 15-Mar-25 02:03:57 GMT; domain=.hubspotusercontent.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: accept-encoding
via: 1.1 56a77d6c9e6b49fa4179a99507a9582e.cloudfront.net (CloudFront)
x-amz-cf-id: jCbpw21KqPtXM5Br9Dju0wB2vJaOZybDkpAbW78U6e0GTxprlUn0lw==
x-amz-cf-pop: FRA60-P6
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-version-id: exnza79CU0VJVDr7y7H3IloG3aCM04GD
x-cache: Hit from cloudfront
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dwUcoca3xUiiGz123CpEIbd7fo4ni33fuUImvF%2F9xZOrJD%2FekQlbJ38Ip4KAlF5SM8dy7yWoQ%2Bgv47kyjvYurR4Ru19IB3%2BCPpDwY3aWpA6tOJED9hzESkHCvBjxF3U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hubfs/ICNC-gray.png?width=134&height=50&name=ICNC-gray.png
200 OK 3.5 kB URL GET www.ntiva.com/hs-fs/hubfs/ICNC-gray.png?width=134&height=50&name=ICNC-gray.png
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash 0d64bdb1ad6438cbcf50bab4879bb808
e6316c0e312a379ba98040a7b6534798d9a404ab
7938c66d31ba8cdf4242f10f8291a817a916a70b31ede20a45c5b84e25d30f80
GET /hs-fs/hubfs/ICNC-gray.png?width=134&height=50&name=ICNC-gray.png HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 3458
cf-ray: 9208440e3df19312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cf4_rZIZ8uqHU2sPx1Ic1rsV4JftjrKorNo3lTyi8SDQ:30d254554b700ffbe1ccaf57c8b47868"
last-modified: Thu, 21 Sep 2023 18:36:22 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 10c6c3dafd71d2880db1f56a9baf3a70.cloudfront.net (CloudFront)
cache-tag: F-135987078073,P-3012736,FLS-ALL
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=537+12 c=0+11 v=2025.3.1 l=3458 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Dc9mgi0cVeOeAJ3eXsXiHPKq4adPRXxcUwENvKFz86fy5LzcSigimkQX35UbQAMIrgs8ROHoHECXgbfgGsLAAbinwjce6yphKXa7yLHWeSWQJPHA%2Foh2%2FfFKzBDTT6Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET go.ntiva.com/hubfs/card-digital-transformation.webp
200 OK 19 kB URL GET go.ntiva.com/hubfs/card-digital-transformation.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectgo.ntiva.com
FingerprintAA:6A:75:2E:78:01:5A:33:93:C9:62:EB:DF:32:EB:C3:EB:05:0E:00
ValidityFri, 28 Feb 2025 02:52:37 GMT - Thu, 29 May 2025 03:52:33 GMT
File type RIFF (little-endian) data, Web/P image
Hash 85e1e3f676741bb4bf71f6c307aa6438
f6126a4a34932d7006293c46666ef630c74549ca
b40e06300ec715461490d52e53979191c71af2f94983e65ad8225b9e3a7f1f17
GET /hubfs/card-digital-transformation.webp HTTP/1.1
Host: go.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=JQBTlAck62DAc3oTYlcJJb5hKWPlhRzenFyEHZh2DVc-1742002436-1.0.1.1-PTKGq0Nr8EdKYXpOKE9U.SXRAu8.0EezSFhsnBY84c4Y9dEIEphwGTfW1u5gcsw9WQHbmupWKurnuRcfl1Nv5RW.ROINMWUKS3F8xOW2mmk; _cfuvid=Dk0hkGulc2C3VGo7R3dwfEltgMcVUr9diqlEG6nNg6k-1742002436226-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 18600
cf-ray: 9208440e8a3f2625-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "85e1e3f676741bb4bf71f6c307aa6438"
last-modified: Wed, 05 Jul 2023 15:27:14 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 41ee0215556e0543d529d912519eb46a.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-123500027828,P-3012736,FLS-ALL
edge-cache-tag: F-123500027828,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: HkmB1KOCov39X9F9RD6NULuMP7Um1IWCAtcVoiaGWpGyrn-__ozifg==
x-amz-cf-pop: ARN53-P1
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J%2Faa1x50I0DQ2qGTKId9f9cQ%2F8HMUpGt2mVUiPQgCz3DJbbViIpiQIy0%2Fht5uA3ih8zHlIi6DY%2BAuL8jkmccv283FFB0h3%2FLFuVvp6YMayg8ibBbfB7ye9w3T9OD5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET obs.segreencolumn.com/tracker/tc_imp.gif?e=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&cri=Kl0vF2TY9W&ts=913&cb=1742002443545
200 OK 43 B URL GET obs.segreencolumn.com/tracker/tc_imp.gif?e=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&cri=Kl0vF2TY9W&ts=913&cb=1742002443545
IP
Certificate IssuerZeroSSL
Subject*.segreencolumn.com
Fingerprint3B:63:25:99:FB:62:85:51:48:57:1D:7D:F3:41:B8:7D:67:82:CB:D0
ValidityFri, 07 Feb 2025 00:00:00 GMT - Thu, 08 May 2025 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=Kl0vF2TY9W&ts=913&cb=1742002443545 HTTP/1.1
Host: obs.segreencolumn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Cookie: cg_uuid=539d407ac997a330f713580dffcf0ae8
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Sat, 15 Mar 2025 01:34:03 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-JKTPCKN83D&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719
200 OK 482 kB URL GET www.googletagmanager.com/gtag/js?id=G-JKTPCKN83D&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (9955)
Size 482 kB (481674 bytes)
Hash 66467fa44ae6bc5b124ef6de00ae1299
58039725ca0a0f655c49f861be34923ce9d0f7ff
9c14c9b79cf91d456e64383f238517648d08196d7e5762a041567054cb088fbf
GET /gtag/js?id=G-JKTPCKN83D&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Mar 2025 01:34:04 GMT
expires: Sat, 15 Mar 2025 01:34:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 150970
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
301 Moved Permanently 136 kB IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectgo.ntiva.com
FingerprintAA:6A:75:2E:78:01:5A:33:93:C9:62:EB:DF:32:EB:C3:EB:05:0E:00
ValidityFri, 28 Feb 2025 02:52:37 GMT - Thu, 29 May 2025 03:52:33 GMT
Size 136 kB (135811 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: go.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=JQBTlAck62DAc3oTYlcJJb5hKWPlhRzenFyEHZh2DVc-1742002436-1.0.1.1-PTKGq0Nr8EdKYXpOKE9U.SXRAu8.0EezSFhsnBY84c4Y9dEIEphwGTfW1u5gcsw9WQHbmupWKurnuRcfl1Nv5RW.ROINMWUKS3F8xOW2mmk; _cfuvid=Dk0hkGulc2C3VGo7R3dwfEltgMcVUr9diqlEG6nNg6k-1742002436226-0.0.1.1-604800000
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sat, 15 Mar 2025 01:33:56 GMT
content-length: 0
location: https://ntiva.com/
cache-control: max-age=120
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
x-hs-mapping-id: 8911104909
x-hs-mapping-only-after-not-found: no
x-hs-prerendered: Tue, 11 Mar 2025 03:32:12 GMT
x-hs-route-prefix: http://go.ntiva.com
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4ayG09TdDsTE1CCNZunRXS2EgvXEN0BWCWjb54nsDzz3rfkKVXySI7KFT9tGVkylrwhakefTZ8ucR9%2FtZjYi%2BA90zrCrIqx83s0iegnvnReieUaRyJzekWsmkhLWDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920843fab90d92a6-CPH
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.ntiva.com/hs/hsstatic/content-cwv-embed/static-1.1293/embed.js
200 OK 14 kB URL GET www.ntiva.com/hs/hsstatic/content-cwv-embed/static-1.1293/embed.js
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type JavaScript source, ASCII text, with very long lines (13757), with no line terminators
Hash f667e53d5752ee2e5759f3dfaf20d330
2225156fa65a34892f721defea3eb480ebb32044
cb5224674e43d02db0037517f4aa29ba5ce9ddd0672e513cc7289714ba657522
GET /hs/hsstatic/content-cwv-embed/static-1.1293/embed.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: application/javascript
cf-ray: 9208440209eb9312-CPH
cf-cache-status: HIT
age: 2229380
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"f667e53d5752ee2e5759f3dfaf20d330"
expires: Sun, 15 Mar 2026 01:33:57 GMT
last-modified: Mon, 23 Sep 2024 19:59:06 GMT
set-cookie: __cf_bm=6PWHvWVvIHSTV6iKRv5Z.9KsrpuOOvhCIquTLh4nEWE-1742002437-1.0.1.1-NKAz_xcKKcwEhaLu_surzM5LiKjir9LvmNlqtlixMresPhs66px5_gf8h4qD1Nx4o.9L2qrX.1GF.CSMyTmVBqkQs025PLL69xW7h1LkdrY; path=/; expires=Sat, 15-Mar-25 02:03:57 GMT; domain=.hubspotusercontent.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: accept-encoding
via: 1.1 115d56d751589aa02dcc0096dd66b552.cloudfront.net (CloudFront)
x-amz-cf-id: kiP8GHZMeg4r-xHGwSinEz1MC6C7_ffAaWgFU9QQ0Xt-UP_kzmBPpg==
x-amz-cf-pop: ARN56-P2
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-version-id: AFGFBaAC1397GFbOapH2DRIkjQ_NaZzY
x-cache: Hit from cloudfront
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fa7FBVr8kanyccgTVmgRTc1YdtWkp73Z5L7An8lnp184OJ47qNwwqnVMeRMDgdsJ9dxlJ%2BOyrNMi9uO4p0TAmPK07I5nBXNslL416JLiiLAemmTWdw7r5IV1M1Lszd4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hubfs/Microsoft-Copilot-Logo.png?width=80&height=45&name=Microsoft-Copilot-Logo.png
200 OK 1.2 kB URL GET www.ntiva.com/hs-fs/hubfs/Microsoft-Copilot-Logo.png?width=80&height=45&name=Microsoft-Copilot-Logo.png
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash 27090765d95a21901bfc54bc9e01c8bb
f70bcc6133815a199675f7d96fe67130419c307b
3e29b1db1c5f492ee30b1d51add38c9b9fcc280818b6ecdb5b60b6aedfeed91d
GET /hs-fs/hubfs/Microsoft-Copilot-Logo.png?width=80&height=45&name=Microsoft-Copilot-Logo.png HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: image/webp
content-length: 1168
cf-ray: 920844025a069312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfHm5KuF8_9FlTWZ5TzrdcUdBc9qDyPryD5Y56PjF_DQ:eb44569b6466ef6c6c6afcaa462242c7"
last-modified: Mon, 30 Sep 2024 17:02:19 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 41ee0215556e0543d529d912519eb46a.cloudfront.net (CloudFront)
cache-tag: F-179842987145,P-3012736,FLS-ALL
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/h q=0 n=21+85 c=54+30 v=2025.3.1 l=1168 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Sk6kEwfyO0%2B%2BySd9IQfdjMG0rCjrc1riQOia%2B%2B0Zn0q%2F3DzCyrpMTzCk3dViuT1dVMABAt0GD2HwuXBeafOjvmFN4ZfnwjrFLd7j5cH5Pmv3Xa8aH8%2BFAsIqvslZxEY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET js.zi-scripts.com/zi-tag.js
200 OK 9.7 kB URL GET js.zi-scripts.com/zi-tag.js
IP
Certificate IssuerGoogle Trust Services
Subjectzi-scripts.com
Fingerprint54:05:DE:DC:33:8D:64:E8:27:7C:AE:84:48:BB:7C:3F:0B:85:EF:0C
ValiditySat, 18 Jan 2025 10:29:52 GMT - Fri, 18 Apr 2025 11:29:32 GMT
File type JavaScript source, ASCII text, with very long lines (9910), with no line terminators
Hash 8116a82f2c1621b592ddf9f6407e3540
8275974548def81a668f282d2e880f55f03c6cd0
c0f2a02a57ef17f4d9949d4b99eaa053fd9c9b8f133dc4abeffffe22f7685bef
GET /zi-tag.js HTTP/1.1
Host: js.zi-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:34:05 GMT
content-type: application/javascript
last-modified: Fri, 13 Dec 2024 14:58:23 GMT
x-amz-version-id: Q8AFTvKb8EtoOgGtrVmzLCMTAh5swpvC
content-encoding: gzip
etag: W/"5b11ce08c51a9e4b3f4bbe37deea19c1"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ekLMhkel0ajDqpQBruzfUkkBF-9TqIpskMhm7KuBhyKw-N3GAyJxeg==
age: 84008
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 920844337aea0b06-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
POST region1.analytics.google.com/g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&ec_mode=m&_eu=EA&_s=5&uid=3ef305c1e8de6ca126ce20ad9b487ce0&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=scroll&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&ep.percent_scrolled=75&tfd=2349
204 No Content 0 B URL POST region1.analytics.google.com/g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&ec_mode=m&_eu=EA&_s=5&uid=3ef305c1e8de6ca126ce20ad9b487ce0&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=scroll&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&ep.percent_scrolled=75&tfd=2349
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&ec_mode=m&_eu=EA&_s=5&uid=3ef305c1e8de6ca126ce20ad9b487ce0&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=scroll&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&ep.percent_scrolled=75&tfd=2349 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 204 No Content
access-control-allow-origin: https://www.ntiva.com
date: Sat, 15 Mar 2025 01:34:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:137:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:137:0
report-to: {"group":"ascnsrsggc:137:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:137:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST region1.analytics.google.com/g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&_eu=EA&_s=1&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=page_view&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&tfd=1580
204 No Content 0 B URL POST region1.analytics.google.com/g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&_eu=EA&_s=1&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=page_view&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&tfd=1580
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&_eu=EA&_s=1&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=page_view&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&tfd=1580 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 204 No Content
access-control-allow-origin: https://www.ntiva.com
date: Sat, 15 Mar 2025 01:34:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:137:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:137:0
report-to: {"group":"ascnsrsggc:137:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:137:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET wss://visitors.live/socket.io/?siteId=330729&EIO=3&transport=websocket
101 Switching Protocols 0 B URL GET wss://visitors.live/socket.io/?siteId=330729&EIO=3&transport=websocket
IP
Certificate IssuerLet's Encrypt
Subjectvisitors.live
FingerprintE6:D5:6F:C0:FD:14:B5:EC:61:58:2E:16:DD:FA:7A:E5:40:84:13:C5
ValiditySat, 22 Feb 2025 06:51:02 GMT - Fri, 23 May 2025 06:51:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /socket.io/?siteId=330729&EIO=3&transport=websocket HTTP/1.1
Host: visitors.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ntiva.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hIvzCKhpPdYsQQi4aNmopg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Sec-WebSocket-Accept: TxB1PkVNdBZbQV1IAoF5z3riguE=
Sec-WebSocket-Extensions: permessage-deflate; client_no_context_takeover
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
Date: Sat, 15 Mar 2025 01:34:05 GMT
Via: 1.1 google
Upgrade: websocket
Connection: Upgrade
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.ntiva.com/hubfs/country.webp
200 OK 73 kB URL GET www.ntiva.com/hubfs/country.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash d43c9d4aaa9f4e55f639610994914aa4
e3f0a59de180adc820c61baf2378588dc5d4c7ca
90a5d2895c8839d70da4aac2b2f617992be892c7e97b832178d5d7a46507fafd
GET /hubfs/country.webp HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 72612
cf-ray: 92084408cc339312-CPH
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "d43c9d4aaa9f4e55f639610994914aa4"
last-modified: Tue, 04 Jul 2023 22:41:44 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 c0f81b73b25f5689e5357fd24a5fcb0c.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-123414828036,P-3012736,FLS-ALL
edge-cache-tag: F-123414828036,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: sHyDofy3aivk2_qLRsriD3f8yua-XtGYLWLwOKVDwpod85Ui5ySl2w==
x-amz-cf-pop: CPH50-C1
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Xo5T6%2BxCitI8VgWGJEzxNI3bvDTon6i5%2BfMPeeLagTG6ZNspCj2FGgwUA%2BZvDlSeMMj1Snhk4f0dEV5s%2BlNWitGZLNNIsIVTaappWFN6udGiiMEAxj3gH%2BtqNZe6wxs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET js.hsadspixel.net/fb.js
200 OK 5.8 kB IP
Certificate IssuerGoogle Trust Services
Subjecthsadspixel.net
Fingerprint2C:EA:F6:D9:6C:07:51:E5:C1:E3:3E:35:47:59:19:FC:D3:18:E8:E4
ValidityWed, 05 Feb 2025 04:44:41 GMT - Tue, 06 May 2025 05:44:30 GMT
File type ASCII text, with very long lines (5973), with no line terminators
Hash 46013b9abc1f9a1832d20b9600decdef
f17dfbe85a72826bfe237695444614f3fd1dfaad
a401a4229ba55b545d84423807bb5fdc4beb6987a38a13186a7dad6394f4fc5d
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 12 Mar 2025 18:00:54 UTC
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: k9ToAKpUe5jDnBwJ3xJNnlk00dckfDOJ
etag: W/"5715fbaa53f8f540343fbaf8d0844240"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 9d2dee9b44718f249b789987d2cbe62c.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: CzLtQW96eznNCR_yovak13mCw8K816igPOdcFdSHyFocsWkcHdth8g==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=adsscriptloaderstatic/static-1.1548/bundles/pixels-release.js&cfRay=91f54071bcc9569c-WAW
cache-control: max-age=600
x-hs-target-asset: adsscriptloaderstatic/static-1.1548/bundles/pixels-release.js
x-content-type-options: nosniff
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 902dfbe5-9f9a-470a-a8f0-2025fcc16319
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-554d564d77-cm7l7
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 902dfbe5-9f9a-470a-a8f0-2025fcc16319
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 410
set-cookie: __cf_bm=urFz_LSXHlNKaZaGcSYynP9G_cKjflQZm.UdyIxPH.k-1742002439-1.0.1.1-X12dbSpkq5hVAED61y5w_Ag9tpagXh__R4O4IukOHqPk6OTHqXspIg50zLkCqn_0A5.Cs0ngobqPQZC_AFWdn2O6.fHeXD4jWxi1jganL_I; path=/; expires=Sat, 15-Mar-25 02:03:59 GMT; domain=.hsadspixel.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 9208441059b1b515-OSL
X-Firefox-Spdy: h2
GET go.ntiva.com/hubfs/card-managed-cybersecurity.webp
200 OK 16 kB URL GET go.ntiva.com/hubfs/card-managed-cybersecurity.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectgo.ntiva.com
FingerprintAA:6A:75:2E:78:01:5A:33:93:C9:62:EB:DF:32:EB:C3:EB:05:0E:00
ValidityFri, 28 Feb 2025 02:52:37 GMT - Thu, 29 May 2025 03:52:33 GMT
File type RIFF (little-endian) data, Web/P image
Hash 3131183451e6c3655b534e303d74b34b
0d07983ac7917926888543b09a66d91874c0e599
5398b76e279b30e4cc80d24eb68b99f70d4379e03e119dfaa6f3bafc9354c9b3
GET /hubfs/card-managed-cybersecurity.webp HTTP/1.1
Host: go.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=JQBTlAck62DAc3oTYlcJJb5hKWPlhRzenFyEHZh2DVc-1742002436-1.0.1.1-PTKGq0Nr8EdKYXpOKE9U.SXRAu8.0EezSFhsnBY84c4Y9dEIEphwGTfW1u5gcsw9WQHbmupWKurnuRcfl1Nv5RW.ROINMWUKS3F8xOW2mmk; _cfuvid=Dk0hkGulc2C3VGo7R3dwfEltgMcVUr9diqlEG6nNg6k-1742002436226-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 16520
cf-ray: 9208440e5a132625-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "3131183451e6c3655b534e303d74b34b"
last-modified: Wed, 05 Jul 2023 15:26:56 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 ab37fc2d73bd6e477f5652b6cb140162.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-123500405937,P-3012736,FLS-ALL
edge-cache-tag: F-123500405937,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: dLhlaYBZs5IsB3rgpCgudPDHInUA2pnc_I4ZNtprZKF-rwBVQLdG5w==
x-amz-cf-pop: ARN53-P1
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d18RSlgL99hR1sU0YHbb69oE2d8J2KttjwmaPl35c8tDvLK40urhi0%2BT3Pjxc1mmWQuUjBSPVIsy02PfEf%2F3A%2FYPipGmXgsrQRZ49SH6IkFCXZNbeMmVTNff%2BbSEfQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.googletagmanager.com/gtag/js?id=AW-941167555&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719
200 OK 283 kB URL GET www.googletagmanager.com/gtag/js?id=AW-941167555&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (5268)
Size 283 kB (282978 bytes)
Hash 8f3d2fc02d1ce5948cd1358647a6eab3
8f35709031c3ab7eb7e17ce194c751da7f706e3b
9edc9225a05351fa55fc6962d3bfa843ab03b4e2c5acfa84623637294bca0a10
GET /gtag/js?id=AW-941167555&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Mar 2025 01:34:06 GMT
expires: Sat, 15 Mar 2025 01:34:06 GMT
cache-control: private, max-age=900
last-modified: Sat, 15 Mar 2025 00:20:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 100498
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
200 OK 90 kB URL GET cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP
Certificate IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint00:0E:39:59:53:CF:68:07:90:75:EB:68:26:B9:04:22:44:7D:9A:32
ValidityFri, 24 Jan 2025 09:16:22 GMT - Thu, 24 Apr 2025 10:16:21 GMT
File type JavaScript source, ASCII text, with very long lines (65447)
Hash 8fb8fee4fcc3cc86ff6c724154c49c42
b82d238d4e31fdf618bae8ac11a6c812c03dd0d4
ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5176
expires: Thu, 05 Mar 2026 01:33:57 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J5IvUiVx8cIyGsqlT80BLpJ7Uor3Py24G6aRtd13sYXENTM4FZKeTznC%2FmGVCUI1hbXHkzTGze621PePmdrASHOceGZHUlu85lvhAD1cr64I6tXtwmliZDxj7KVLPtW0028ydb8d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 92084402adc4b4fd-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.ntiva.com/cheq-ppc-invalid-users
200 OK 52 kB URL GET www.ntiva.com/cheq-ppc-invalid-users
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cheq-ppc-invalid-users HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441; _cq_duid=1.1742002442.vKqCNSj5XUxI2aZ7; _cq_suid=1.1742002442.Feq1i50o6EVlK9Gv
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:03 GMT
content-type: text/html; charset=UTF-8
cache-control: s-maxage=10800, max-age=0
last-modified: Thu, 13 Mar 2025 10:47:28 GMT
link: </hs/hsstatic/content-cwv-embed/static-1.1293/embed.js>; rel=preload; as=script,</hs/hsstatic/keyboard-accessible-menu-flyouts/static-1.17/bundles/project.js>; rel=preload; as=script,</hs/hsstatic/cos-i18n/static-1.53/bundles/project.js>; rel=preload; as=script,</hs/hsstatic/AsyncSupport/static-1.122/js/post_listing_asset.js>; rel=preload; as=script
strict-transport-security: max-age=31536000
content-security-policy: upgrade-insecure-requests
edge-cache-tag: CT-131392689173,P-3012736,L-29226578529,L-29235178100,L-71044651948,W-56269701186,CW-172216680051,CW-26203046552,CW-5216601942,E-5204755363,E-52381071736,MENU-56269701186,PGS-ALL,SW-3,GC-29226325861,GC-29425929945
referrer-policy: no-referrer-when-downgrade
x-content-type-options: nosniff
x-hs-cache-config: BrowserCache-5s-EdgeCache-180s
x-hs-cache-control: s-maxage=10800, max-age=0
x-hs-cf-cache-status: MISS
x-hs-content-id: 131392689173
x-hs-hub-id: 3012736
x-hs-prerendered: Thu, 13 Mar 2025 10:47:28 GMT
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ffnrfp7BNGi4xMj85%2FO9jZRGNL8MPRiyBAIMB2ZzJvkRhkn6vOXh95xBJh3ZeccXRGYH8iVtd4kHKA39o8WxvpzpFg25F2be5jbgbkw%2B%2BbJ0gmkmj%2Ba10QbmkrW5wB4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 920844293f3c9312-CPH
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.googleapis.com/css2?family=Lato:ital,wght@0,300;0,400;0,700;0,900;1,400;1,700&display=swap
200 OK 5.0 kB URL GET fonts.googleapis.com/css2?family=Lato:ital,wght@0,300;0,400;0,700;0,900;1,400;1,700&display=swap
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectupload.video.google.com
FingerprintF1:11:17:AF:9C:89:34:EE:D5:CB:84:40:84:EA:01:19:A9:F6:ED:C2
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type ASCII text, with very long lines (5058), with no line terminators
Hash 5dc448e4e53fce80107449dbe6646154
ce986801748c28f250b82065a821f232b961ab96
a0cdf452162ed37fdff05cfe2ef5b5f740d12f3c799a137b8b5e5ff1f3a4fb11
GET /css2?family=Lato:ital,wght@0,300;0,400;0,700;0,900;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 15 Mar 2025 01:34:04 GMT
date: Sat, 15 Mar 2025 01:34:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST obs.segreencolumn.com/mon
200 OK 0 B URL POST obs.segreencolumn.com/mon
IP
Certificate IssuerZeroSSL
Subject*.segreencolumn.com
Fingerprint3B:63:25:99:FB:62:85:51:48:57:1D:7D:F3:41:B8:7D:67:82:CB:D0
ValidityFri, 07 Feb 2025 00:00:00 GMT - Thu, 08 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.segreencolumn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1730
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Cookie: cg_uuid=539d407ac997a330f713580dffcf0ae8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.ntiva.com
content-type: application/json
date: Sat, 15 Mar 2025 01:34:04 GMT
content-length: 0
X-Firefox-Spdy: h2
GET wss://in.visitors.live/socket.io/?EIO=3&transport=websocket
101 Switching Protocols 0 B URL GET wss://in.visitors.live/socket.io/?EIO=3&transport=websocket
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectin.visitors.live
Fingerprint6E:FC:63:6F:0B:2E:FD:C8:32:84:FF:56:E4:96:88:A0:ED:D4:48:C3
ValidityFri, 07 Feb 2025 23:02:21 GMT - Thu, 08 May 2025 23:02:20 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /socket.io/?EIO=3&transport=websocket HTTP/1.1
Host: in.visitors.live
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.ntiva.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /CnIFjiJaHVjDXl2AAzhIw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Sec-WebSocket-Accept: /7BPWGkGxakTncqpACmYPaSwMIc=
Sec-WebSocket-Version: 13
WebSocket-Server: uWebSockets
Date: Sat, 15 Mar 2025 01:34:05 GMT
Via: 1.1 google
Upgrade: websocket
Connection: Upgrade
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.ntiva.com/hubfs/ntiva-2023/home/cube.webm
206 Partial Content 9.7 MB URL GET www.ntiva.com/hubfs/ntiva-2023/home/cube.webm
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
Size 9.7 MB (9688461 bytes)
Hash ed22e8a723043c9bb212ebeeef653442
1a19d6d0e76aee8ebd32b4fa59887c60655f7538
f71e1319ff666b69e3edde80d67bbff0a450e2c9eb121778c5c3a477a24ce59d
GET /hubfs/ntiva-2023/home/cube.webm HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Referer: https://www.ntiva.com/
Range: bytes=0-
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 206 Partial Content
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: video/webm
content-length: 9688461
content-range: bytes 0-9688460/9688461
cf-ray: 9208440e1dc59312-CPH
cf-cache-status: HIT
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "ed22e8a723043c9bb212ebeeef653442"
last-modified: Mon, 22 May 2023 18:28:11 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 5d83ff4fc3f1b992abe457ff43255c0a.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-116615822517,FD-111529810612,P-3012736,FLS-ALL
edge-cache-tag: F-116615822517,FD-111529810612,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: C-nhM5z1zNpp884fRvsXKwgtjSc9tcY0KFg7PgksfQ6A-24n6UVxRQ==
x-amz-cf-pop: ARN53-P1
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UjUBCU1BHHlmJCweQmC3WCAAk64XcSrhaE%2FAZne3VeegeGcw1bfXC5038oQ4rUbJGr9NYlc6ros6Ldpmil0zWDkvpiJ54PuL7f5LsOcR8mPZ%2B39uOYqAvLDQmJIbQsM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hubfs/All-Tech-Decorating-Logo-gry.png?width=97&height=45&name=All-Tech-Decorating-Logo-gry.png
200 OK 2.9 kB URL GET www.ntiva.com/hs-fs/hubfs/All-Tech-Decorating-Logo-gry.png?width=97&height=45&name=All-Tech-Decorating-Logo-gry.png
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash 7e8c8163b51d1319b68444257defc585
6eb5b286733ca509c2fc5ca9d416db8ea3d5ce0d
adfdae6e38a2a9cdf6c411c3846ede93bc9a7b353de47826c6a4def0a1f7601d
GET /hs-fs/hubfs/All-Tech-Decorating-Logo-gry.png?width=97&height=45&name=All-Tech-Decorating-Logo-gry.png HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: image/webp
content-length: 2888
cf-ray: 920844025a099312-CPH
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfN03WkBMfc5qX6kuXQSN_CYk4mmM4ge-bj4dANpP7DQ:931cc20f02b69e43d237f1239f51c218"
last-modified: Thu, 21 Sep 2023 18:04:18 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 5d44e22fe93ef8713c49e65bc8443112.cloudfront.net (CloudFront)
cache-tag: F-135974056977,P-3012736,FLS-ALL
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/m q=0 n=188+5 c=0+5 v=2025.3.1 l=2888 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FIDyoBM4rF5Dsqkk9OuY2P3fZE0T0557DKZs0xHurtwveUQD41ngua8NyGZ09dJibuI5B6jukf2a12PPlMH4P%2BJca692uCnVl8U%2B4ngKEc6re0%2F6psCIdbP1hDs7wuM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET iptrack.io/Admin/who.ashx?Type=Hit&Data=1280|1024||4e32353866d94928937a0925c57e7e77|https%3A%2F%2Fwww.ntiva.com%2F
200 OK 631 B URL GET iptrack.io/Admin/who.ashx?Type=Hit&Data=1280|1024||4e32353866d94928937a0925c57e7e77|https%3A%2F%2Fwww.ntiva.com%2F
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert Inc
Subject*.iptrack.io
Fingerprint9C:BE:66:EC:A6:C0:5F:92:FD:43:B5:28:37:25:1F:BA:7E:30:B9:0D
ValidityThu, 26 Sep 2024 00:00:00 GMT - Wed, 24 Sep 2025 23:59:59 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3
Hash a3dad853f144547d6c20bd57d087602b
f2302b79b8c186c63478e4cc55be571cae3ad88b
592940666137da705db11558b5601579abf2e044ff4a62c81f1f386bbce6e101
GET /Admin/who.ashx?Type=Hit&Data=1280|1024||4e32353866d94928937a0925c57e7e77|https%3A%2F%2Fwww.ntiva.com%2F HTTP/1.1
Host: iptrack.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-cache
pragma: no-cache
content-type: image/jpg
expires: -1
server: Microsoft-IIS/10.0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
date: Sat, 15 Mar 2025 01:34:01 GMT
content-length: 631
X-Firefox-Spdy: h2
GET www.ntiva.com/hs/hsstatic/cos-i18n/static-1.53/bundles/project.js
200 OK 1.2 kB URL GET www.ntiva.com/hs/hsstatic/cos-i18n/static-1.53/bundles/project.js
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1315), with no line terminators
Hash 1e7776396a99c062e3b3b53b0a6d9313
2991888f216a90e30435d8b5e561cc63e0d77827
f13e0378653c1e2f91481c5d1e4a0045231bd58843ef2d0df5cc34cae4e2d763
GET /hs/hsstatic/cos-i18n/static-1.53/bundles/project.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/cheq-ppc-invalid-users
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441; _cq_duid=1.1742002442.vKqCNSj5XUxI2aZ7; _cq_suid=1.1742002442.Feq1i50o6EVlK9Gv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: application/javascript
cf-ray: 9208442bc8d39312-CPH
cf-cache-status: HIT
age: 2325853
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"61ca66de658cab9587e4636894680d5d"
expires: Sun, 15 Mar 2026 01:34:04 GMT
last-modified: Tue, 09 Nov 2021 16:12:42 GMT
set-cookie: __cf_bm=V4USzOuEvjRQJVLTFqtGZOc.4ra90BHfs8MtmP1emoA-1742002444-1.0.1.1-w1h1JOBxeQYieEkLpIw_xS8Vm9CG2wPhAPT62PoXNaJkJmp6pko5vkNschNeKsM8tGfvrv7RYiM3MY6wH3xP_e6bMvggRebKw5xO0jlxvqw; path=/; expires=Sat, 15-Mar-25 02:04:04 GMT; domain=.hubspotusercontent.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: accept-encoding
via: 1.1 f803b0b1a33d6ee945ec151c2ca0acaa.cloudfront.net (CloudFront)
x-amz-cf-id: SE6oL4xZFU3WE7RfpweQP3JX1sqPxs3xvY1gmd3tUPxKCCZiwR2y7w==
x-amz-cf-pop: ARN56-P2
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-version-id: P9ES7sOpFzrLl1QoRwjEAy5outPo5_GO
x-cache: Hit from cloudfront
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FTR1F801cgH25z896pnmD7UpKps6O4BshlZgdiHoVtW6oceUH0W7tgbyBh%2F971Wm0SCYDSWn5X8HsL7KvesQbcS9%2FulLC8S%2FJJHJK%2F9iqSLZjv4ftmWZTM6NS41Hvrw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hubfs/street.webp?width=200&height=22&name=street.webp
200 OK 1.5 kB URL GET www.ntiva.com/hs-fs/hubfs/street.webp?width=200&height=22&name=street.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 200x22, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 7b0fb906bbbf5af7cddb0ed436d20de3
a64186d1f8dd62006788106cb03249b1cdb1a963
35889e2f9a8cfa3643e940f3548afd27e3770c56cdfdf69358606ea744da2d5b
GET /hs-fs/hubfs/street.webp?width=200&height=22&name=street.webp HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 1512
cf-ray: 9208440e3de89312-CPH
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfDDvDdY2zABQCkRvKbc04NEiM97s35N3cldVIfjjlDQ:7b0fb906bbbf5af7cddb0ed436d20de3"
last-modified: Wed, 05 Jul 2023 16:29:13 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 ce6aa43c72ee1bea26f47b9ee0b4eafc.cloudfront.net (CloudFront)
cache-tag: F-123505083536,P-3012736,FLS-ALL
cf-bgj: imgq:0,h2pri
cf-resized: internal=ok/h q=0 n=14+0 c=0+0 v=2025.3.1 l=1512 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lVNUX1fviOUsfPigkH46G3bXD7%2B5nL5UAmFH1Ui%2B%2F0kg6rEdJClr%2F36gGgiILb3jwyri%2FRQTNSDfdO0MvXPMsvw7CtUAHw8n2tzLInFa6FrfmDWWoEE22JPhjxbdcIA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hubfs/CTS-Financial-Logo-gry.png?width=207&height=40&name=CTS-Financial-Logo-gry.png
200 OK 3.0 kB URL GET www.ntiva.com/hs-fs/hubfs/CTS-Financial-Logo-gry.png?width=207&height=40&name=CTS-Financial-Logo-gry.png
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash bbff6d7d2bfb3a6001a4cdfd1c5ee558
e5fb846cf96ae03e9555a35c301e94ddc7be7ad1
828e0d8fdb97dee79593b73e3da17ea67109d3cce3abbab47bf04d00fe674d77
GET /hs-fs/hubfs/CTS-Financial-Logo-gry.png?width=207&height=40&name=CTS-Financial-Logo-gry.png HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 3026
cf-ray: 9208440e3dee9312-CPH
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfsZJ5AB_8xagJFVamCMV1QvzvLvBf9Jug8qEq8x3ADQ:200f23ee06cd4f7ffb041cb6b57ce383"
last-modified: Thu, 21 Sep 2023 18:08:02 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 0369688214835f42c0769e35bb5bc592.cloudfront.net (CloudFront)
cache-tag: F-135975599479,P-3012736,FLS-ALL
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=518+4 c=0+3 v=2025.3.1 l=3026 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oF32eGDK2uEAxlb19Yp2Z%2Bj1Zn6U6yFH6Xk3edBvo0RW8GFPl1%2FeYp2uAeFzppHAZycFqpKn95aJEEvdFaDQjaAfiVQhqpFzrX2tYAQZL26KysioY8qFLVBTIUTZi1Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST obs.segreencolumn.com/mon
200 OK 0 B URL POST obs.segreencolumn.com/mon
IP
Certificate IssuerZeroSSL
Subject*.segreencolumn.com
Fingerprint3B:63:25:99:FB:62:85:51:48:57:1D:7D:F3:41:B8:7D:67:82:CB:D0
ValidityFri, 07 Feb 2025 00:00:00 GMT - Thu, 08 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.segreencolumn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2521
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Cookie: cg_uuid=539d407ac997a330f713580dffcf0ae8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.ntiva.com
content-type: application/json
date: Sat, 15 Mar 2025 01:34:04 GMT
content-length: 0
X-Firefox-Spdy: h2
POST www.google.com/ccm/collect?en=page_view&dr=www.ntiva.com&dl=https%3A%2F%2Fwww.ntiva.com%2F&scrsrc=www.googletagmanager.com&frm=1&rnd=1630717348.1742002445&dt=User%20Detection&auid=1313079655.1742002439&navt=n&npa=0>m=45je53d0v881685058z8810996057za200zb810996057&gcs=G1--&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&tft=1742002445051&tfd=1420&apve=1
200 OK 0 B URL POST www.google.com/ccm/collect?en=page_view&dr=www.ntiva.com&dl=https%3A%2F%2Fwww.ntiva.com%2F&scrsrc=www.googletagmanager.com&frm=1&rnd=1630717348.1742002445&dt=User%20Detection&auid=1313079655.1742002439&navt=n&npa=0>m=45je53d0v881685058z8810996057za200zb810996057&gcs=G1--&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&tft=1742002445051&tfd=1420&apve=1
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subject*.google.com
FingerprintA6:CB:44:7F:3D:99:4C:A4:BB:26:8F:89:91:31:52:FE:74:82:C2:1E
ValidityWed, 26 Feb 2025 15:32:55 GMT - Wed, 21 May 2025 15:32:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ccm/collect?en=page_view&dr=www.ntiva.com&dl=https%3A%2F%2Fwww.ntiva.com%2F&scrsrc=www.googletagmanager.com&frm=1&rnd=1630717348.1742002445&dt=User%20Detection&auid=1313079655.1742002439&navt=n&npa=0>m=45je53d0v881685058z8810996057za200zb810996057&gcs=G1--&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&tft=1742002445051&tfd=1420&apve=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:05 GMT
content-type: text/plain
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
cache-control: no-cache, no-store, must-revalidate
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.ntiva.com
access-control-expose-headers: date,vary,vary,vary,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST stats.g.doubleclick.net/g/collect?v=2&tid=G-JKTPCKN83D&cid=105610842.1742002441>m=45je53d0v881685058z8810996057za200zb810996057&aip=1&dma=1&dma_cps=syphamo&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&frm=0&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719
204 No Content 0 B URL POST stats.g.doubleclick.net/g/collect?v=2&tid=G-JKTPCKN83D&cid=105610842.1742002441>m=45je53d0v881685058z8810996057za200zb810996057&aip=1&dma=1&dma_cps=syphamo&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&frm=0&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719
IP
Certificate IssuerGoogle Trust Services
Subject*.g.doubleclick.net
Fingerprint11:69:7A:60:FE:92:7B:5B:B1:4B:44:D7:D4:C8:E4:64:61:C9:D8:54
ValidityWed, 26 Feb 2025 15:33:01 GMT - Wed, 21 May 2025 15:33:00 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-JKTPCKN83D&cid=105610842.1742002441>m=45je53d0v881685058z8810996057za200zb810996057&aip=1&dma=1&dma_cps=syphamo&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&frm=0&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.ntiva.com
date: Sat, 15 Mar 2025 01:34:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:112:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:112:0
report-to: {"group":"ascnsrsggc:112:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:112:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.ntiva.com/hs/hsstatic/HubspotToolsMenu/static-1.432/js/index.js
200 OK 12 kB URL GET www.ntiva.com/hs/hsstatic/HubspotToolsMenu/static-1.432/js/index.js
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type JavaScript source, ASCII text, with very long lines (12106)
Hash 964183570d894379603a2e05c6ce87c7
04d16b4d33994f67183bfd0d9e681920303bb69a
9014013a02a3d0c4a5405d882ea08ba3ce2e80507e3dd1677fefb63e36a0766a
GET /hs/hsstatic/HubspotToolsMenu/static-1.432/js/index.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/cheq-ppc-invalid-users
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441; _cq_duid=1.1742002442.vKqCNSj5XUxI2aZ7; _cq_suid=1.1742002442.Feq1i50o6EVlK9Gv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: application/javascript
cf-ray: 9208442c19099312-CPH
cf-cache-status: HIT
age: 809011
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"964183570d894379603a2e05c6ce87c7"
expires: Sun, 15 Mar 2026 01:34:04 GMT
last-modified: Wed, 05 Mar 2025 15:46:22 GMT
set-cookie: __cf_bm=I4IB3oeGnksRU.RAk_VDcUCVX8Gmd1Tw4SGWPvYEUrU-1742002444-1.0.1.1-XnPm47vpGVB5YFwT04tUnzln8_GkuZXM6YWiSZFVSQUG4MmdPVBOGbDUwwi.8C.lgulaaFLz6KGrX0zr3lzDpv2s2KxJR7AwlGyCyMynbv8; path=/; expires=Sat, 15-Mar-25 02:04:04 GMT; domain=.hubspotusercontent.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: accept-encoding
via: 1.1 56a77d6c9e6b49fa4179a99507a9582e.cloudfront.net (CloudFront)
x-amz-cf-id: jCbpw21KqPtXM5Br9Dju0wB2vJaOZybDkpAbW78U6e0GTxprlUn0lw==
x-amz-cf-pop: FRA60-P6
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-version-id: exnza79CU0VJVDr7y7H3IloG3aCM04GD
x-cache: Hit from cloudfront
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LFLL%2BcUJLuXOXMVXezymH2b72KEewpsBYdF9AVmyyFmsIbqaN8ar%2FXLQXfLRqj0yOteEMVjlLPzdoaK3KqEgGYYYS83%2FJggPmyQRnxdshtcAr6DGL30C7dr27i6MmWQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hubfs/hub_generated/module_assets/1/109390934937/1741632267352/module__footer.min.css
200 OK 1.1 kB URL GET www.ntiva.com/hs-fs/hubfs/hub_generated/module_assets/1/109390934937/1741632267352/module__footer.min.css
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (1113), with no line terminators
Hash 7d0747a69d1a3a55209783cbdd4d418d
61156692dfeaf8f1d10e850d1e034efb95531f98
eab5b8778b65d8e4f62ec2dd45fcb2063a3a09bbe59f91059cdc280d7286d1a7
GET /hs-fs/hubfs/hub_generated/module_assets/1/109390934937/1741632267352/module__footer.min.css HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: text/css
cf-ray: 920844024a059312-CPH
cf-cache-status: HIT
cache-control: public, max-age=60
content-encoding: gzip
etag: W/"7d0747a69d1a3a55209783cbdd4d418d"
last-modified: Mon, 10 Mar 2025 18:44:29 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 7c4bbd97f5be908e33f403c3794f629a.cloudfront.net (CloudFront)
access-control-allow-credentials: false
cache-tag: F-187121021073,FD-187120756113,P-3012736,FLS-ALL
edge-cache-tag: F-187121021073,FD-187120756113,P-3012736,FLS-ALL
timing-allow-origin: www.ntiva.com
x-amz-cf-id: M55LzZZL88eyMVfFgXwhXWaomG2LGZB4m5jBeFbk6NmiiWjJx99NHQ==
x-amz-cf-pop: IAD89-C1
x-cache: Miss from cloudfront
x-envoy-upstream-service-time: 147
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-7f89d4c7c5-qz5lg
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hubspot-correlation-id: d8ca3a63-2864-484a-b3cd-8bb205ef5fe3
x-request-id: d8ca3a63-2864-484a-b3cd-8bb205ef5fe3
x-robots-tag: none
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BytQtUauwoZ0q0dNzHLNHzforOjv5PQZMZ6lKhticL6xxSvGx4SQsFLaEgyg7QKWscGnjj3Po875OnTZqoipuDxpe7uEvsLr1cmRehIn%2FFisxbbd3o7Q5eZjw09DLcc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/template_assets/111711468188/1719949519184/ntiva-2023/js/home.min.js
200 OK 3.1 kB URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/template_assets/111711468188/1719949519184/ntiva-2023/js/home.min.js
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type JavaScript source, ASCII text, with very long lines (3235), with no line terminators
Hash 3d9dda118e18f8a32beff62a5ba5f2ad
23754257a7c5aae1533b7f0f4577073ed3a98ca8
0c0ad1e1124674e574e63c69b0fea8137b44510fff217e18017a1a75f13c70da
GET /hs-fs/hub/3012736/hub_generated/template_assets/111711468188/1719949519184/ntiva-2023/js/home.min.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 920844027a1a9312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
etag: W/"b2932d50c449312cdbdabc015de87f54"
last-modified: Tue, 02 Jul 2024 19:45:20 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 6bc1c280aeef9bbdeb102c7f4e4f773e.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: HH8E3su7S6x3uhONRRmWCaQYouyRy2sXMNcawXh5l-dmQ2kaLljUQQ==
x-amz-cf-pop: IAD89-C1
x-amz-id-2: sNGey7touTi2/dJdvOPNH+F8ymELCQkIRTIh9S8lRlRj5WVmvloMDmebi4yYOPKYr5OVpnD4+Qk=
x-amz-meta-created-unix-time-millis: 1719949519385
x-amz-replication-status: COMPLETED
x-amz-request-id: Y974V4XEMR36XD4A
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: BnvVv6ijR83m.fkJ9mR5x_mD7VXdpP1R
x-cache: Miss from cloudfront
x-envoy-upstream-service-time: 219
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-7849459c5c-rz8x5
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: 2f28efa9-fe3a-431f-ae7b-1974a90396d2
x-request-id: 2f28efa9-fe3a-431f-ae7b-1974a90396d2
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NiusWKSYEv7nwOysz2wA1oOR5VyPt0HIqV1PDvNzIBYpUWRKJ6q0tci7RVHaYw3wsjenRpOi%2FZ2fq%2BBGA9yyzo7vRQtVlPkzOrEdb91%2Fz%2B6n6Vey90rpVyelVfgKB00%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Mar 2025 09:23:55 GMT
expires: Fri, 13 Mar 2026 09:23:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
age: 144604
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.ntiva.com/hubfs/ntiva-logo-1.svg
200 OK 1.7 kB URL GET www.ntiva.com/hubfs/ntiva-logo-1.svg
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type SVG Scalable Vector Graphics image
Hash b467f64a341f41b4df1681e6230eb284
139f41f849ad7301e692eecd5f1285938a42dbaa
025eabbceafd47de9ed4ff427c20bfa206203602f8ba5cad04a7be4de0145c99
GET /hubfs/ntiva-logo-1.svg HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/svg+xml
cf-ray: 9208440e1dc69312-CPH
cf-cache-status: HIT
access-control-allow-origin: *
age: 187750
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: W/"375e91800bf102d588f1fe20f77f7835"
last-modified: Tue, 23 May 2023 00:10:13 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 a5607d37f6322bee208b762f730550a0.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-109426566761,P-3012736,FLS-ALL
edge-cache-tag: F-109426566761,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: fVsJejf6kmEahZXzq-UCqPrjBbYHW-KHN24dqV-XCFR6eFN-iq1wNw==
x-amz-cf-pop: FRA60-P7
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uSWxkHfso47y07XJjcdi72wZ8jY9NMXVvaFz%2BNcnJywklF36ctAmHHEZunuBYbVgwkAn2LVbmK13l%2FhMOI10qiny1xVHGhGKYmTpxYetWOKDGfUCKHGQWjJBHHHopBc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hubfs/bazaar-logo-gry.png?width=87&height=45&name=bazaar-logo-gry.png
200 OK 2.3 kB URL GET www.ntiva.com/hs-fs/hubfs/bazaar-logo-gry.png?width=87&height=45&name=bazaar-logo-gry.png
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash 595f8f1b67e0c444bb147cb713d3d796
ec4d87d9808dd7ea547abb41949047b8dcefc8ee
fe1b0272827e6b135d79723397606091198c02b0d1eef1393c24b9110a26b87d
GET /hs-fs/hubfs/bazaar-logo-gry.png?width=87&height=45&name=bazaar-logo-gry.png HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 2286
cf-ray: 9208440e3deb9312-CPH
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfVZn0-S4hsjEj5RBwIWpZrB18ONxmKjOvURuhF9J1DQ:885b2d768164b304a0d248ad8f05fb28"
last-modified: Thu, 21 Sep 2023 18:05:51 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 47cc7d5981f182b935da67eb4606a37e.cloudfront.net (CloudFront)
cache-tag: F-135976205687,P-3012736,FLS-ALL
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/m q=0 n=470+4 c=0+4 v=2025.3.1 l=2286 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n%2FEMPpMX3NDPNPTHUmeKnr%2B1A3QUv3fHoeP61oaVO816%2FPd02rfxP0sUQ%2FmX8nyp2FY0DxHZYMY4ogd%2BA6deeu6rCRKjYF8e%2BE7lzIv5cSWTCoqTsX9gPSin7PgUWxA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET go.ntiva.com/hubfs/card-it-consulting.webp
200 OK 18 kB URL GET go.ntiva.com/hubfs/card-it-consulting.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectgo.ntiva.com
FingerprintAA:6A:75:2E:78:01:5A:33:93:C9:62:EB:DF:32:EB:C3:EB:05:0E:00
ValidityFri, 28 Feb 2025 02:52:37 GMT - Thu, 29 May 2025 03:52:33 GMT
File type RIFF (little-endian) data, Web/P image
Hash 30dab98178cab610d2129089e1825d6a
2abf96b476b5508f40161f1fc0cb99579020a531
28e61f5073e1c549e444f89f54e218257240979bef0624891657f6eb08797399
GET /hubfs/card-it-consulting.webp HTTP/1.1
Host: go.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=JQBTlAck62DAc3oTYlcJJb5hKWPlhRzenFyEHZh2DVc-1742002436-1.0.1.1-PTKGq0Nr8EdKYXpOKE9U.SXRAu8.0EezSFhsnBY84c4Y9dEIEphwGTfW1u5gcsw9WQHbmupWKurnuRcfl1Nv5RW.ROINMWUKS3F8xOW2mmk; _cfuvid=Dk0hkGulc2C3VGo7R3dwfEltgMcVUr9diqlEG6nNg6k-1742002436226-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 18086
cf-ray: 9208440e5a142625-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "30dab98178cab610d2129089e1825d6a"
last-modified: Wed, 05 Jul 2023 15:27:03 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 5d44e22fe93ef8713c49e65bc8443112.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-123495398465,P-3012736,FLS-ALL
edge-cache-tag: F-123495398465,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: T1JFRaWsvZLzLQYCYTxeYCc_Rrkv3oXE8yyFoRQiwHIFW79_Pb1A2Q==
x-amz-cf-pop: ARN53-P1
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6JDSjd%2Br%2BusF7XAioMblsnxtaBBBODf%2BbCM%2Fi8R6agMLdgZnlIpBPorhMypp1wS925lBj%2BvRHjiTyabT5iNeswyST7CmosFYYdtZDSsOA2dYt9b6NmkZy%2BMl9y8Ohw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs/scriptloader/3012736.js
200 OK 2.5 kB URL GET www.ntiva.com/hs/scriptloader/3012736.js
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (2655), with no line terminators
Hash 49c35e50843a9eb97804c101dd71892f
3ffc86792d1c1c610571ba2b35cd3d5c54bde70a
033011965bf2dc796ee1c203a259b28e9b471d5d9ddc85940c9fb4a7acf0bf51
GET /hs/scriptloader/3012736.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/cheq-ppc-invalid-users
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441; _cq_duid=1.1742002442.vKqCNSj5XUxI2aZ7; _cq_suid=1.1742002442.Feq1i50o6EVlK9Gv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: application/javascript;charset=utf-8
content-length: 682
cf-ray: 9208442c19089312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://www.ntiva.com
age: 7
cache-control: public, max-age=90
content-encoding: gzip
expires: Sat, 15 Mar 2025 01:35:34 GMT
last-modified: Sat, 15 Mar 2025 01:33:57 GMT
set-cookie: __cf_bm=YvG27uqHBrtMIg0HjYc4nTr4ucFsYvO1rQydS9ZbU7U-1742002444-1.0.1.1-yh5oUodu.rIJzSsaymDZw4AzvLj77Bp8MaDwiuUHnQ1N0IPdSC6.MFSgrso1.PNYEUr1513h4qr_DMqyJ6okAaA11v4sOHycKV2Sholj0aE; path=/; expires=Sat, 15-Mar-25 02:04:04 GMT; domain=.hs-scripts.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 3600
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-hubspot-correlation-id: c9b72d24-6b34-8566-d727-194f4c24b50c
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6JTpHPupMka9cSerKXwaJ9bIbEZGJlauszeThGI%2FAbgbtZnNeG600blo2J6Y1rJGjim2JDJKalBLEmqxOoP6%2B0ysxm36E1aZ%2BN77hPo%2FoNz6WPf8UaZpA7SM7i4%2BcKc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET js.hs-banner.com/v2/cf-location
200 OK 5 B URL GET js.hs-banner.com/v2/cf-location
IP
Certificate IssuerGoogle Trust Services
Subjecths-banner.com
Fingerprint1B:79:5D:2A:63:36:C1:AC:79:67:E5:5F:EB:17:F4:BA:29:4D:0F:74
ValidityMon, 20 Jan 2025 21:28:35 GMT - Sun, 20 Apr 2025 22:28:32 GMT
File type ASCII text, with no line terminators
Hash b1f6be35db4eaa3bb90336dc8f11b692
90d22ddf084d60e3d7f68dc5cb992294e635d4b5
488dc128fdfaff655e401b7f289504b48096f1f82c8cbe105b98d242b76fa501
GET /v2/cf-location HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:34:01 GMT
content-type: text/plain;charset=UTF-8
content-length: 5
access-control-allow-origin: *
cache-control: private, max-age=1500
set-cookie: __cf_bm=_oRdpEP7srsZxqD.bOde_zaRQMD_SBWHU.e0Uh_7zXc-1742002441-1.0.1.1-q8PGVzEOKzp38cXjwou1YwQ5SAjMR6wFUeE9cItSjyfpQh_FHYDmgO72W2BXS3fXWonV1ca56sCAzTqUFGHmcD.WhQZ90w20N7oVEjSYbk0; path=/; expires=Sat, 15-Mar-25 02:04:01 GMT; domain=.hs-banner.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 920844184b94b51d-OSL
X-Firefox-Spdy: h2
GET d10lpsik1i8c69.cloudfront.net/js/clickstream.js?v=e5a2acc
200 OK 294 kB URL GET d10lpsik1i8c69.cloudfront.net/js/clickstream.js?v=e5a2acc
IP
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
Size 294 kB (293866 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/clickstream.js?v=e5a2acc HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 01 Nov 2024 02:30:24 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 25 Jan 2024 18:19:40 GMT
etag: W/"ba41e1e15fa64ba31fd66b66e19eb16f"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: z5-0J0Nm-3b8dER1P3RPXSbvsRAuJH7eQ5Z9gMx8LIJPFJXZ5euFcQ==
age: 11574218
X-Firefox-Spdy: h2
GET js.hsleadflows.net/leadflows.js
200 OK 565 kB URL GET js.hsleadflows.net/leadflows.js
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjecthsleadflows.net
Fingerprint15:80:91:99:4D:A8:71:93:ED:BA:11:3A:2D:9F:46:0C:22:CA:3B:21
ValiditySat, 25 Jan 2025 08:42:29 GMT - Fri, 25 Apr 2025 09:42:14 GMT
Size 565 kB (564695 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /leadflows.js HTTP/1.1
Host: js.hsleadflows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 20 Feb 2025 10:09:00 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: mH_mgTdvZg_H8W2JlIwzqORwtBq48gT3
content-encoding: gzip
etag: W/"7968faa2771e212a972fd3e52300a0ca"
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method,accept-encoding
x-cache: RefreshHit from cloudfront
via: 1.1 872e43fac89d80c9557000efb9c31650.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: 1-Drvjkb1rZjXnW5OnLUutYY8iBvfxXVKT9vSuhNyaSxWj2l78EXUg==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=lead-flows-js/static-1.2614/bundle/main/lead-flows-release.js&cfRay=91fc1eba2b7bbbd2-ARN
cache-control: s-maxage=86400, max-age=0
x-hs-target-asset: lead-flows-js/static-1.2614/bundle/main/lead-flows-release.js
x-content-type-options: nosniff
x-hs-cache-status: MISS
x-envoy-upstream-service-time: 18
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: c0984974-b42b-49cd-810c-0c2928abde5a
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-554d564d77-62l2d
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: c0984974-b42b-49cd-810c-0c2928abde5a
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 52872
set-cookie: __cf_bm=nLjRV87vCbnRXdgEH4sgXmTeWBbYpTHFTD_hLgRmJDc-1742002444-1.0.1.1-w4qy2DGxPuY7z8JNzQqWI0Ujn9czsXYzaqJjyMbctLvF7MwAeMvXxD3_0yxSlNVrbaC0f6Krg7mr5yIO2tUqKB0GaquFEl5xlV8_vGWI9zs; path=/; expires=Sat, 15-Mar-25 02:04:04 GMT; domain=.hsleadflows.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 920844302f8c5693-OSL
X-Firefox-Spdy: h2
GET d10lpsik1i8c69.cloudfront.net/graphics/logo-light.png
200 OK 1.1 kB URL GET d10lpsik1i8c69.cloudfront.net/graphics/logo-light.png
IP
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type PNG image data, 68 x 12, 8-bit/color RGBA, non-interlaced
Hash 35ce74c31e3ef54462a234340af702d7
237486e74119f2e28f466d401c26fbc64d0a5cdb
8c34bc7bc1985e63394c3c2afff88cdcfc06e501320432dd23eaff83ea6754eb
GET /graphics/logo-light.png HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 1143
date: Thu, 05 Sep 2024 18:03:06 GMT
last-modified: Thu, 25 Jan 2024 18:19:40 GMT
etag: "35ce74c31e3ef54462a234340af702d7"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NnbO8XHu9hWXF3YjDcylihJJYJQNFslLVQ_wNp2yICYB8D-d6cYYVw==
age: 16443060
X-Firefox-Spdy: h2
GET www.ntiva.com/_hcms/forms/v2.js
200 OK 548 kB URL GET www.ntiva.com/_hcms/forms/v2.js
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
Size 548 kB (548381 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /_hcms/forms/v2.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 9208440219ee9312-CPH
cf-cache-status: HIT
access-control-allow-origin: *
age: 236
cache-control: s-maxage=600, max-age=300
etag: W/"4526e4dbbde538a420a67a58fde96e72"
last-modified: Tue, 11 Mar 2025 19:09:43 UTC
set-cookie: __cf_bm=zqPKW8TmHcg3wi2BtBrq_FmRhaNJpWbmjCMedXu5Q50-1742002437-1.0.1.1-MChUeABJPw4uQmKFrIw6YCXcESqPH9yH.VkeLVoH3JELjmzfO3ngLM5uXJwFW7Q_HVuGE_n15J.iTu4Q3qa6j5D2chzr0CGkzAeff9WlL7I; path=/; expires=Sat, 15-Mar-25 02:03:57 GMT; domain=.hsforms.net; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: accept-encoding
via: 1.1 736ad67f05a9a5a8fd5ed8cba30196f4.cloudfront.net (CloudFront)
cache-tag: staticjsapp-forms-embed-v2-web-prod,staticjsapp-prod
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=forms-embed/static-1.8092/bundles/project-v2.js&cfRay=91ed67e04123ecbe-WAW
x-amz-cf-id: 7fMge2dtd5Bqc_iNGeR2LfoXU4d6Pt91tU5Z312jfB8zocSqkVTJ2A==
x-amz-cf-pop: IAD12-P3
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-version-id: cUpbUa80eruTEx8Sr3C6n4PSP2iXgaEV
x-cache: Hit from cloudfront
x-content-type-options: nosniff
x-envoy-upstream-service-time: 6
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-554d564d77-cfjlc
x-evy-trace-virtual-host: all
x-hs-cache-status: MISS
x-hs-target-asset: forms-embed/static-1.8092/bundles/project-v2.js
x-hubspot-correlation-id: 2e9b32a9-d220-478d-bee0-a1fff208dd55
x-request-id: 2e9b32a9-d220-478d-bee0-a1fff208dd55
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YRoYzXwAmEZ%2FeBlWlQJ2HlDwdBtUX8oQq2Rp40N4vPh8wdnknU7ebhZ9zgAmrjbsPdDb9bhp%2BxBPzFFUCdEb8NmfPb%2FrSXKTtKHEZ3IQ3dN2KycAOvP57Yx5B7P4J88%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs/hsstatic/AsyncSupport/static-1.122/js/post_listing_asset.js
200 OK 3.3 kB URL GET www.ntiva.com/hs/hsstatic/AsyncSupport/static-1.122/js/post_listing_asset.js
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type JavaScript source, ASCII text, with very long lines (3433), with no line terminators
Hash 1334f9198653913fe5447c7d415bbb38
e8c2f6d1c7d598947ae3d6776f1e6fdf43a332bf
b0d22a8cedc3f011f496e0ab35f6daace22584cce5a0bb719e6aacfc3209d073
GET /hs/hsstatic/AsyncSupport/static-1.122/js/post_listing_asset.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/cheq-ppc-invalid-users
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441; _cq_duid=1.1742002442.vKqCNSj5XUxI2aZ7; _cq_suid=1.1742002442.Feq1i50o6EVlK9Gv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: application/javascript
cf-ray: 9208442bd8d59312-CPH
cf-cache-status: HIT
age: 64975
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"d95d7dafd49a1edc76a47120c287b579"
expires: Sun, 15 Mar 2026 01:34:04 GMT
last-modified: Fri, 17 Dec 2021 15:26:10 GMT
set-cookie: __cf_bm=hhh7aeqsOYO4hC.X.WIoI1SYgJrm5ENS2usJI.EbRcU-1742002444-1.0.1.1-Borb37Pn4MLwwAUMIpmAMhvelxv_p40mNbiks0U0PsY5qnaAyiqm3DNxNoMskQ98Vf6WnPdKzstn5LbNRbEfvJL0DMsMB894zhrJxpaUfbg; path=/; expires=Sat, 15-Mar-25 02:04:04 GMT; domain=.hubspotusercontent.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 5f5aa47bb337704a0ad6f14b5e9a076a.cloudfront.net (CloudFront)
x-amz-cf-id: o9hFC9e5qjUDcatWungQPtajSe-e-u6ENWYvwdeqSENEU5dKKOKDPg==
x-amz-cf-pop: ARN54-C1
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-version-id: nC1hzr07YsutChb9rCwKsMoiyxip8lR7
x-cache: RefreshHit from cloudfront
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vi%2BAZ0og52B725z%2BSIaZN4Az4ysqYHWRnQdmWx96OI1a%2BaFObeVyUT3Jqc4Q5X5H4egAXEF65H7dLWZvoR0EK7qkuTMDWDdSN11qaDFdu9k74tBzDrF4XA3UaMdr%2BRI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST region1.analytics.google.com/g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&ec_mode=m&_eu=EA&_s=4&uid=3ef305c1e8de6ca126ce20ad9b487ce0&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=scroll&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&ep.percent_scrolled=50&tfd=2311
204 No Content 0 B URL POST region1.analytics.google.com/g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&ec_mode=m&_eu=EA&_s=4&uid=3ef305c1e8de6ca126ce20ad9b487ce0&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=scroll&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&ep.percent_scrolled=50&tfd=2311
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&ec_mode=m&_eu=EA&_s=4&uid=3ef305c1e8de6ca126ce20ad9b487ce0&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=scroll&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&ep.percent_scrolled=50&tfd=2311 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 204 No Content
access-control-allow-origin: https://www.ntiva.com
date: Sat, 15 Mar 2025 01:34:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:137:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:137:0
report-to: {"group":"ascnsrsggc:137:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:137:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.ntiva.com/hs/hsstatic/content-cwv-embed/static-1.1293/embed.js
200 OK 14 kB URL GET www.ntiva.com/hs/hsstatic/content-cwv-embed/static-1.1293/embed.js
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type JavaScript source, ASCII text, with very long lines (13757), with no line terminators
Hash f667e53d5752ee2e5759f3dfaf20d330
2225156fa65a34892f721defea3eb480ebb32044
cb5224674e43d02db0037517f4aa29ba5ce9ddd0672e513cc7289714ba657522
GET /hs/hsstatic/content-cwv-embed/static-1.1293/embed.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/cheq-ppc-invalid-users
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441; _cq_duid=1.1742002442.vKqCNSj5XUxI2aZ7; _cq_suid=1.1742002442.Feq1i50o6EVlK9Gv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: application/javascript
cf-ray: 9208442bc8c99312-CPH
cf-cache-status: HIT
age: 2229387
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"f667e53d5752ee2e5759f3dfaf20d330"
expires: Sun, 15 Mar 2026 01:34:04 GMT
last-modified: Mon, 23 Sep 2024 19:59:06 GMT
set-cookie: __cf_bm=oz4tdf_zkhwBnl3xGtZrhsiHmP4katvawij_G7s1gho-1742002444-1.0.1.1-PEjBAgBO8rB9rDslH0GslDCztLniA0TsB7HZtPLPGwRrE_Ysmq2TC0o4KFhXHh6auhfXt3RW7KcU31_NMhROZvHoi88WcYG8a3u_MiFTyQc; path=/; expires=Sat, 15-Mar-25 02:04:04 GMT; domain=.hubspotusercontent.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: accept-encoding
via: 1.1 115d56d751589aa02dcc0096dd66b552.cloudfront.net (CloudFront)
x-amz-cf-id: kiP8GHZMeg4r-xHGwSinEz1MC6C7_ffAaWgFU9QQ0Xt-UP_kzmBPpg==
x-amz-cf-pop: ARN56-P2
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-version-id: AFGFBaAC1397GFbOapH2DRIkjQ_NaZzY
x-cache: Hit from cloudfront
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yfHHAf3z0BfcIMAJpHGPDE8OlBEErtoKZLhdsZsCj0dNKC8t%2FYiKYqkc6Nz0UKcpGSJgeWHzF6FoU2LHcOCjoLKyOyaTC%2BPpfA%2BlNpK5M0Xsyo8DsZVvMMC0hTl%2FB3I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs/hsstatic/jquery-libs/static-1.4/jquery/jquery-1.11.2.js
200 OK 96 kB URL GET www.ntiva.com/hs/hsstatic/jquery-libs/static-1.4/jquery/jquery-1.11.2.js
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type JavaScript source, ASCII text, with very long lines (32047)
Hash 5790ead7ad3ba27397aedfa3d263b867
8130544c215fe5d1ec081d83461bf4a711e74882
2ecd295d295bec062cedebe177e54b9d6b19fc0a841dc5c178c654c9ccff09c0
GET /hs/hsstatic/jquery-libs/static-1.4/jquery/jquery-1.11.2.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/cheq-ppc-invalid-users
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441; _cq_duid=1.1742002442.vKqCNSj5XUxI2aZ7; _cq_suid=1.1742002442.Feq1i50o6EVlK9Gv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: application/javascript
cf-ray: 9208442bf8ea9312-CPH
cf-cache-status: HIT
age: 28900
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"5790ead7ad3ba27397aedfa3d263b867"
expires: Sun, 15 Mar 2026 01:34:04 GMT
last-modified: Thu, 08 Jan 2015 18:08:00 GMT
set-cookie: __cf_bm=8Ab2axD1_KjMdYqqEGB5vFr21Ic6shSu.HOa2d1gVVU-1742002444-1.0.1.1-kP.ZCqzy14OuWgidx5GD297_mK9Y0Gr7zaCXbKHcctcnomrEQDGR_9aNrNkxfdfBlYHRFXd0DImlj2gdkuT35oZT3QHPvByjEroQ6qiMGJI; path=/; expires=Sat, 15-Mar-25 02:04:04 GMT; domain=.hubspotusercontent.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: accept-encoding
via: 1.1 d5d7b369f72f565a0dffcd2db50ec516.cloudfront.net (CloudFront)
x-amz-cf-id: IqqEa6QsiPtNuCCPcVzM39r-mgrJaeJzmzbp2V1tHWtC-xZo0jJ6Cw==
x-amz-cf-pop: ARN56-P2
x-amz-version-id: null
x-cache: Hit from cloudfront
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HOycRkPN4LRXtSwIlAhx0VamZeuLqMNxwiNmQaT37pm0mCLkOhULmEpLLeTdbtP7Zm8bF0FwxE%2BNA%2BNfUcCAwq1x4sIXiLeSYFKOBSSwTVL37aFk1vdistuHlJnv%2B2U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hubfs/IDEA-logo-gry.png
200 OK 2.5 kB URL GET www.ntiva.com/hubfs/IDEA-logo-gry.png
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash 742f5537ebdaa0949ad8a5d67717a79f
6fb19b22b1ffda38ba6c7242ec20003f241e4ef2
8c7a20a431c38cdca6b92f18374801baa489b7beb10808c50c996f53ea3f8470
GET /hubfs/IDEA-logo-gry.png HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 2450
cf-ray: 9208440e1dc89312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
content-disposition: inline; filename="IDEA-logo-gry.webp"
etag: "39b5d563db391e4a26e6ae7a8cf65f75"
last-modified: Thu, 21 Sep 2023 18:08:48 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 ef955f95d080740af1e658b6929731ce.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-135973706006,P-3012736,FLS-ALL
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=4159
edge-cache-tag: F-135973706006,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: T3wOXbAY9jvXuvJSXXH7HJMxCv6oDNqvfxxMaMeF-1svE10BgihDBg==
x-amz-cf-pop: ARN53-P1
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qVADGUTTi%2Bx5YFYPuVsHhZTzwIFL%2B7pykFhFb0NI5atn4ugdIRGlKU%2BWIi2frYoU3TrQqCLKkBcYbnbljNIpEiOCFsAKmoH9ivJPOJ2Jv%2FKsi8Y5s4F3wj0RMSEEjno%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hubfs/casel.webp?width=44&height=44&name=casel.webp
200 OK 826 B URL GET www.ntiva.com/hs-fs/hubfs/casel.webp?width=44&height=44&name=casel.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 44x44, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 99f8e4e871a5cadbb2e396e9553dd4d9
8c42097e6a0dab5a0ecff9d326b8d0ff2c158d1c
46eec9ca5e3d864175f468fd4c9abc936d23271dc8b371ca08e82326096f65b4
GET /hs-fs/hubfs/casel.webp?width=44&height=44&name=casel.webp HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 826
cf-ray: 9208440e3de99312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfn_sLWYWaa3O4ikIMNhydS7tv2wdjYEQdO9Cf9z0jDQ:99f8e4e871a5cadbb2e396e9553dd4d9"
last-modified: Wed, 05 Jul 2023 16:29:18 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 cc03ea6a31b592e93e84115778cdc494.cloudfront.net (CloudFront)
cache-tag: F-123505059708,P-3012736,FLS-ALL
cf-bgj: imgq:0,h2pri
cf-resized: internal=ok/h q=0 n=91+0 c=0+0 v=2025.3.1 l=826 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9Ji74gyq5Eu%2FLz%2BiwXJdLmRcgxpxjd7dJGDpko4BCzcKrneXYV3aPg5lAqrns3bWhZzQGjfU2L4tGgKA3A%2BLYZmA26J1VfyuTOtvXShX3eKtY%2BfzuZTCRXSis%2FAK%2BQs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET iptrack.io/iptrack.js
200 OK 1.4 kB IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerDigiCert Inc
Subject*.iptrack.io
Fingerprint9C:BE:66:EC:A6:C0:5F:92:FD:43:B5:28:37:25:1F:BA:7E:30:B9:0D
ValidityThu, 26 Sep 2024 00:00:00 GMT - Wed, 24 Sep 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (1527), with no line terminators
Hash 36317e2e09db1358e564b60fa0ee306e
e5db1659606bfaa389c8956bff4aa1a7995a32ed
c5c0f94cb9eed1d3e099fc4fbc12b876734849ab0389051054007ace3ea8481e
GET /iptrack.js HTTP/1.1
Host: iptrack.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 08 Feb 2018 07:18:46 GMT
accept-ranges: bytes
etag: "1d3a0ad0eaeca7a"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
strict-transport-security: max-age=2592000
x-powered-by: ASP.NET
date: Sat, 15 Mar 2025 01:34:00 GMT
X-Firefox-Spdy: h2
GET www.google.com/pagead/1p-user-list/941167555/?random=1742002441044&cv=11&fst=1742000400000&bg=ffffff&guid=ON&async=1>m=45je53d0v881685058z8810996057za200zb810996057&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.ntiva.com%2F&hn=www.googleadservices.com&frm=0&tiba=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&npa=0&pscdl=noapi&auid=1313079655.1742002439&fdr=QA&_tu=Agg&data=event%3Dgtag.config%3Ballow_google_signals%3Dtrue%3Bad_user_data%3Dgranted%3Bjourney%3D%3Bjourney_stage%3D&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzMarWyIVkid0kmrz-ZbIXvJLD40ShTBw&random=3260939884&rmt_tld=0&ipr=y
200 OK 42 B URL GET www.google.com/pagead/1p-user-list/941167555/?random=1742002441044&cv=11&fst=1742000400000&bg=ffffff&guid=ON&async=1>m=45je53d0v881685058z8810996057za200zb810996057&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.ntiva.com%2F&hn=www.googleadservices.com&frm=0&tiba=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&npa=0&pscdl=noapi&auid=1313079655.1742002439&fdr=QA&_tu=Agg&data=event%3Dgtag.config%3Ballow_google_signals%3Dtrue%3Bad_user_data%3Dgranted%3Bjourney%3D%3Bjourney_stage%3D&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzMarWyIVkid0kmrz-ZbIXvJLD40ShTBw&random=3260939884&rmt_tld=0&ipr=y
IP
Certificate IssuerGoogle Trust Services
Subject*.google.com
FingerprintA6:CB:44:7F:3D:99:4C:A4:BB:26:8F:89:91:31:52:FE:74:82:C2:1E
ValidityWed, 26 Feb 2025 15:32:55 GMT - Wed, 21 May 2025 15:32:54 GMT
File type GIF image data, version 89a, 1 x 1
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/941167555/?random=1742002441044&cv=11&fst=1742000400000&bg=ffffff&guid=ON&async=1>m=45je53d0v881685058z8810996057za200zb810996057&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.ntiva.com%2F&hn=www.googleadservices.com&frm=0&tiba=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&npa=0&pscdl=noapi&auid=1313079655.1742002439&fdr=QA&_tu=Agg&data=event%3Dgtag.config%3Ballow_google_signals%3Dtrue%3Bad_user_data%3Dgranted%3Bjourney%3D%3Bjourney_stage%3D&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzMarWyIVkid0kmrz-ZbIXvJLD40ShTBw&random=3260939884&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 15 Mar 2025 01:34:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.googletagmanager.com/gtag/js?id=AW-941167555
200 OK 284 kB URL GET www.googletagmanager.com/gtag/js?id=AW-941167555
IP
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (5268)
Size 284 kB (284504 bytes)
Hash 15ed04e8f0240192d12187e6d6c96219
ecc126c02f82bf660da814ab80950e2c26e65610
0a80cb2e0f31f157c81dc2fc9197274d17609f99f0c375631b4c1b48d21c052d
GET /gtag/js?id=AW-941167555 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Mar 2025 01:34:03 GMT
expires: Sat, 15 Mar 2025 01:34:03 GMT
cache-control: private, max-age=900
last-modified: Sat, 15 Mar 2025 00:20:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 101131
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.googletagmanager.com/gtag/js?id=AW-941167555&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719
200 OK 283 kB URL GET www.googletagmanager.com/gtag/js?id=AW-941167555&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719
IP
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (5268)
Size 283 kB (282984 bytes)
Hash 9f593009ca085fd7ad2c1f99c7e8e3cd
0e7f0c46fb303b5e7bfc5e35493f292f1a55fea9
e694628e0fb897478d795ef1a2c586b2d68aca10296efada4f384eeff9badee8
GET /gtag/js?id=AW-941167555&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Mar 2025 01:34:03 GMT
expires: Sat, 15 Mar 2025 01:34:03 GMT
cache-control: private, max-age=900
last-modified: Sat, 15 Mar 2025 00:20:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 100523
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.6.0/slick.min.js
200 OK 42 kB URL GET cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.6.0/slick.min.js
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectcdnjs.cloudflare.com
Fingerprint00:0E:39:59:53:CF:68:07:90:75:EB:68:26:B9:04:22:44:7D:9A:32
ValidityFri, 24 Jan 2025 09:16:22 GMT - Thu, 24 Apr 2025 10:16:21 GMT
File type JavaScript source, ASCII text, with very long lines (32076)
Hash b53bdfc29e18f4d493d775a8023fbdc8
e9fcbcc4fa70cba093b81d982a1b78509414cef7
e02af7df9a190d88380e2dcec2050ecaa493ae2d23526dbeec67f6907df3a752
GET /ajax/libs/slick-carousel/1.6.0/slick.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: application/javascript; charset=utf-8
content-length: 9044
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64942e1d-2354"
last-modified: Thu, 22 Jun 2023 11:18:53 GMT
cf-cdnjs-via: cfworker/r2
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 802403
expires: Thu, 05 Mar 2026 01:34:04 GMT
accept-ranges: bytes
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wGyCNSwwISuFG9tJE0QYiR9ziBYuqVhvEF5RebiQqekNkDCIW%2B19AuMsD6OeONvzF8uHbNJlF3lx%2Bpwrw2UEh3Kv7tBMSHpE%2FyRv0i13pdeDKJSDBkSQeWYHNNgqnYxQSS4Hs3vA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 9208442c5a647127-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST region1.analytics.google.com/g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&ec_mode=m&_eu=EAAACA&_s=3&uid=3ef305c1e8de6ca126ce20ad9b487ce0&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=scroll&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&ep.percent_scrolled=25&tfd=2225
204 No Content 0 B URL POST region1.analytics.google.com/g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&ec_mode=m&_eu=EAAACA&_s=3&uid=3ef305c1e8de6ca126ce20ad9b487ce0&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=scroll&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&ep.percent_scrolled=25&tfd=2225
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&ec_mode=m&_eu=EAAACA&_s=3&uid=3ef305c1e8de6ca126ce20ad9b487ce0&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=scroll&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&ep.percent_scrolled=25&tfd=2225 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 204 No Content
access-control-allow-origin: https://www.ntiva.com
date: Sat, 15 Mar 2025 01:34:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:137:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:137:0
report-to: {"group":"ascnsrsggc:137:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:137:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.googletagmanager.com/gtag/js?id=AW-941167555
200 OK 283 kB URL GET www.googletagmanager.com/gtag/js?id=AW-941167555
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (5268)
Size 283 kB (282960 bytes)
Hash 5e2ae60d902658363438fca3f48fca09
a792eba7a3fa382565a22859b83430ad75dc079e
64139ee50a94d7cdcb4bb726bd0f8df6828697f701faf19d7af0452035d451dd
GET /gtag/js?id=AW-941167555 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Mar 2025 01:34:06 GMT
expires: Sat, 15 Mar 2025 01:34:06 GMT
cache-control: private, max-age=900
last-modified: Sat, 15 Mar 2025 00:20:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 100504
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.ntiva.com/hs-fs/hubfs/logo-nsc.webp?width=100&height=25&name=logo-nsc.webp
200 OK 812 B URL GET www.ntiva.com/hs-fs/hubfs/logo-nsc.webp?width=100&height=25&name=logo-nsc.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 100x25, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 6308904b3c327facce4d92438367f531
54ddd5b755db40a36888f6abbe44c61dc8c4a829
f3bbe2cdbb205a1e716eeb8d16533b13999de500e244564b8f70e1860383fb60
GET /hs-fs/hubfs/logo-nsc.webp?width=100&height=25&name=logo-nsc.webp HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 812
cf-ray: 9208440e1dc99312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cf_OFuYXib-44i-YofAaxMqdplnFzUN7D-86p4VxiUDQ:6308904b3c327facce4d92438367f531"
last-modified: Wed, 05 Jul 2023 16:27:24 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 444bee00bd8f759506e806be3c13fa6c.cloudfront.net (CloudFront)
cache-tag: F-123502390635,P-3012736,FLS-ALL
cf-bgj: imgq:0,h2pri
cf-resized: internal=ok/h q=0 n=42+0 c=0+0 v=2025.3.1 l=812 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LCVsQ7%2Fay6BPuXLhmPmysFTHtDfRjK2cUgVrBzP%2F%2FNVmOuTkmexb9zZIZ5MQxm0wthvMx56oiP88krmsUUkwGYuL%2Bo7nw%2BlA6BDGJZ6K7n%2FCvoOOtqzaPBlyu1QIZHI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET settings.luckyorange.net/?u=https%3A%2F%2Fwww.ntiva.com%2F&s=330729
200 OK 1.6 kB URL GET settings.luckyorange.net/?u=https%3A%2F%2Fwww.ntiva.com%2F&s=330729
IP
Certificate IssuerGoogle Trust Services
Subjectluckyorange.net
Fingerprint54:6A:C1:94:0E:19:0A:88:8A:56:FB:7C:00:2F:5B:F1:5C:0E:FA:61
ValiditySun, 19 Jan 2025 05:25:59 GMT - Sat, 19 Apr 2025 06:25:52 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1847), with no line terminators
Hash 2d13aee940bce8b5c75b7fa5d7426da7
a633a93a1178445ce9e36dc5abdafb21b9988996
6b8a4a76e5badc6219fa8f2f4ab425547d376d253e93133ee226112ed418b563
GET /?u=https%3A%2F%2Fwww.ntiva.com%2F&s=330729 HTTP/1.1
Host: settings.luckyorange.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: application/json
content-length: 824
access-control-allow-credentials: true
access-control-allow-headers: Authorization,Content-Type,Accept,Origin,User-Agent,DNT,Cache-Control,Keep-Alive,X-Requested-With,If-Modified-Since
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: https://www.ntiva.com
content-encoding: gzip
vary: Accept-Encoding
x-frame-options: SAMEORIGIN
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Jb9Gp1PN6%2Bgt6Wq7XXMIfhVL0gSP33cOs%2FnAdiJ4Ubv8Vpu189XBTSvrSoOWqHXsHrqj5pzNij9v81TSqVp62X3JjywIMM4q%2FGvn8FcCK0FIBGJzwjEvLUIbasskEk3daxeuxgEiL0%2FuYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 92084410bff4568d-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=542&min_rtt=411&rtt_var=235&sent=7&recv=11&lost=0&retrans=0&sent_bytes=3208&recv_bytes=1118&delivery_rate=6928229&cwnd=254&unsent_bytes=0&cid=8d923aebcaa8ba93&ts=398&x=0"
X-Firefox-Spdy: h2
POST www.google.com/ccm/collect?en=user_id_update&dr=www.ntiva.com&dl=https%3A%2F%2Fwww.ntiva.com%2F&scrsrc=www.googletagmanager.com&frm=1&rnd=1630717348.1742002445&dt=User%20Detection&auid=1313079655.1742002439&navt=n&npa=0&ga_uid=G-JKTPCKN83D.3ef305c1e8de6ca126ce20ad9b487ce0>m=45je53d0v881685058z8810996057za200zb810996057&gcs=G1--&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&tft=1742002445831&tfd=2199&apve=1
200 OK 0 B URL POST www.google.com/ccm/collect?en=user_id_update&dr=www.ntiva.com&dl=https%3A%2F%2Fwww.ntiva.com%2F&scrsrc=www.googletagmanager.com&frm=1&rnd=1630717348.1742002445&dt=User%20Detection&auid=1313079655.1742002439&navt=n&npa=0&ga_uid=G-JKTPCKN83D.3ef305c1e8de6ca126ce20ad9b487ce0>m=45je53d0v881685058z8810996057za200zb810996057&gcs=G1--&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&tft=1742002445831&tfd=2199&apve=1
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subject*.google.com
FingerprintA6:CB:44:7F:3D:99:4C:A4:BB:26:8F:89:91:31:52:FE:74:82:C2:1E
ValidityWed, 26 Feb 2025 15:32:55 GMT - Wed, 21 May 2025 15:32:54 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /ccm/collect?en=user_id_update&dr=www.ntiva.com&dl=https%3A%2F%2Fwww.ntiva.com%2F&scrsrc=www.googletagmanager.com&frm=1&rnd=1630717348.1742002445&dt=User%20Detection&auid=1313079655.1742002439&navt=n&npa=0&ga_uid=G-JKTPCKN83D.3ef305c1e8de6ca126ce20ad9b487ce0>m=45je53d0v881685058z8810996057za200zb810996057&gcs=G1--&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&tft=1742002445831&tfd=2199&apve=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/3 200 OK
pragma: no-cache
date: Sat, 15 Mar 2025 01:34:06 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/plain
expires: Fri, 01 Jan 1990 00:00:00 GMT
vary: Origin, X-Origin, Referer
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.ntiva.com
access-control-expose-headers: date,vary,vary,vary,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.ntiva.com/hubfs/box-strategic.webp
200 OK 20 kB URL GET www.ntiva.com/hubfs/box-strategic.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1600x816, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 01339a6bcd9c286ce962ba79d5ee8714
b0e2e610396f89e44ff64830af3b8596c3e7f72c
cfd169d851b8e6f462ec22daa6587132f055369b84415f2899828095296928d7
GET /hubfs/box-strategic.webp HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109503576739/1688510787809/module_109503576739_home-strategic.min.css
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:58 GMT
content-type: image/webp
content-length: 19622
cf-ray: 92084408cc319312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "01339a6bcd9c286ce962ba79d5ee8714"
last-modified: Tue, 04 Jul 2023 22:45:55 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 e2b910126831841c6bf3d6563742ab92.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-123414842538,P-3012736,FLS-ALL
edge-cache-tag: F-123414842538,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: fCHzldKXUlrjm7ubpUFyQJaIviOcQSXrDLSbFiBWz2erlARZFN_eTA==
x-amz-cf-pop: ARN53-P1
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HpCuh7JiQ%2FGc6bAQxHAWS4EUz%2FXUmyhAHv4d8fnVGW852SyOT8kC8yBwmdrvm4Zdz7Q8ATFFZA87dMZ6JZff%2BiKtHsF8Cxqvn%2B2IPPGOMx6QRWi6A71tFQPD%2FK08eQs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET js.hs-banner.com/v2/3012736/banner.js
200 OK 86 kB URL GET js.hs-banner.com/v2/3012736/banner.js
IP
Certificate IssuerGoogle Trust Services
Subjecths-banner.com
Fingerprint1B:79:5D:2A:63:36:C1:AC:79:67:E5:5F:EB:17:F4:BA:29:4D:0F:74
ValidityMon, 20 Jan 2025 21:28:35 GMT - Sun, 20 Apr 2025 22:28:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/3012736/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:34:00 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: yzAHWuo9pRHtzWVP7F/6fjtuytZz0ZP4DVQ1GqmmBOLn+OrGP7/1AyJL+SCLfy3Jr6dr8plEdkg=
x-amz-request-id: WN7AC36GXPGTN8CJ
last-modified: Wed, 05 Feb 2025 17:24:11 GMT
etag: W/"c6da074f886c02127e85a4233b9685e4"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: kx3IKsESPEV5EQjHuqqs1Rep6bdJD1bj
access-control-allow-origin: https://www.ntiva.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Sat, 15 Mar 2025 01:38:59 GMT
content-encoding: gzip
x-envoy-upstream-service-time: 77
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: b95932db-bb4c-4b47-86c3-ecbb48682504
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-fbbff5ddb-dfg6t
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: b95932db-bb4c-4b47-86c3-ecbb48682504
cf-cache-status: REVALIDATED
set-cookie: __cf_bm=NcmE6tP2no4JxLq34m7_MAnZgUgxKX7RU.MKDPKxAXc-1742002440-1.0.1.1-q9nmYY7FxzwyFVZQqKsfc_7Wn99BnkeXGuLgT0tTMRTpIRky6Kolvqf1ZKVcUeWgtzqoLWl3A.k2ZAQWG1zUDKmMg.ovH3ao3jeVFX5BDnA; path=/; expires=Sat, 15-Mar-25 02:04:00 GMT; domain=.hs-banner.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 920844102bad5694-OSL
X-Firefox-Spdy: h2
GET js.hubspot.com/web-interactives-embed.js
200 OK 88 kB URL GET js.hubspot.com/web-interactives-embed.js
IP
Certificate IssuerGoogle Trust Services
Subjecthubspot.com
FingerprintF0:21:55:D0:0F:48:23:84:BF:11:EB:E3:D3:0C:47:2A:19:4F:7D:C9
ValidityWed, 29 Jan 2025 19:30:43 GMT - Tue, 29 Apr 2025 20:30:39 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Hash b0f8fb7a65df8778a7acbe30360b1695
b8b445de9e75fe1ad9587b7976bfd6c5e47ade76
8434fa44230c1402a5cdde53b709a3666634b38f7ed8442536f5e525be01f3f0
GET /web-interactives-embed.js HTTP/1.1
Host: js.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Tue, 11 Mar 2025 13:22:20 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: 8uvIbF6jnN9U83YYSo1S3Pe5xv41cqi5
content-encoding: gzip
etag: W/"b0f8fb7a65df8778a7acbe30360b1695"
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method,accept-encoding
x-cache: Hit from cloudfront
via: 1.1 c13d71f8919c23db6bbd1c08a4dfb350.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: VtjorPL0MKG-IwIKf5pzv5A0zqJAHGPV1lqR6ghPaONZGWPKurjgvw==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=web-interactives-embed/static-2.2711/bundles/project.js&cfRay=920844105ad60afa-WAW
cache-control: max-age=600
x-hs-target-asset: web-interactives-embed/static-2.2711/bundles/project.js
x-content-type-options: nosniff
x-hs-cache-status: MISS
x-envoy-upstream-service-time: 9
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 07d22c4f-4b31-4b65-ab42-fec7fbba6a00
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-554d564d77-jhzc4
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 07d22c4f-4b31-4b65-ab42-fec7fbba6a00
cache-tag: staticjsapp-web-interactives-embed-web-prod,staticjsapp-prod
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kg%2Fc%2BEenCrwVQmZoyhP%2Fbqyl%2BibZ0P2B%2BYV1mnaa2HhpbORmyYUKVVcXFWO2LGhnSxUuaqUnOxwbJVguQmjKp439Z6NeMkJpp1U0%2BzxOkXZVeWruTv8ydECLQuSyNsbc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
set-cookie: __cf_bm=xmBztSS7gaRE08F7VpMCqhceYm1xYoaHHKSh98WYRvo-1742002439-1.0.1.1-zUXXb.yC69DLIwYC_Py8PHPiorvIFSLOmKC3JTMJYeyjU9R5.oBO6jT7gqXs0_MoukSaJzh5A538utT_fPTZm9JsmYSoEe_ATgGqME5u6zc; path=/; expires=Sat, 15-Mar-25 02:03:59 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
_cfuvid=fbo0W.2NBHUF8poeUnanr5Qe0DIR4RfZ7O84Rng3TiE-1742002439899-0.0.1.1-604800000; path=/; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 920844105ad60afa-OSL
X-Firefox-Spdy: h2
GET www.ntiva.com/hs-fs/hubfs/blistex-1.webp?width=117&height=42&name=blistex-1.webp
200 OK 892 B URL GET www.ntiva.com/hs-fs/hubfs/blistex-1.webp?width=117&height=42&name=blistex-1.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 117x42, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 534102835aef3fb20b143b892cadfddb
af94c7d273b4e36bbcf8748bebb0466adbeb8de5
11c9752efcf15beea98a6e44e695cbc36827cd3d6a93ef9cf63fa46674c83f42
GET /hs-fs/hubfs/blistex-1.webp?width=117&height=42&name=blistex-1.webp HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 892
cf-ray: 9208440e1dcb9312-CPH
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfN-wqKcLLC1_nqq8KObc9Wvhwn6SDWTxd5WASxK8BDQ:3d70e26a511131297325bbda7a0b2d4c"
last-modified: Wed, 05 Jul 2023 16:28:39 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 c2eb9b44aa5080bf631af7c8ed97f7de.cloudfront.net (CloudFront)
cache-tag: F-123506485656,P-3012736,FLS-ALL
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=571+2 c=0+2 v=2025.3.1 l=892 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Gjd2iBh1Q4aX2FQ%2BmSDfkbYQFQvBjISffWh4xULAVqbHCw9jvbSl%2Fm%2FqySVdGxgt425ZoQx9ZFPC48fuzWL2EQECXI4qKNT3yyMPbZJ0%2Byd0Pj0OwXxsmOEIYLHuNik%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hubfs/GCFD-gray2.png?width=123&height=55&name=GCFD-gray2.png
200 OK 5.4 kB URL GET www.ntiva.com/hs-fs/hubfs/GCFD-gray2.png?width=123&height=55&name=GCFD-gray2.png
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash 88db498000b7388db7acb26a429c62c0
5dbd64f56ffff87ebf17b103fbb4a4659a0fe242
f4f70dfba69014624a73ce9c7e45d1d80854356b4050a6ceb2ba856ed21009fe
GET /hs-fs/hubfs/GCFD-gray2.png?width=123&height=55&name=GCFD-gray2.png HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 5434
cf-ray: 9208440e3ded9312-CPH
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfCwYia6o8tq3wHh1h5FA7HD1rn_WjkBcY7VEummQIDQ:bfe9c4296d36d996a36206ecdd578c24"
last-modified: Thu, 21 Sep 2023 18:39:27 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 f8f6e32ae3e5c2420050bcd1a2ee6090.cloudfront.net (CloudFront)
cache-tag: F-135978578313,P-3012736,FLS-ALL
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=479+4 c=0+3 v=2025.3.1 l=5434 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JkvMwGgq9fD1W07at38uG9Us%2FDS1IOy54BNNT7uOpcUmeuxywL8dw5%2BMxlYr9fyt0YxEsS0VwDUXNbLChnuCkMRUlSWYZZoudSkwONPE%2Fbj%2BBhxWlomNZdGauzfYLic%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET googleads.g.doubleclick.net/pagead/viewthroughconversion/941167555/?random=1742002441044&cv=11&fst=1742002441044&bg=ffffff&guid=ON&async=1>m=45je53d0v881685058z8810996057za200zb810996057&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.ntiva.com%2F&hn=www.googleadservices.com&frm=0&tiba=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&npa=0&pscdl=noapi&auid=1313079655.1742002439&fdr=QA&_tu=Agg&data=event%3Dgtag.config%3Ballow_google_signals%3Dtrue%3Bad_user_data%3Dgranted%3Bjourney%3D%3Bjourney_stage%3D&rfmt=3&fmt=4
200 OK 4.8 kB URL GET googleads.g.doubleclick.net/pagead/viewthroughconversion/941167555/?random=1742002441044&cv=11&fst=1742002441044&bg=ffffff&guid=ON&async=1>m=45je53d0v881685058z8810996057za200zb810996057&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.ntiva.com%2F&hn=www.googleadservices.com&frm=0&tiba=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&npa=0&pscdl=noapi&auid=1313079655.1742002439&fdr=QA&_tu=Agg&data=event%3Dgtag.config%3Ballow_google_signals%3Dtrue%3Bad_user_data%3Dgranted%3Bjourney%3D%3Bjourney_stage%3D&rfmt=3&fmt=4
IP
Certificate IssuerGoogle Trust Services
Subject*.g.doubleclick.net
FingerprintAA:7E:43:94:65:8C:82:E3:08:A8:1D:79:38:AF:94:DE:86:A0:FA:B1
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (4994), with no line terminators
Hash f898221ed52fe5312578789636b241eb
f350f5b09f1b492a91783cb44e8ad85d3d6eea11
0e130e1d26a3b9d06c2f63894c73478205a7bb3971d89c986c201cfa6279772b
GET /pagead/viewthroughconversion/941167555/?random=1742002441044&cv=11&fst=1742002441044&bg=ffffff&guid=ON&async=1>m=45je53d0v881685058z8810996057za200zb810996057&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.ntiva.com%2F&hn=www.googleadservices.com&frm=0&tiba=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&npa=0&pscdl=noapi&auid=1313079655.1742002439&fdr=QA&_tu=Agg&data=event%3Dgtag.config%3Ballow_google_signals%3Dtrue%3Bad_user_data%3Dgranted%3Bjourney%3D%3Bjourney_stage%3D&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 15 Mar 2025 01:34:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1986
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 15-Mar-2025 01:49:01 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.ntiva.com/_hcms/postlisting?blogId=4958144255&maxLinks=5&listingType=recent&orderByViews=false&hs-expires=1773360000&hs-version=2&hs-signature=AJ2IBuEOQpf7-cOKSMiSSI28JHCrPYW6eg¤tUrl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&referrer=https%3A%2F%2Fwww.ntiva.com%2F
200 OK 5.9 kB URL GET www.ntiva.com/_hcms/postlisting?blogId=4958144255&maxLinks=5&listingType=recent&orderByViews=false&hs-expires=1773360000&hs-version=2&hs-signature=AJ2IBuEOQpf7-cOKSMiSSI28JHCrPYW6eg¤tUrl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&referrer=https%3A%2F%2Fwww.ntiva.com%2F
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type Unicode text, UTF-8 text, with very long lines (6409), with no line terminators
Hash 3947a43a7870b13ac4a47bad7e268d8c
c59f52d93ed7175318f40bfd2c0268e01e97c815
53d48fbab35a2ff7ce8735975798b807212518c7d10f71dd7d50958630882f30
GET /_hcms/postlisting?blogId=4958144255&maxLinks=5&listingType=recent&orderByViews=false&hs-expires=1773360000&hs-version=2&hs-signature=AJ2IBuEOQpf7-cOKSMiSSI28JHCrPYW6eg¤tUrl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&referrer=https%3A%2F%2Fwww.ntiva.com%2F HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/cheq-ppc-invalid-users
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441; _cq_duid=1.1742002442.vKqCNSj5XUxI2aZ7; _cq_suid=1.1742002442.Feq1i50o6EVlK9Gv
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:05 GMT
content-type: application/json;charset=utf-8
content-length: 1685
cf-ray: 92084430dac29312-CPH
cf-cache-status: HIT
accept-ranges: bytes
cache-control: s-maxage=60,max-age=5
content-encoding: gzip
last-modified: Sat, 15 Mar 2025 01:33:53 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
access-control-allow-credentials: false
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-envoy-upstream-service-time: 24
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-30-39-td/envoy-proxy-67fbb5b9bb-jz4rr
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 01060f7f-a0d0-4810-a63f-083a90abb23c
x-request-id: 01060f7f-a0d0-4810-a63f-083a90abb23c
x-robots-tag: none
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BBmFa7TDtSVzdqoAud24IwZvzCQTjDJXW8yJXGZVy7IOVCp2UJh%2BPoeW6LferSZa2qyF%2FtEhXLnDSAMIjPSNuCyCEv%2BUU4wC%2BrH5%2BurwVK2KbhjEURv%2FBjggmXkwg2A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hubfs/IIG_Logo-gray2.png?width=106&height=57&name=IIG_Logo-gray2.png
200 OK 2.0 kB URL GET www.ntiva.com/hs-fs/hubfs/IIG_Logo-gray2.png?width=106&height=57&name=IIG_Logo-gray2.png
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash e2c78e2d6cfd43fdc04a8556e9ef5709
367ed0086e114bffb26313e29269d24d1054a656
3a47ad13e8023b074eca29167b32a94f1c1e5f7e62aa42e605c8a00dd0d267b3
GET /hs-fs/hubfs/IIG_Logo-gray2.png?width=106&height=57&name=IIG_Logo-gray2.png HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 2048
cf-ray: 9208440e3def9312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cf4H__6WmOfNVyTxQq6U423oAU_s7KMUBD89FwIABjDQ:abed638f491df294632fa5a9638de7b0"
last-modified: Thu, 21 Sep 2023 18:37:09 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 3ed36d9549564152ef96812502a86608.cloudfront.net (CloudFront)
cache-tag: F-135978578200,P-3012736,FLS-ALL
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=547+2 c=0+2 v=2025.3.0 l=2048 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o5%2BcZedD6sDWhIsaS0p0CizRxNUwP6jBL2RNEqwupbIhIDzyUi7dc6NJ0cpxV1uoKg9o7TR4nxf94JYtv94llbD%2Bm7GNqMHmrU9AKC8J2ABAdmcyT1fx9R5%2BiEA6abc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET d10lpsik1i8c69.cloudfront.net/js/clickstream.js?v=e5a2acc
200 OK 294 kB URL GET d10lpsik1i8c69.cloudfront.net/js/clickstream.js?v=e5a2acc
IP
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
Size 294 kB (293866 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /js/clickstream.js?v=e5a2acc HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 01 Nov 2024 02:30:24 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Thu, 25 Jan 2024 18:19:40 GMT
etag: W/"ba41e1e15fa64ba31fd66b66e19eb16f"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: T6p3QAi0j2TauuXL5I6lAn3FVHep_EvXQhYssqjBruWDZSZpBxzNAA==
age: 11574217
X-Firefox-Spdy: h2
GET www.google.no/pagead/1p-user-list/941167555/?random=1742002441044&cv=11&fst=1742000400000&bg=ffffff&guid=ON&async=1>m=45je53d0v881685058z8810996057za200zb810996057&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.ntiva.com%2F&hn=www.googleadservices.com&frm=0&tiba=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&npa=0&pscdl=noapi&auid=1313079655.1742002439&fdr=QA&_tu=Agg&data=event%3Dgtag.config%3Ballow_google_signals%3Dtrue%3Bad_user_data%3Dgranted%3Bjourney%3D%3Bjourney_stage%3D&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzMarWyIVkid0kmrz-ZbIXvJLD40ShTBw&random=3260939884&rmt_tld=1&ipr=y
200 OK 42 B URL GET www.google.no/pagead/1p-user-list/941167555/?random=1742002441044&cv=11&fst=1742000400000&bg=ffffff&guid=ON&async=1>m=45je53d0v881685058z8810996057za200zb810996057&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.ntiva.com%2F&hn=www.googleadservices.com&frm=0&tiba=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&npa=0&pscdl=noapi&auid=1313079655.1742002439&fdr=QA&_tu=Agg&data=event%3Dgtag.config%3Ballow_google_signals%3Dtrue%3Bad_user_data%3Dgranted%3Bjourney%3D%3Bjourney_stage%3D&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzMarWyIVkid0kmrz-ZbIXvJLD40ShTBw&random=3260939884&rmt_tld=1&ipr=y
IP
Certificate IssuerGoogle Trust Services
Subject*.google.no
Fingerprint26:B7:26:CB:C6:A9:06:E9:C0:85:18:1A:20:54:87:E3:8B:35:EC:7C
ValidityWed, 26 Feb 2025 15:35:45 GMT - Wed, 21 May 2025 15:35:44 GMT
File type GIF image data, version 89a, 1 x 1
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/941167555/?random=1742002441044&cv=11&fst=1742000400000&bg=ffffff&guid=ON&async=1>m=45je53d0v881685058z8810996057za200zb810996057&gcd=13l3l3R2l6l1&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&u_w=1280&u_h=1024&url=https%3A%2F%2Fwww.ntiva.com%2F&hn=www.googleadservices.com&frm=0&tiba=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&npa=0&pscdl=noapi&auid=1313079655.1742002439&fdr=QA&_tu=Agg&data=event%3Dgtag.config%3Ballow_google_signals%3Dtrue%3Bad_user_data%3Dgranted%3Bjourney%3D%3Bjourney_stage%3D&rfmt=3&fmt=3&is_vtc=1&cid=CAQSGwCjtLzMarWyIVkid0kmrz-ZbIXvJLD40ShTBw&random=3260939884&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 15 Mar 2025 01:34:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET js.hsadspixel.net/fb.js
200 OK 5.8 kB IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjecthsadspixel.net
Fingerprint2C:EA:F6:D9:6C:07:51:E5:C1:E3:3E:35:47:59:19:FC:D3:18:E8:E4
ValidityWed, 05 Feb 2025 04:44:41 GMT - Tue, 06 May 2025 05:44:30 GMT
File type ASCII text, with very long lines (5973), with no line terminators
Hash 46013b9abc1f9a1832d20b9600decdef
f17dfbe85a72826bfe237695444614f3fd1dfaad
a401a4229ba55b545d84423807bb5fdc4beb6987a38a13186a7dad6394f4fc5d
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Cookie: __cf_bm=urFz_LSXHlNKaZaGcSYynP9G_cKjflQZm.UdyIxPH.k-1742002439-1.0.1.1-X12dbSpkq5hVAED61y5w_Ag9tpagXh__R4O4IukOHqPk6OTHqXspIg50zLkCqn_0A5.Cs0ngobqPQZC_AFWdn2O6.fHeXD4jWxi1jganL_I
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Wed, 12 Mar 2025 18:00:54 UTC
content-encoding: gzip
x-amz-server-side-encryption: AES256
x-amz-version-id: k9ToAKpUe5jDnBwJ3xJNnlk00dckfDOJ
etag: W/"5715fbaa53f8f540343fbaf8d0844240"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 9d2dee9b44718f249b789987d2cbe62c.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: CzLtQW96eznNCR_yovak13mCw8K816igPOdcFdSHyFocsWkcHdth8g==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=adsscriptloaderstatic/static-1.1548/bundles/pixels-release.js&cfRay=91f54071bcc9569c-WAW
cache-control: max-age=600
x-hs-target-asset: adsscriptloaderstatic/static-1.1548/bundles/pixels-release.js
x-content-type-options: nosniff
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 902dfbe5-9f9a-470a-a8f0-2025fcc16319
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-554d564d77-cm7l7
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 902dfbe5-9f9a-470a-a8f0-2025fcc16319
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 415
server: cloudflare
cf-ray: 920844306a13b515-OSL
X-Firefox-Spdy: h2
POST obs.segreencolumn.com/mon
200 OK 0 B URL POST obs.segreencolumn.com/mon
IP
Certificate IssuerZeroSSL
Subject*.segreencolumn.com
Fingerprint3B:63:25:99:FB:62:85:51:48:57:1D:7D:F3:41:B8:7D:67:82:CB:D0
ValidityFri, 07 Feb 2025 00:00:00 GMT - Thu, 08 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.segreencolumn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1731
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Cookie: cg_uuid=539d407ac997a330f713580dffcf0ae8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.ntiva.com
content-type: application/json
date: Sat, 15 Mar 2025 01:34:06 GMT
content-length: 0
X-Firefox-Spdy: h2
GET cdn2.hubspot.net/hub/3012736/hub_generated/template_assets/114245296809/1683211976776/ntiva-2023/js/vendor/owlcarousel.min.js
200 OK 44 kB URL GET cdn2.hubspot.net/hub/3012736/hub_generated/template_assets/114245296809/1683211976776/ntiva-2023/js/vendor/owlcarousel.min.js
IP
Certificate IssuerGoogle Trust Services
Subjecthubspot.net
FingerprintB4:C5:2D:3A:69:E7:24:D6:52:14:12:86:EF:7E:06:BB:D3:96:1A:40
ValiditySun, 02 Feb 2025 14:33:09 GMT - Sat, 03 May 2025 15:32:58 GMT
File type JavaScript source, ASCII text, with very long lines (44307)
Hash fc2683825590e309b6d738ccde027123
cf1b71e0571ffc1ac4f2794910ccc35c9cd0ca71
837e5a98a7c5262002fd262f959daa38e2f913da3c3d0c416b9df6e33bd7fc7e
GET /hub/3012736/hub_generated/template_assets/114245296809/1683211976776/ntiva-2023/js/vendor/owlcarousel.min.js HTTP/1.1
Host: cdn2.hubspot.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 920844107ce4b50f-OSL
cf-cache-status: HIT
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: W/"fc2683825590e309b6d738ccde027123"
last-modified: Thu, 04 May 2023 14:52:58 GMT
vary: Accept-Encoding
access-control-allow-methods: GET
timing-allow-origin: cdn2.hubspot.net
x-amz-cf-pop: IAD89-C1
x-amz-meta-created-unix-time-millis: 1683211977255
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-envoy-upstream-service-time: 177
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-cdn2-td/envoy-proxy-64d59778d6-f6gc6
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: 4f88f0c0-7668-4cf1-8c6e-df16ec75472a
x-request-id: 4f88f0c0-7668-4cf1-8c6e-df16ec75472a
set-cookie: __cf_bm=9BC3RptcGKhlfU4Gx0OxGUZW8GQyKx.m2USWqJVNx0g-1742002439-1.0.1.1-BEOI0c_gyXoFO1wlsjvW9qgpk.jbv88mjRS6x5kKZt95zWYBg2dIcHMs3Djb3IDDCB24ga6aS0oEtMWKNGISZBaYVgvEVJccahnPL4C39KU; path=/; expires=Sat, 15-Mar-25 02:03:59 GMT; domain=.hubspot.net; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R24GLtfC%2Bhe76SqJ016CWNU8muVVjsZN1TG8MHB8QUZYdFIFGiS3zlk1cpxrxaq6YT9HfvjJs7kfuUZzn1ZkESIkMNnmJhw%2F24yoRE%2FAu3iXKLeGHPOj0nTiz3R66SZFXwk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET js.hsleadflows.net/leadflows.js
200 OK 565 kB URL GET js.hsleadflows.net/leadflows.js
IP
Certificate IssuerGoogle Trust Services
Subjecthsleadflows.net
Fingerprint15:80:91:99:4D:A8:71:93:ED:BA:11:3A:2D:9F:46:0C:22:CA:3B:21
ValiditySat, 25 Jan 2025 08:42:29 GMT - Fri, 25 Apr 2025 09:42:14 GMT
Size 565 kB (564695 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /leadflows.js HTTP/1.1
Host: js.hsleadflows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Thu, 20 Feb 2025 10:09:00 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: mH_mgTdvZg_H8W2JlIwzqORwtBq48gT3
content-encoding: gzip
etag: W/"7968faa2771e212a972fd3e52300a0ca"
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method,accept-encoding
x-cache: RefreshHit from cloudfront
via: 1.1 872e43fac89d80c9557000efb9c31650.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: 1-Drvjkb1rZjXnW5OnLUutYY8iBvfxXVKT9vSuhNyaSxWj2l78EXUg==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=lead-flows-js/static-1.2614/bundle/main/lead-flows-release.js&cfRay=91fc1eba2b7bbbd2-ARN
cache-control: s-maxage=86400, max-age=0
x-hs-target-asset: lead-flows-js/static-1.2614/bundle/main/lead-flows-release.js
x-content-type-options: nosniff
x-hs-cache-status: MISS
x-envoy-upstream-service-time: 18
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: c0984974-b42b-49cd-810c-0c2928abde5a
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-554d564d77-62l2d
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: c0984974-b42b-49cd-810c-0c2928abde5a
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 52867
set-cookie: __cf_bm=76QAVpsGxuC1aW76f54InOAi_tiFVYNCPgtq421LTNU-1742002439-1.0.1.1-2bYl4YT2Oa_6NRpdaBVE_zMID_N6CBfkEC1MlK4zH6Sc5bmEzeb0nBDwL_jOg3hkCBNzHzO.0Z2iCPaerRyCjYHvyH.aZpvjTg_1T1hKAI8; path=/; expires=Sat, 15-Mar-25 02:03:59 GMT; domain=.hsleadflows.net; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 920844101b445693-OSL
X-Firefox-Spdy: h2
GET www.ntiva.com/hs-fs/hubfs/aetna.webp?width=125&height=45&name=aetna.webp
200 OK 890 B URL GET www.ntiva.com/hs-fs/hubfs/aetna.webp?width=125&height=45&name=aetna.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 125x45, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 26f7f703da128ffbf06d48d3be59c203
261c962644776d9fa31f4f0f7f75acd9c9e98028
421d2830d98be8f821c280c816b0f6f071980aab2338004b7b1c53dd777dbbae
GET /hs-fs/hubfs/aetna.webp?width=125&height=45&name=aetna.webp HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 890
cf-ray: 9208440e1dcc9312-CPH
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfbXOSI9VKoa9ZNtsj2dQlgCv3tXLRpn1WmjY6TOviDQ:26f7f703da128ffbf06d48d3be59c203"
last-modified: Wed, 05 Jul 2023 16:28:44 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 79a8a1b412ce1417e50d9d69261c9066.cloudfront.net (CloudFront)
cache-tag: F-123506415669,P-3012736,FLS-ALL
cf-bgj: imgq:0,h2pri
cf-resized: internal=ok/m q=0 n=463+0 c=0+0 v=2025.3.1 l=890 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4aD%2F547o5Bzlk%2B%2FblrZ1MlV9K4NffafjMI2k%2FFkHmxUFEytHnqj5CLpoScFc3wDmP%2BuANcMZATQ7XILQlV9VkZchi0PfYZIea93tSvpLGitp9znMWmy8ATU0bQCnAQs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-DEFINITION_SUCCESS&count=1
200 OK 35 B URL GET forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-DEFINITION_SUCCESS&count=1
IP
Certificate IssuerGoogle Trust Services
Subjecthsforms.com
FingerprintB7:57:C2:9C:80:E0:37:32:A6:85:49:69:E2:39:B8:7B:E3:5B:DE:41
ValidityWed, 05 Feb 2025 21:07:47 GMT - Tue, 06 May 2025 22:07:28 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=forms-embed-v2-DEFINITION_SUCCESS&count=1 HTTP/1.1
Host: forms-na1.hsforms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Mar 2025 01:34:00 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store
vary: origin
access-control-allow-credentials: false
x-content-type-options: nosniff
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 0c69907f-409e-4441-bfb6-d472f57af906
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-5c76648889-4wnst
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 0c69907f-409e-4441-bfb6-d472f57af906
cf-cache-status: DYNAMIC
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Set-Cookie: __cf_bm=UbZiYI9iwMqLHrvLJ7QZphreEULgR8BNp1sb.rmtIgY-1742002440-1.0.1.1-VHVyIiCzak90nLRGTGKKuX5xWVjdsVK_ZG3MqMgz0C9dTCBWboe3th9LsMtEl1MpyL_zyhpI2SQt5dlHJquwtUw1qu6eY.muTJg2Hr_GTqw; path=/; expires=Sat, 15-Mar-25 02:04:00 GMT; domain=.hsforms.com; HttpOnly; Secure; SameSite=None
_cfuvid=9KlbkOu0pijdXJbXAH6dqMogMqRFd7MMj2WUTN4El0I-1742002440580-0.0.1.1-604800000; path=/; domain=.hsforms.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 92084414ea2c569d-OSL
alt-svc: h3=":443"; ma=86400
POST region1.analytics.google.com/g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&_eu=EEA&_s=2&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=scroll&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&epn.percent_scrolled=90&tfd=2224
204 No Content 0 B URL POST region1.analytics.google.com/g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&_eu=EEA&_s=2&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=scroll&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&epn.percent_scrolled=90&tfd=2224
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058za200zb810996057&_p=1742002444307&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=1&pscdl=noapi&_eu=EEA&_s=2&sid=1742002440&sct=1&seg=1&dl=https%3A%2F%2Fwww.ntiva.com%2Fcheq-ppc-invalid-users&dr=https%3A%2F%2Fwww.ntiva.com%2F&dt=User%20Detection&_tu=Agg&en=scroll&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&epn.percent_scrolled=90&tfd=2224 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 204 No Content
access-control-allow-origin: https://www.ntiva.com
date: Sat, 15 Mar 2025 01:34:05 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:137:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:137:0
report-to: {"group":"ascnsrsggc:137:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:137:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
POST obs.segreencolumn.com/mon
200 OK 0 B URL POST obs.segreencolumn.com/mon
IP
Certificate IssuerZeroSSL
Subject*.segreencolumn.com
Fingerprint3B:63:25:99:FB:62:85:51:48:57:1D:7D:F3:41:B8:7D:67:82:CB:D0
ValidityFri, 07 Feb 2025 00:00:00 GMT - Thu, 08 May 2025 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mon HTTP/1.1
Host: obs.segreencolumn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1733
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Cookie: cg_uuid=539d407ac997a330f713580dffcf0ae8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://www.ntiva.com
content-type: application/json
date: Sat, 15 Mar 2025 01:34:13 GMT
content-length: 0
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtm.js?id=GTM-5X4TV6L
200 OK 368 kB URL GET www.googletagmanager.com/gtm.js?id=GTM-5X4TV6L
IP
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (11498)
Size 368 kB (368494 bytes)
Hash 161c8fe68071ec9b596858a9589f1a04
9395b679f1d13841f27b25fdd4f5d4236c35f604
3a8da187f597479ff280adde15dfc6125a9604ff20329bc4b5d578edb03c2605
GET /gtm.js?id=GTM-5X4TV6L HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Mar 2025 01:33:58 GMT
expires: Sat, 15 Mar 2025 01:33:58 GMT
cache-control: private, max-age=900
last-modified: Sat, 15 Mar 2025 00:20:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1262:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1262:0
report-to: {"group":"ascgcycc:1262:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1262:0"}],}
server: Google Tag Manager
content-length: 124116
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=3012736
200 OK 254 B URL GET api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=3012736
IP
Certificate IssuerGoogle Trust Services
Subjecthubapi.com
FingerprintD1:C3:49:1C:00:F2:15:97:4B:C7:FF:79:3A:55:FF:B4:E0:AF:6F:53
ValidityWed, 05 Mar 2025 17:47:15 GMT - Tue, 03 Jun 2025 18:47:13 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash dd08b124f8fe9f725ff6729d96ae5db4
12f62faacda22ea1af6069144c87f4b3a57eb4bd
15ded10d26815b37f0ff4f132e1bd72bc9a32cf7748a61eb0f3673b3989debba
GET /hs-script-loader-public/v1/config/pixels-and-events/json?portalId=3012736 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:34:03 GMT
content-type: application/json;charset=utf-8
cf-ray: 920844251f92b511-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://www.ntiva.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-content-type-options: nosniff
x-hubspot-correlation-id: 9c20bad9-e681-4b9f-be93-11f985db0e1c
set-cookie: __cf_bm=A_NDfuswsc2GB_QS58MpbX7PN6GehwXshvJvG0X0IXI-1742002443-1.0.1.1-EBRzKxQx5.BLIMitYnjNgslLJiiObVfpIRijwfv8z86to23b08UDjyCmk87nCHDoUGhwzCHi7qIoSzE.wu1EyHa6vZKGbfLxO_UpqCHZhTI; path=/; expires=Sat, 15-Mar-25 02:04:03 GMT; domain=.hubapi.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A7RU%2BOtATiJAapPLRv7rNO6RAet2qIGS4uXYheeksU3UiK%2FykJYzSeDkXghZNJ0nQLv0GRcY%2FKzbgvJhBTNEuqAP4CcKG%2BAdSj7IpIUIk27zD57yLV2VDHL5HtNgoEcq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
GET 7052064.fs1.hubspotusercontent-na1.net/hubfs/7052064/hub_generated/template_assets/DEFAULT_ASSET/1741803469444/template_layout.min.css
200 OK 4.6 kB URL GET 7052064.fs1.hubspotusercontent-na1.net/hubfs/7052064/hub_generated/template_assets/DEFAULT_ASSET/1741803469444/template_layout.min.css
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjecthubspotusercontent-na1.net
FingerprintDE:7E:48:22:09:C3:A3:42:16:80:04:4C:F0:6D:38:51:ED:73:47:92
ValiditySat, 22 Feb 2025 23:56:40 GMT - Sat, 24 May 2025 00:56:37 GMT
File type ASCII text, with very long lines (4572), with no line terminators
Hash e86a983511bd0692b761ad28314263bd
e5a33c3b44d31338392a206c07077987bd54b236
d0893f55b35a65f7da183e40b255d2af5abdc9d59956f11152e2203e32e67428
GET /hubfs/7052064/hub_generated/template_assets/DEFAULT_ASSET/1741803469444/template_layout.min.css HTTP/1.1
Host: 7052064.fs1.hubspotusercontent-na1.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: text/css
cf-ray: 9208442cab5bb4ee-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 85554
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: W/"fda5882b24ca5a84d04d090722dc713b"
last-modified: Wed, 12 Mar 2025 18:17:51 GMT
vary: Accept-Encoding
via: 1.1 37ae9b58b403c8aa72a90cba24bc62fe.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-187230343769,FD-187230605730,P-7052064,FLS-ALL
edge-cache-tag: F-187230343769,FD-187230605730,P-7052064,FLS-ALL
timing-allow-origin: 7052064.fs1.hubspotusercontent-na1.net
x-amz-cf-id: C8Ll4VYtUXVLupOaqIpeDJ3nDRBC1gOCqflAB-tjxeEuvnSbIuxcBQ==
x-amz-cf-pop: HEL51-P4
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: none
set-cookie: __cf_bm=bEhZkXAdd3D0MV1TPSTIsnxLx0Sh3eDLYV1B.hYTgxg-1742002444-1.0.1.1-UsSkQvYghYsqcPgLrEylU502jYA16KAhfVRKaVIsr49WGqCuMrhvidIJ5ujqPwjxeBCDhy1voOOGUWvbGG14XRcna.bwU198EXYKH2Kh1aI; path=/; expires=Sat, 15-Mar-25 02:04:04 GMT; domain=.hubspotusercontent-na1.net; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
GET d10lpsik1i8c69.cloudfront.net/graphics/blink_green.png
200 OK 1.3 kB URL GET d10lpsik1i8c69.cloudfront.net/graphics/blink_green.png
IP
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced
Hash 2e4ff7ec8bf18d247ee942621e0f9d65
8a95379165f6eec4bd32371ea005476eb9738e17
9746bbc8be1eacd912bb90f2226b3f9141b15938f7b0281825c74999c0040c9b
GET /graphics/blink_green.png HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 1283
date: Mon, 09 Sep 2024 20:05:23 GMT
last-modified: Thu, 25 Jan 2024 18:19:40 GMT
etag: "2e4ff7ec8bf18d247ee942621e0f9d65"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fOEG4MTTYI-1QDgoD82Bb5Eh05SB6T-fqs7Ia8Ul4ytfB8vdPeA0CQ==
age: 16090123
X-Firefox-Spdy: h2
GET api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=3012736
200 OK 254 B URL GET api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=3012736
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjecthubapi.com
FingerprintD1:C3:49:1C:00:F2:15:97:4B:C7:FF:79:3A:55:FF:B4:E0:AF:6F:53
ValidityWed, 05 Mar 2025 17:47:15 GMT - Tue, 03 Jun 2025 18:47:13 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash dd08b124f8fe9f725ff6729d96ae5db4
12f62faacda22ea1af6069144c87f4b3a57eb4bd
15ded10d26815b37f0ff4f132e1bd72bc9a32cf7748a61eb0f3673b3989debba
GET /hs-script-loader-public/v1/config/pixels-and-events/json?portalId=3012736 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:34:06 GMT
content-type: application/json;charset=utf-8
cf-ray: 92084437ec3fb511-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://www.ntiva.com
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-content-type-options: nosniff
x-hubspot-correlation-id: 8a05bfb9-9ba1-41f9-8f58-007618ba6133
set-cookie: __cf_bm=AHrg.PhZ9co7DOtEivahzNh7GwgJ5h9uWknxltIEH5c-1742002446-1.0.1.1-ohXy3myoxrlyOQl5LX.o.YDYvMLkRou.xRFbyXWAVbqAyUKVENFO7xYkRNSomHbPKbJ7Z1JRGnLQMJgJbvlqBO45iRTaSeXfrxajJmtwa5M; path=/; expires=Sat, 15-Mar-25 02:04:06 GMT; domain=.hubapi.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zIg1HypHeAZFZLCDPqVrVrfMbto3uOW0dAArbuUumrl8%2BQfkP%2BP%2FzzN9u0Z2%2B6vnCcqSK38vYJOgds5nq6tk%2BTI%2FWN5y7M%2FGeOq4raGy51o59Wi5e2r7YCA%2FQPw2rmO8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtm.js?id=GTM-5X4TV6L
200 OK 368 kB URL GET www.googletagmanager.com/gtm.js?id=GTM-5X4TV6L
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (11498)
Size 368 kB (368494 bytes)
Hash bf6ed123a7f45eac9604fb32ffa23b30
1842c1ccc0e760c48964e64b7ddbeea893627d30
a2f17a2dae40f9c020a1263ef21aff3db5da160a8a5d70ea3f7ee60f335b8015
GET /gtm.js?id=GTM-5X4TV6L HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Mar 2025 01:34:06 GMT
expires: Sat, 15 Mar 2025 01:34:06 GMT
cache-control: private, max-age=900
last-modified: Sat, 15 Mar 2025 00:20:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1262:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1262:0
report-to: {"group":"ascgcycc:1262:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1262:0"}],}
server: Google Tag Manager
content-length: 124117
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET d10lpsik1i8c69.cloudfront.net/w.js
200 OK 5.3 kB URL GET d10lpsik1i8c69.cloudfront.net/w.js
IP
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (5489), with no line terminators
Hash bec974f936e6fbb394951933bccc9710
dff36aa53b5d74325ff68454f2eee7ba94600ecc
c1037850c3b60666fc01d89dd3a4bae7afc0b5b7c4444b638b556e45ce475aa3
GET /w.js HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 25 Jan 2024 18:19:40 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
server: AmazonS3
date: Sat, 15 Mar 2025 01:07:32 GMT
cache-control: max-age=3600
etag: W/"e31293f40e8a324de552ff593ee76a9b"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jeWY_37nvJOfjYiQ06LG2o4ETBjgrabVN-n80S7pgjo6J4Jow2XDzA==
age: 1589
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-hubspot
200 OK 278 kB URL GET www.googletagmanager.com/gtag/js?id=G-hubspot
IP
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (2432)
Size 278 kB (278306 bytes)
Hash 45fcdd3e3b0f1732b1197e18ef4d47e9
48e364159975364d548c672c628073f19d65caf5
70f71f771f39af84654447d979db106eba31b2776e33931a2e4c9c06b3d29899
GET /gtag/js?id=G-hubspot HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Mar 2025 01:34:03 GMT
expires: Sat, 15 Mar 2025 01:34:03 GMT
cache-control: private, max-age=900
last-modified: Sat, 15 Mar 2025 00:20:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 100603
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.ntiva.com/hs/hsstatic/jquery-libs/static-1.4/jquery-migrate/jquery-migrate-1.2.1.js
200 OK 7.2 kB URL GET www.ntiva.com/hs/hsstatic/jquery-libs/static-1.4/jquery-migrate/jquery-migrate-1.2.1.js
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type JavaScript source, ASCII text, with very long lines (7365), with no line terminators
Hash 8abfbb763c7dbf15734b2220329fe792
ebc567208826867a1063c5a8687950faafc98f5b
780e00a63a09d8b2da515868f4fa76af83f28bd9b6b430b851631cc8cd1cf658
GET /hs/hsstatic/jquery-libs/static-1.4/jquery-migrate/jquery-migrate-1.2.1.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: application/javascript
cf-ray: 9208440229f49312-CPH
cf-cache-status: HIT
age: 187148
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"eb05d8d73b5b13d8d84308a4751ece96"
expires: Sun, 15 Mar 2026 01:33:57 GMT
last-modified: Thu, 08 Jan 2015 18:08:00 GMT
set-cookie: __cf_bm=QaGOUJxs1Z_kht5STm4cLAAyiCSipyNR1ZybW6xkEF8-1742002437-1.0.1.1-1j7.wv.S8KJYGKsHtp_VwhU7uzAkCktJbDHz4M.iDjcSGMl37TeefKpOsWxAjl_4yFejdxTt5TmFfsO03tCyLl5SnB5Qu9FHLtmo91QvhJA; path=/; expires=Sat, 15-Mar-25 02:03:57 GMT; domain=.hubspotusercontent.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: accept-encoding
via: 1.1 9a7e0d68b8274eedf8d6b7b815b568c6.cloudfront.net (CloudFront)
x-amz-cf-id: fpY0Gn_Ali-l-FaoikERPFdIk4-do9FdQDTfHCirRNh_ZEwB1Ljp-g==
x-amz-cf-pop: ARN56-P2
x-amz-version-id: null
x-cache: Hit from cloudfront
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iqpd3WAQGEFiD4c4hwyiivFtY4aUFGHX71AGVR%2FR2GlQsyo88NgPfigAZPxZZ9WuskaBG6GNPk46Nl8spiZ43o0z0tSx%2FP2lsPIj%2B3g6uOJP8uNlFzV%2Bc33mi5OhYDs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109521242634/1688611025658/module_109521242634_home-clients.min.css
200 OK 1.5 kB URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109521242634/1688611025658/module_109521242634_home-clients.min.css
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (1471), with no line terminators
Hash 02cd005748d1a178e5e4dbd996c7cc67
bdcb173c96206066b230b71ba5775459d7758bd9
dd3634fce4fdf62ab1fb85e34b63bf7924e78ba8fa8d16c57a8e3f4b35c1f65a
GET /hs-fs/hub/3012736/hub_generated/module_assets/109521242634/1688611025658/module_109521242634_home-clients.min.css HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: text/css
cf-ray: 920844024a029312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
content-encoding: gzip
etag: W/"02cd005748d1a178e5e4dbd996c7cc67"
last-modified: Thu, 06 Jul 2023 02:37:06 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 7fc4d53a17d950b206cd9fccf1108b8a.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: MMQssYqIWXt3c8ZiooZlROujcjzTQ1A-JywyynuXTLBq-sMtAK8UWg==
x-amz-cf-pop: IAD89-C1
x-amz-id-2: Dj3chkqwROQFuAPUdADZEv8nwSNEMOhvqhmUJCaR+w2rQdFVuKi9k3aTqb3wiepxajQbbNMlc/wS0w2Sw8EGHA==
x-amz-meta-created-unix-time-millis: 1688611025658
x-amz-replication-status: COMPLETED
x-amz-request-id: VBQJXG505Z483PCA
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: vNOrwHnCBXax9fQCZDyawCF7iW_vZPD1
x-cache: RefreshHit from cloudfront
x-envoy-upstream-service-time: 186
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-5689dcb94b-qphjm
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: 08da5986-e851-4c1d-8b97-9c3f93d19e2c
x-request-id: 08da5986-e851-4c1d-8b97-9c3f93d19e2c
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WXkkOpKTFSTBNlvrluYXQf1FDhgGoRh4zpW6xjA%2FKCVOn%2FpX8nd%2BTdLrKN1llQ1Lo9lfr7VeIu%2B2BwiRiQV4bKrcPatj640wGbT6gmnrh6yzSvvu9zIN24n0MGutcdE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hubfs/Biofoam-Logo-gry.png
200 OK 6.5 kB URL GET www.ntiva.com/hubfs/Biofoam-Logo-gry.png
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash a1add6556ef04f4fc7a4e2f9b9392454
aacf7201f441b77c985d599026d3481921209c8c
e0fc7670ff4a9c853d9e21ed57fccc3d6f6a560e192b337d8d1d41e6f4c62eb4
GET /hubfs/Biofoam-Logo-gry.png HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 6452
cf-ray: 9208440e1dc79312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
content-disposition: inline; filename="Biofoam-Logo-gry.webp"
etag: "d560168b3de6724ed85e83ba0335e2e9"
last-modified: Thu, 21 Sep 2023 18:06:26 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 1cc96dfa269d8f804027fd4df8ad9ab2.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-135977275540,P-3012736,FLS-ALL
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=11725
edge-cache-tag: F-135977275540,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: SXuKsUHPRnJ5y5vEmGeOjNn09fZaDlnlnNXIlJp5MeoR-BWFNchB2w==
x-amz-cf-pop: ARN53-P1
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N3lgNz9ekCQNjBVgqCvtXb8A59%2B3SBsDMHkeSLPMBSSNMwjcV3bTEVBS%2FNEjQSqM91IiGK7i9G2RWNQ5crcHmpJyuSYOXVOipVlWWHs0GGsBzVzSG%2BoHq2ICw8KbnZU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET go.ntiva.com/hubfs/card-managed-it-support.webp
200 OK 13 kB URL GET go.ntiva.com/hubfs/card-managed-it-support.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectgo.ntiva.com
FingerprintAA:6A:75:2E:78:01:5A:33:93:C9:62:EB:DF:32:EB:C3:EB:05:0E:00
ValidityFri, 28 Feb 2025 02:52:37 GMT - Thu, 29 May 2025 03:52:33 GMT
File type RIFF (little-endian) data, Web/P image
Hash 5fad204f250cdc93522ac9ff8eafe169
65ce266419efa0eb1e6ac2b983daba65217bb64c
6bf4959be94174fe5f07649ba78d91185888caee8184b454814eaef953812229
GET /hubfs/card-managed-it-support.webp HTTP/1.1
Host: go.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=JQBTlAck62DAc3oTYlcJJb5hKWPlhRzenFyEHZh2DVc-1742002436-1.0.1.1-PTKGq0Nr8EdKYXpOKE9U.SXRAu8.0EezSFhsnBY84c4Y9dEIEphwGTfW1u5gcsw9WQHbmupWKurnuRcfl1Nv5RW.ROINMWUKS3F8xOW2mmk; _cfuvid=Dk0hkGulc2C3VGo7R3dwfEltgMcVUr9diqlEG6nNg6k-1742002436226-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 12848
cf-ray: 9208440e5a122625-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "5fad204f250cdc93522ac9ff8eafe169"
last-modified: Wed, 05 Jul 2023 15:26:47 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 6f1a776c135afc3661c3b20e6a344a98.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-123499472555,P-3012736,FLS-ALL
edge-cache-tag: F-123499472555,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: AxHQD9pKnbNg6wSpKaTapcBLeMO56W0ZrgneDfSTgrB86JJwhBmDOg==
x-amz-cf-pop: HEL51-P4
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B3iwu10OtYkQnPS%2BVgJjJAuVhTuYiHJohBUHs%2Fh5PapVfhWXxaX%2BvJopH%2BECV1U7xUcTqAX9z4tl%2F%2Bw%2FpAtgavdWg1AwcMMbctN8JEpaOSguOFyWvJjHmushQObO7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET d10lpsik1i8c69.cloudfront.net/graphics/sound-on-white.png
200 OK 277 B URL GET d10lpsik1i8c69.cloudfront.net/graphics/sound-on-white.png
IP
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
Hash 76f1993de0fd323f67cece8d8e63bfa2
a95e6e665260a90968d0ff818d5c196dc7684f27
da0c1bc51d4ebfa2570f3e7546d9d3ccfb3f9d3c1199b1ca49869510aa79392a
GET /graphics/sound-on-white.png HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 277
date: Thu, 05 Sep 2024 19:34:01 GMT
last-modified: Thu, 25 Jan 2024 18:19:40 GMT
etag: "76f1993de0fd323f67cece8d8e63bfa2"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UGzeQvZO10DlymreoWeZrCeKhUxyCAF43Vl3gD3OXVQBdZmnGmUDCQ==
age: 16437605
X-Firefox-Spdy: h2
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/template_assets/108934481844/1728670546460/ntiva-2023/css/main.min.css
200 OK 14 kB URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/template_assets/108934481844/1728670546460/ntiva-2023/css/main.min.css
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (13815), with no line terminators
Hash 209b169c349957bc6676c7bbfa7ed479
82ef529e93e6a6e806184aaa05f68c25aa04ce04
672a8559f49f6becdda396a888f439b92cff5e2458e21e73116052e7f5be7dcb
GET /hs-fs/hub/3012736/hub_generated/template_assets/108934481844/1728670546460/ntiva-2023/css/main.min.css HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: text/css
cf-ray: 9208440229f59312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
content-encoding: gzip
etag: W/"209b169c349957bc6676c7bbfa7ed479"
last-modified: Fri, 11 Oct 2024 18:15:48 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 eb9a7c491927f70f3921f0803caae61c.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: 6uZJAD7l5HcWdPGHXZwPbur2sJRZJmgrSyrNTMABGhOEBRgVZl4ztQ==
x-amz-cf-pop: IAD61-P1
x-amz-id-2: YTKUsu/mKumoTqXYMlCGATwfovLhC1iYCLe5ubTCBvnwBpI8A1Gh+DbhWIB8DOXYZRsF0veOZZ0=
x-amz-meta-created-unix-time-millis: 1728670547182
x-amz-replication-status: PENDING
x-amz-request-id: MYDMGJGACT3NANWR
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: ZwldPuwayw0vxJQh7Kn1pygi9s2LWNIX
x-cache: Miss from cloudfront
x-envoy-upstream-service-time: 212
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-679cd85c5c-4hrwm
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: 9ad813be-631f-4b71-8970-73612b15d06b
x-request-id: 9ad813be-631f-4b71-8970-73612b15d06b
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RnuhhHBuweyYYucwVG84SyV5x0P4JiII69rqEFNomwCwdHInmyOtsLR6YbzVDdaTWFb9QaNA%2Bi2gmgtD7yzz1%2FwcoiEfWKPkjWycyzKvH0eKJaHj2oTNGFyWNupGjwQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109520695090/1683317715535/module_109520695090_home-it-support.min.css
200 OK 775 B URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109520695090/1683317715535/module_109520695090_home-it-support.min.css
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (775), with no line terminators
Hash 985391e21502c7995895ffa16af8e85d
761ec32f46a74447e6c7f3cbd689c6f84cad75b2
1d5b4152b88912870ca15176c6c74a3e05662e4531d3a30362198f973154c02d
GET /hs-fs/hub/3012736/hub_generated/module_assets/109520695090/1683317715535/module_109520695090_home-it-support.min.css HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: text/css
cf-ray: 920844024a039312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
etag: W/"985391e21502c7995895ffa16af8e85d"
last-modified: Fri, 05 May 2023 20:15:16 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 fba666ceffdeb316c8edf476d8994bd4.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: jqZXcN3pXhaI4vVP-sZZjWJCM97bYjR8BiqN4QbfVD2wlg1Zcvl8tg==
x-amz-cf-pop: IAD89-C1
x-amz-id-2: jcG7zFV4/8ueH8iTfcsDlr2ibN5vqoSkG84+jQzobplwT3L4tLC7h7xpyb28aAXfCc3Q9YG9LNAYkbK4Kx7/adVoYVnW5aWp
x-amz-meta-created-unix-time-millis: 1683317715535
x-amz-replication-status: COMPLETED
x-amz-request-id: E78E9N326MEGF7FN
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: IpiquozjDlWeBsI7j3iRgwkcK7jx1hjD
x-cache: Miss from cloudfront
x-envoy-upstream-service-time: 233
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-7849459c5c-ffn2h
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: 48c11087-5cd7-47b1-a0de-d007d545ecba
x-request-id: 48c11087-5cd7-47b1-a0de-d007d545ecba
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lZ2gVh8LfMDkrzbLYWiaqyO%2FPLvcTOUCMsYj%2BtX4NJV0MCZ%2FRhipaCP9TKeZSMy2Zbo83Pze5QRgeO9QKv4qsZnBNxqkLcMSqXflDRtgUM7rkpDpJEzWXqw2OwU94UE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Mar 2025 09:23:55 GMT
expires: Fri, 13 Mar 2026 09:23:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
age: 144604
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET cdn2.hubspot.net/hub/3012736/hub_generated/template_assets/114246542504/1688491681149/ntiva-2023/css/elements/_owlcarousel.min.css
200 OK 4.7 kB URL GET cdn2.hubspot.net/hub/3012736/hub_generated/template_assets/114246542504/1688491681149/ntiva-2023/css/elements/_owlcarousel.min.css
IP
Certificate IssuerGoogle Trust Services
Subjecthubspot.net
FingerprintB4:C5:2D:3A:69:E7:24:D6:52:14:12:86:EF:7E:06:BB:D3:96:1A:40
ValiditySun, 02 Feb 2025 14:33:09 GMT - Sat, 03 May 2025 15:32:58 GMT
File type ASCII text, with very long lines (4671), with no line terminators
Hash 9c5a257337c75b49a238c4ad140e12d2
e29aaf01e4fd6ae3e33fbbda84c16cdc91b5dae2
937ab83786662aa4718b842014a28b0bff9cb85166746314abafa58c3d61b603
GET /hub/3012736/hub_generated/template_assets/114246542504/1688491681149/ntiva-2023/css/elements/_owlcarousel.min.css HTTP/1.1
Host: cdn2.hubspot.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: text/css
cf-ray: 920844108ce6b50f-OSL
cf-cache-status: HIT
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
content-encoding: gzip
etag: W/"1666197d93e7836544863d01bab005a9"
last-modified: Tue, 04 Jul 2023 17:28:02 GMT
vary: Accept-Encoding
access-control-allow-methods: GET
timing-allow-origin: cdn2.hubspot.net
x-amz-cf-pop: IAD89-C1
x-amz-meta-created-unix-time-millis: 1688491681853
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-envoy-upstream-service-time: 230
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-cdn2-td/envoy-proxy-6dc5b9b5cd-jc867
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: 247f273e-92f0-4c47-bdc6-929b9e0a0f6a
x-request-id: 247f273e-92f0-4c47-bdc6-929b9e0a0f6a
set-cookie: __cf_bm=EGVhIDHSbyMiJ1086uY1vn6dWF8SdmySpTZl7X1lVyM-1742002439-1.0.1.1-uPMSxSgFqU_7tTWusdv71RAFU8NqAwXb9t299P9aH9N9F.YEX8DFseHUz.AXEMJAjzt69BUUSytftNH8Ox0cyT5fLH_5ImivUoBXkfzxvWQ; path=/; expires=Sat, 15-Mar-25 02:03:59 GMT; domain=.hubspot.net; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w%2FS%2B8fVQXwoezQ7yhwalnbS7%2FauGRKKbU5l2kUeT8FYCv5V3fRNmdf0MDz0CBWDxv4Xwb6mGaSKOrKqBfTfsud4kgh2GfEA38zHlxj3wwbnho4d3sE6a1idto8gFxX2tVoc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.ntiva.com/hs-fs/hubfs/mxv.jpg?width=67&height=45&name=mxv.jpg
200 OK 886 B URL GET www.ntiva.com/hs-fs/hubfs/mxv.jpg?width=67&height=45&name=mxv.jpg
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 67x45, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 4d26f4f070c67a0324be5a8eba022939
f4f1e37fd78455bd2b5a5720eb9a0848b4b7c28f
6bca988a014322f2df9c407b052de57dbb39694779933dcaceb03aa33de2a834
GET /hs-fs/hubfs/mxv.jpg?width=67&height=45&name=mxv.jpg HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 886
cf-ray: 9208440e1dca9312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfi16yfMGswnb2MAk8Tck_l49D9RzdljhxPmQCUxNeDQ:fcedc91157a9b348d118d6e20027df9c"
last-modified: Tue, 23 May 2023 00:41:16 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 8da78542dac6b4328eb443200c30bbfe.cloudfront.net (CloudFront)
cache-tag: F-116668209296,P-3012736,FLS-ALL
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=545+1 c=0+0 v=2025.3.1 l=886 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EJRH3ABfZqZkb5eygi5WiCselfg5cPj9wOn3zNcITZ7KRIbDLEGzHFSG0TNJiaikeE8yQy9VgUoSY6EyVQqAgKjF0ZMuVxX9I23nrqDvALXhk8RdDAJJKSXcGnk2TDA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hubfs/home-state-bank.webp?width=110&height=32&name=home-state-bank.webp
200 OK 1.1 kB URL GET www.ntiva.com/hs-fs/hubfs/home-state-bank.webp?width=110&height=32&name=home-state-bank.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash 14da63d0d6b49cf7db85a73d5c36804c
c00ae84845120d5e0e3db95a4f252f092f04dceb
3570314b9d118ea17fd75fbf653ee777f480518e084c1e676d458512c333b0a9
GET /hs-fs/hubfs/home-state-bank.webp?width=110&height=32&name=home-state-bank.webp HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 1066
cf-ray: 9208440e1dce9312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cf5LwNbVvBzyKw-_faVglX5cwrVhjE3dxkRjKWDQzQDQ:14da63d0d6b49cf7db85a73d5c36804c"
last-modified: Wed, 05 Jul 2023 16:28:57 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 609487f3e9c1fd7ddcc7b01d9818bfec.cloudfront.net (CloudFront)
cache-tag: F-123505062734,P-3012736,FLS-ALL
cf-bgj: imgq:0,h2pri
cf-resized: internal=ok/h q=0 n=90+0 c=0+0 v=2025.3.1 l=1066 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V6tMZdY4BYD%2BKkNjeCN9flKYo67T%2BT2tEuK7VU4lvRvioCMWc%2Fwuz6OMIenFcD0qfgGFdX3aM5Uap5BrV7eSNDSjcfDs00sPEglQpKYYTcLLeTfuTt8xHAxqMkooe0U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs/hsstatic/jquery-libs/static-1.4/jquery-migrate/jquery-migrate-1.2.1.js
200 OK 7.2 kB URL GET www.ntiva.com/hs/hsstatic/jquery-libs/static-1.4/jquery-migrate/jquery-migrate-1.2.1.js
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type JavaScript source, ASCII text, with very long lines (7365), with no line terminators
Hash 8abfbb763c7dbf15734b2220329fe792
ebc567208826867a1063c5a8687950faafc98f5b
780e00a63a09d8b2da515868f4fa76af83f28bd9b6b430b851631cc8cd1cf658
GET /hs/hsstatic/jquery-libs/static-1.4/jquery-migrate/jquery-migrate-1.2.1.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/cheq-ppc-invalid-users
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441; _cq_duid=1.1742002442.vKqCNSj5XUxI2aZ7; _cq_suid=1.1742002442.Feq1i50o6EVlK9Gv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: application/javascript
cf-ray: 9208442bf8ec9312-CPH
cf-cache-status: HIT
age: 187155
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"eb05d8d73b5b13d8d84308a4751ece96"
expires: Sun, 15 Mar 2026 01:34:04 GMT
last-modified: Thu, 08 Jan 2015 18:08:00 GMT
set-cookie: __cf_bm=uHd2ojqX9if7aikP9Wrxcdo8AsIsa25NEZlXG1_B1sg-1742002444-1.0.1.1-VsajWqfRZUxw9MZNl0PshYglS7.KDdH9FmHf6FsvlFTMyMcnr3QlqANEWLg3SESm14lVaFnb8W61XU_yCM678tMuZMkUVu3xrxNBwByWCNE; path=/; expires=Sat, 15-Mar-25 02:04:04 GMT; domain=.hubspotusercontent.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: accept-encoding
via: 1.1 9a7e0d68b8274eedf8d6b7b815b568c6.cloudfront.net (CloudFront)
x-amz-cf-id: fpY0Gn_Ali-l-FaoikERPFdIk4-do9FdQDTfHCirRNh_ZEwB1Ljp-g==
x-amz-cf-pop: ARN56-P2
x-amz-version-id: null
x-cache: Hit from cloudfront
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OT0RsO6nNQlwtN6t6n0vxwO15VulW%2FKp6Zy6t%2FWpVNsBZYtXAlHK%2FC%2B5ZZuQZ8e%2Ft8tWie8BtZA6a4sUDjZIAFJ7HCedoVpzhs1SpgEH0EqjIeWz9IrX6teZsYYITZ4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET go.ntiva.com/netlink-acquisition
301 Moved Permanently 136 kB URL User Request GET go.ntiva.com/netlink-acquisition
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectgo.ntiva.com
FingerprintAA:6A:75:2E:78:01:5A:33:93:C9:62:EB:DF:32:EB:C3:EB:05:0E:00
ValidityFri, 28 Feb 2025 02:52:37 GMT - Thu, 29 May 2025 03:52:33 GMT
Size 136 kB (135811 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /netlink-acquisition HTTP/1.1
Host: go.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Sat, 15 Mar 2025 01:33:56 GMT
location: https://go.ntiva.com/
cf-ray: 920843f8980792a6-CPH
cf-cache-status: HIT
cache-control: no-transform, max-age=120
expires: Sat, 15 Mar 2025 01:35:43 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
access-control-allow-credentials: false
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-envoy-upstream-service-time: 21
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-30-39-td/envoy-proxy-67fbb5b9bb-k5qcl
x-evy-trace-virtual-host: all
x-hs-mapping-id: 5278833983
x-hs-mapping-only-after-not-found: yes
x-hs-route-prefix: /*rest-of-url
x-hubspot-correlation-id: d5680524-db8b-4b07-afff-051805c91393
x-request-id: d5680524-db8b-4b07-afff-051805c91393
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QQ1N1rcvZ0bl2bcd5EoMZysumJq4O3GORWL633azY2pTZSTKNbEBm5eRYADgWJzWEa1B7cTTV%2Fnj9uISGC1jz0NsAofbpSte58o206LmbsLAzS%2BWonffuVt7KaDuPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
set-cookie: __cf_bm=JQBTlAck62DAc3oTYlcJJb5hKWPlhRzenFyEHZh2DVc-1742002436-1.0.1.1-PTKGq0Nr8EdKYXpOKE9U.SXRAu8.0EezSFhsnBY84c4Y9dEIEphwGTfW1u5gcsw9WQHbmupWKurnuRcfl1Nv5RW.ROINMWUKS3F8xOW2mmk; path=/; expires=Sat, 15-Mar-25 02:03:56 GMT; domain=.go.ntiva.com; HttpOnly; Secure; SameSite=None
_cfuvid=Dk0hkGulc2C3VGo7R3dwfEltgMcVUr9diqlEG6nNg6k-1742002436226-0.0.1.1-604800000; path=/; domain=.go.ntiva.com; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-JKTPCKN83D&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719
200 OK 482 kB URL GET www.googletagmanager.com/gtag/js?id=G-JKTPCKN83D&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719
IP
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (9955)
Size 482 kB (481674 bytes)
Hash b35b0a56e6eebdbcf48eb82111515f23
39cf62e6e60692ec9e7285b3ef7f3a4fd4c45348
12509379cbe87d35d054a382dd8271755049718515987c41561b2940c1d2e929
GET /gtag/js?id=G-JKTPCKN83D&l=dataLayer&cx=c>m=45He53d0v810996057za200&tag_exp=102482433~102587591~102717422~102788824~102813109~102814060~102825837~102879719 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Mar 2025 01:34:00 GMT
expires: Sat, 15 Mar 2025 01:34:00 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1020:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1020:0
report-to: {"group":"ascgcycc:1020:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1020:0"}],}
server: Google Tag Manager
content-length: 150969
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
OPTIONS settings.luckyorange.com/a8b01208
200 OK 0 B URL OPTIONS settings.luckyorange.com/a8b01208
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectsettings.luckyorange.com
Fingerprint6D:AC:D1:53:0D:E1:EA:68:57:FC:38:B5:3F:3D:BA:83:54:35:79:C6
ValidityThu, 06 Feb 2025 23:03:02 GMT - Wed, 07 May 2025 23:03:01 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /a8b01208 HTTP/1.1
Host: settings.luckyorange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-lucky-referrer,x-lucky-uid
Referer: https://www.ntiva.com/
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.ntiva.com
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,PUT,PATCH,DELETE,OPTIONS
access-control-allow-headers: Access-Control-Allow-Origin,Authorization,Content-Type,X-Lucky-Uid,X-Lucky-Site-Id,X-Lucky-Impersonate,X-Lucky-Session-Id,X-Lucky-Referrer
access-control-max-age: 86400
date: Sat, 15 Mar 2025 01:34:01 GMT
via: 1.1 google
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
POST region1.analytics.google.com/g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002438098&_gaz=1&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=0&pscdl=noapi&_eu=EA&_s=1&sid=1742002440&sct=1&seg=0&dl=https%3A%2F%2Fwww.ntiva.com%2F&dt=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&_tu=Agg&en=page_view&_fv=1&_nsi=1&_ss=1&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&tfd=5340
204 No Content 0 B URL POST region1.analytics.google.com/g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002438098&_gaz=1&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=0&pscdl=noapi&_eu=EA&_s=1&sid=1742002440&sct=1&seg=0&dl=https%3A%2F%2Fwww.ntiva.com%2F&dt=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&_tu=Agg&en=page_view&_fv=1&_nsi=1&_ss=1&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&tfd=5340
IP
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-JKTPCKN83D>m=45je53d0v881685058z8810996057za200zb810996057&_p=1742002438098&_gaz=1&gcs=G1--&gcd=13l3l3R2l6l1&npa=0&dma_cps=syphamo&dma=1&tag_exp=102482433~102587591~102717422~102788824~102803278~102813109~102814060~102825837~102879719&cid=105610842.1742002441&ecid=357826396&ul=en-us&sr=1280x1024&ir=1&frm=0&pscdl=noapi&_eu=EA&_s=1&sid=1742002440&sct=1&seg=0&dl=https%3A%2F%2Fwww.ntiva.com%2F&dt=Managed%20IT%20Services%2C%20IT%20Consulting%2C%20Cybersecurity%2C%20and%20IT%20Solutions&_tu=Agg&en=page_view&_fv=1&_nsi=1&_ss=1&ep.allow_interest_groups=true&ep.ad_user_data=granted&ep.journey=&ep.journey_stage=&tfd=5340 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.ntiva.com
date: Sat, 15 Mar 2025 01:34:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascnsrsggc:137:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascnsrsggc:137:0
report-to: {"group":"ascnsrsggc:137:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascnsrsggc:137:0"}],}
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET perf-na1.hsforms.com/embed/v3/counters.gif?key=config-loaded-success&value=1
200 OK 35 B URL GET perf-na1.hsforms.com/embed/v3/counters.gif?key=config-loaded-success&value=1
IP
Certificate IssuerGoogle Trust Services
Subjecthsforms.com
FingerprintB7:57:C2:9C:80:E0:37:32:A6:85:49:69:E2:39:B8:7B:E3:5B:DE:41
ValidityWed, 05 Feb 2025 21:07:47 GMT - Tue, 06 May 2025 22:07:28 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=config-loaded-success&value=1 HTTP/1.1
Host: perf-na1.hsforms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Cookie: __cf_bm=2I.HNuy4u882RCoyYWTDKEFhjbtEW0cc7yKbxx.FVeY-1742002440-1.0.1.1-W7ro8exrYISlxWBY5IVPq6_T7idAQIPgWoev1dLqhSdDXf6bfXYepB2V9D1oh8jt9tlvfg2FELaZ5uwG0H4Xsc6ZgpNKn5gpAaiVX7mg3us; _cfuvid=8kn62EE70PJOkU2sWdjPi43_EMbxE9s5EjmQIxX9xQw-1742002440724-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:03 GMT
content-type: image/gif
content-length: 35
cache-control: max-age=0, no-cache, no-store
vary: origin, Accept-Encoding
access-control-allow-credentials: false
x-content-type-options: nosniff
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
x-envoy-upstream-service-time: 2
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 6d6c70c4-456a-448c-803f-afcb8679fae1
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-5c76648889-75fmf
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 6d6c70c4-456a-448c-803f-afcb8679fae1
last-modified: Sat, 15 Mar 2025 01:34:03 GMT
cf-cache-status: MISS
accept-ranges: bytes
priority: u=4,i=?0
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 92084424684356ab-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs/hsstatic/keyboard-accessible-menu-flyouts/static-1.17/bundles/project.js
200 OK 2.2 kB URL GET www.ntiva.com/hs/hsstatic/keyboard-accessible-menu-flyouts/static-1.17/bundles/project.js
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (2309), with no line terminators
Hash 8548ca3a635c23d0f05a087b86969a8d
8091c6850d43119ccd0766b63f2fadcf04208038
3ea5e5f857f09bb7e72ac2052f84e970e846cc82a3c54f7d65db62d9dd7337f9
GET /hs/hsstatic/keyboard-accessible-menu-flyouts/static-1.17/bundles/project.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/cheq-ppc-invalid-users
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441; _cq_duid=1.1742002442.vKqCNSj5XUxI2aZ7; _cq_suid=1.1742002442.Feq1i50o6EVlK9Gv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: application/javascript
cf-ray: 9208442bc8d09312-CPH
cf-cache-status: HIT
age: 2142903
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"ef84f26c310485299d6b75777414eddb"
expires: Sun, 15 Mar 2026 01:34:04 GMT
last-modified: Wed, 19 Aug 2020 22:24:11 GMT
set-cookie: __cf_bm=Hqadke3Jb4zl7iLQJW5giXtdbtxLfShrbtJQw.FCcZ0-1742002444-1.0.1.1-nqIJlC2bwlNd49SCdQrAGkLegLArtwo6U0jMh5WUz69Zxn1RLaVU8eOHYFvIdStn3ldXEyv_N.A.CVMwoC1yy8e3py5VyrKbprS8bLHNLRs; path=/; expires=Sat, 15-Mar-25 02:04:04 GMT; domain=.hubspotusercontent.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: accept-encoding
via: 1.1 930c2e58be2ae5a0faf6f308189d2776.cloudfront.net (CloudFront)
x-amz-cf-id: 6e11w-e80Oq0ZzDqwWT7FK9P8szXZCYR_w9odqZC2fPuMlBLz748ZA==
x-amz-cf-pop: ARN56-P2
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-amz-version-id: gEenO44eZUewxnIWfgj9q6LB.g9OszNv
x-cache: Hit from cloudfront
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dk9BjWnbS0Z8Cvcr%2FmIk%2F6Mrk%2Bb0j4fH%2FPVeFkFZSUcFETUIAlf0ORYeb8zHdVHz%2BmVEn9mFDzNo4DChYC8%2Faf5QpqVQtutIRSJjJ85JuNVa8xXZu7r2OKKkMcpxvG4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET go.ntiva.com/hubfs/card-managed-it-services.webp
200 OK 16 kB URL GET go.ntiva.com/hubfs/card-managed-it-services.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectgo.ntiva.com
FingerprintAA:6A:75:2E:78:01:5A:33:93:C9:62:EB:DF:32:EB:C3:EB:05:0E:00
ValidityFri, 28 Feb 2025 02:52:37 GMT - Thu, 29 May 2025 03:52:33 GMT
File type RIFF (little-endian) data, Web/P image
Hash 2913beb3925e1ffdab19e479214670f5
25fdc92bf98832900e9aa6551c5d07c54c7f5263
0b2804305e4077794b0b2363977881e80ba014e194e698990d9843e1b4ead0e3
GET /hubfs/card-managed-it-services.webp HTTP/1.1
Host: go.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=JQBTlAck62DAc3oTYlcJJb5hKWPlhRzenFyEHZh2DVc-1742002436-1.0.1.1-PTKGq0Nr8EdKYXpOKE9U.SXRAu8.0EezSFhsnBY84c4Y9dEIEphwGTfW1u5gcsw9WQHbmupWKurnuRcfl1Nv5RW.ROINMWUKS3F8xOW2mmk; _cfuvid=Dk0hkGulc2C3VGo7R3dwfEltgMcVUr9diqlEG6nNg6k-1742002436226-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 15746
cf-ray: 9208440e4a102625-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "2913beb3925e1ffdab19e479214670f5"
last-modified: Wed, 05 Jul 2023 15:25:45 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 c2eb9b44aa5080bf631af7c8ed97f7de.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-123494743592,P-3012736,FLS-ALL
edge-cache-tag: F-123494743592,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: G_t5oOJTDjztpZD4FIERk1OVHwOnbEjTeIweBWKa_UJNuwe7WwWT2A==
x-amz-cf-pop: ARN53-P1
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NNI3y1tru75mkWSTO1%2F4q%2F6cpzJos2piQa9mMeNK5ggy28uCrXxHTJmTXMEpX02vuAEenTuEkJxwEIK9nBEsa5HQD7kDqHNiyiBIdCYdwYHncQkOapHGHqpdgqk3zQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET js.hs-banner.com/v2/3012736/banner.js
200 OK 86 kB URL GET js.hs-banner.com/v2/3012736/banner.js
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjecths-banner.com
Fingerprint1B:79:5D:2A:63:36:C1:AC:79:67:E5:5F:EB:17:F4:BA:29:4D:0F:74
ValidityMon, 20 Jan 2025 21:28:35 GMT - Sun, 20 Apr 2025 22:28:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/3012736/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Cookie: __cf_bm=NcmE6tP2no4JxLq34m7_MAnZgUgxKX7RU.MKDPKxAXc-1742002440-1.0.1.1-q9nmYY7FxzwyFVZQqKsfc_7Wn99BnkeXGuLgT0tTMRTpIRky6Kolvqf1ZKVcUeWgtzqoLWl3A.k2ZAQWG1zUDKmMg.ovH3ao3jeVFX5BDnA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: yzAHWuo9pRHtzWVP7F/6fjtuytZz0ZP4DVQ1GqmmBOLn+OrGP7/1AyJL+SCLfy3Jr6dr8plEdkg=
x-amz-request-id: WN7AC36GXPGTN8CJ
last-modified: Wed, 05 Feb 2025 17:24:11 GMT
etag: W/"c6da074f886c02127e85a4233b9685e4"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: kx3IKsESPEV5EQjHuqqs1Rep6bdJD1bj
access-control-allow-origin: https://www.ntiva.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Sat, 15 Mar 2025 01:38:59 GMT
content-encoding: gzip
x-envoy-upstream-service-time: 77
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: b95932db-bb4c-4b47-86c3-ecbb48682504
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-fbbff5ddb-dfg6t
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: b95932db-bb4c-4b47-86c3-ecbb48682504
cf-cache-status: HIT
age: 4
server: cloudflare
cf-ray: 920844304c645694-OSL
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtm.js?id=GTM-5X4TV6L
200 OK 368 kB URL GET www.googletagmanager.com/gtm.js?id=GTM-5X4TV6L
IP
Certificate IssuerGoogle Trust Services
Subject*.google-analytics.com
FingerprintAE:1B:D4:56:41:F7:15:A7:24:B8:F3:55:83:91:17:2C:97:12:67:6E
ValidityWed, 26 Feb 2025 15:32:54 GMT - Wed, 21 May 2025 15:32:53 GMT
File type JavaScript source, ASCII text, with very long lines (11498)
Size 368 kB (368494 bytes)
Hash 74ac7a579a2255750489420e54349a95
026301217746f19088494c600019187827d91113
edea9b7b2e1e8d0d002b0d2b930b6fffdb781083d96fbe75e15a29222ccfad0a
GET /gtm.js?id=GTM-5X4TV6L HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 15 Mar 2025 01:34:02 GMT
expires: Sat, 15 Mar 2025 01:34:02 GMT
cache-control: private, max-age=900
last-modified: Sat, 15 Mar 2025 00:20:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1262:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1262:0
report-to: {"group":"ascgcycc:1262:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1262:0"}],}
server: Google Tag Manager
content-length: 124117
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET cdn2.hubspot.net/hub/3012736/hub_generated/template_assets/33584649380/1635176457952/Coded_files/Custom/page/Ntiva_2017/Epic_Ntiva_Basic_2020_style.min.css
200 OK 24 kB URL GET cdn2.hubspot.net/hub/3012736/hub_generated/template_assets/33584649380/1635176457952/Coded_files/Custom/page/Ntiva_2017/Epic_Ntiva_Basic_2020_style.min.css
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjecthubspot.net
FingerprintB4:C5:2D:3A:69:E7:24:D6:52:14:12:86:EF:7E:06:BB:D3:96:1A:40
ValiditySun, 02 Feb 2025 14:33:09 GMT - Sat, 03 May 2025 15:32:58 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /hub/3012736/hub_generated/template_assets/33584649380/1635176457952/Coded_files/Custom/page/Ntiva_2017/Epic_Ntiva_Basic_2020_style.min.css HTTP/1.1
Host: cdn2.hubspot.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Cookie: __cf_bm=EGVhIDHSbyMiJ1086uY1vn6dWF8SdmySpTZl7X1lVyM-1742002439-1.0.1.1-uPMSxSgFqU_7tTWusdv71RAFU8NqAwXb9t299P9aH9N9F.YEX8DFseHUz.AXEMJAjzt69BUUSytftNH8Ox0cyT5fLH_5ImivUoBXkfzxvWQ
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: text/css
cf-ray: 9208442f8c630b65-OSL
cf-cache-status: HIT
access-control-allow-origin: *
age: 138104
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
content-encoding: gzip
etag: W/"a2a929fc9ec0e9731815ddcfaceff783"
last-modified: Mon, 25 Oct 2021 15:40:59 GMT
vary: Accept-Encoding
access-control-allow-methods: GET
timing-allow-origin: cdn2.hubspot.net
x-amz-cf-pop: IAD89-C1
x-amz-meta-created-unix-time-millis: 1635176458024
x-amz-replication-status: COMPLETED
x-amz-server-side-encryption: AES256
x-envoy-upstream-service-time: 175
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-cdn2-td/envoy-proxy-7bc58b7fb6-9fg76
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: 5ed12ec7-96dc-41a9-b527-4d314dfc47a9
x-request-id: 5ed12ec7-96dc-41a9-b527-4d314dfc47a9
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pm8nuAALqS2syFBlNciQ9vQ6bB%2FyZQnO14IABZj16%2FJuVLYI7H1Czxdx2Lbo0X9oRbcpR15fDhGBqUUwM4Nwsh55Sh0%2Bh2EWKLAq8brSR4YtwabTgIwnqiFr1QFVsYh5Fbg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
301 Moved Permanently 136 kB IP
Certificate IssuerLet's Encrypt
Subjectforms.ntiva.com
FingerprintA8:75:90:37:C5:33:E1:B2:0C:36:75:38:1E:8F:F0:67:93:06:BA:C6
ValidityFri, 14 Feb 2025 04:54:00 GMT - Thu, 15 May 2025 04:53:59 GMT
Size 136 kB (135811 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
location: https://www.ntiva.com/
content-length: 230
content-type: text/html; charset=iso-8859-1
date: Sat, 15 Mar 2025 01:33:56 GMT
server: Apache
X-Firefox-Spdy: h2
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/template_assets/123518033993/1688611517327/ntiva-2023/css/page/home.min.css
200 OK 650 B URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/template_assets/123518033993/1688611517327/ntiva-2023/css/page/home.min.css
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (650), with no line terminators
Hash 825c7d5abda347da314b9463ca24202a
4ca565235d8827f82fa2a6f7d3030644151612d3
5c1df9e2dbb61986a8456ddd0e6fcb97b08187b7203fd9ec2775c7485479ad10
GET /hs-fs/hub/3012736/hub_generated/template_assets/123518033993/1688611517327/ntiva-2023/css/page/home.min.css HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: text/css
cf-ray: 9208440219ef9312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
etag: W/"825c7d5abda347da314b9463ca24202a"
last-modified: Thu, 06 Jul 2023 02:45:18 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 7c4bbd97f5be908e33f403c3794f629a.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: ImS2XqXp01_YvQvsAJEhyjANKbiQaaHINH-SHWVU9h_VwaQHJvBubg==
x-amz-cf-pop: IAD89-C1
x-amz-id-2: bM4zHGZlDxoojnTKzZZ3slbWMSJsE2UyL+2nxXY9Duw+EAyjrBXCe9sj2ki0ti6sAayGEjONtkKMqyiI1NdaC8KaLt/vA8RlYsj/2O1XdH8=
x-amz-meta-created-unix-time-millis: 1688611517931
x-amz-replication-status: COMPLETED
x-amz-request-id: GS8BA5NWFDM5P79D
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: Ugju29dohVOscoal.6LGucdDtLqesTqR
x-cache: RefreshHit from cloudfront
x-envoy-upstream-service-time: 141
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-7849459c5c-nnksg
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: 6a86b728-1ef2-4e09-b072-9f5700f87f9d
x-request-id: 6a86b728-1ef2-4e09-b072-9f5700f87f9d
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=beGTVuZaNYjWRgbgYXyGosSq8q05ow7w4MFGSNP4cD6w5raynILeLd3HEU4V2%2B07KiEPBPdWPpbkYhgcqHx916YdwvzTIfCjxFht5A1iiQ9PX9yz2bNGLGaCIgpUZBM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109424039347/1722926731929/module_109424039347__header.min.css
200 OK 270 B URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109424039347/1722926731929/module_109424039347__header.min.css
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with no line terminators
Hash ea9c93f08deef559485ae605661c3454
6c19fe8893283bf9c9666326aaeb3b8632bb0501
0de75ca466d3156215bc31b054c1d6c93f52c38108c9abbc89dfe58c5558ec95
GET /hs-fs/hub/3012736/hub_generated/module_assets/109424039347/1722926731929/module_109424039347__header.min.css HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: text/css
cf-ray: 9208440229f89312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
etag: W/"ea9c93f08deef559485ae605661c3454"
last-modified: Tue, 06 Aug 2024 06:45:32 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 16dfaf786e60aa9bf3b94684a08564c6.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: PDMrHGDWqQK90cdrVo2_U0j5FtI2j9hIYT8noe8usShmO1g58EwAzQ==
x-amz-cf-pop: IAD61-P1
x-amz-id-2: PJBeueSIhlId8ogd5jh+DiByeAGtNfSHV1GUQBqqMVsh/Avy3GIyuV5CS/iUklD8+k3znQcKOS8uCqr+HdjbxsI7trPhw+n0kXJai0Afg6Q=
x-amz-meta-created-unix-time-millis: 1722926731929
x-amz-replication-status: COMPLETED
x-amz-request-id: C6W5X30XDFKEP36W
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: 3a6nfZ7VjpZm7BZX2UB4NI1ILmUZ_vsw
x-cache: RefreshHit from cloudfront
x-envoy-upstream-service-time: 175
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-5689dcb94b-s5c5z
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: e6b5d17d-932b-4ea9-8e58-3f3a2a804e03
x-request-id: e6b5d17d-932b-4ea9-8e58-3f3a2a804e03
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xnSCEkcxw3m0zlc8a%2Fq4uy5kc89hYhYPalk5hyg%2BYPWrPuBXmhUW2PQwopzhwDYqIcQgzotWtcRwGeOfZ4feuP06QMS9aX47zBi9guCW3BwZZY3cJI4IiIU9aoJhP84%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109503576739/1688510787809/module_109503576739_home-strategic.min.css
200 OK 1.6 kB URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109503576739/1688510787809/module_109503576739_home-strategic.min.css
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (1624), with no line terminators
Hash 787c8c03bb6082227714be8631c1cbaa
d9b2a963e8c9122024c1d6a4f497df01c2a7d6db
cb49ea5765f4bedf3b5ba7b3f44517c90d94157cbbc8539f86bc0f49279a41e7
GET /hs-fs/hub/3012736/hub_generated/module_assets/109503576739/1688510787809/module_109503576739_home-strategic.min.css HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: text/css
cf-ray: 9208440229fb9312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
content-encoding: gzip
etag: W/"787c8c03bb6082227714be8631c1cbaa"
last-modified: Tue, 04 Jul 2023 22:46:28 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 824fe21e467658628899bdd8725649ee.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: PkFMAxji2dP8zkyCCkybIHTANDQNYa04e4r3Of_BSrpABL_ro4en0g==
x-amz-cf-pop: IAD89-C1
x-amz-id-2: 4O6OSKgerptEgvyiBw0N1bwdnl1aK4jztmZFHw5E3+/oF0uWLY6LCQ1T2pATZMGKr+VOWWCtxhk=
x-amz-meta-created-unix-time-millis: 1688510787809
x-amz-replication-status: COMPLETED
x-amz-request-id: EEEBDBHZ377753BG
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: ZGC4bHA3Ef4XOHrstmtxxulyAPtY8vwO
x-cache: RefreshHit from cloudfront
x-envoy-upstream-service-time: 178
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-54797cf595-ccrqb
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: e118afe9-2628-47a1-b32b-838cd5f14102
x-request-id: e118afe9-2628-47a1-b32b-838cd5f14102
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=69AiTkENypW01Vdb0OdrbR%2FcU6aAUa434YMLpUAYrgbnNpD7AEQJ0HMzi1G5Dz15aTLqRGBpgvA%2FrOfVHIYqiXOUAgKaEkgCcaGoD4kwIEvG6T0IgQgsGW0hy%2BnJiiE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hubfs/ADHA-logo-gry.png?width=103&height=45&name=ADHA-logo-gry.png
200 OK 2.1 kB URL GET www.ntiva.com/hs-fs/hubfs/ADHA-logo-gry.png?width=103&height=45&name=ADHA-logo-gry.png
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash aa47d9682338ec29d17f67a91a8e5481
e31d6250f946c84f9bf8c227399fb33f648e490a
8f6d8ecce2a97900b573245d1cefe56a62ab03475c9504647e8d43abafa44a87
GET /hs-fs/hubfs/ADHA-logo-gry.png?width=103&height=45&name=ADHA-logo-gry.png HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 2070
cf-ray: 9208440e3dea9312-CPH
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfhK5WPMuftZvU8OoRPwyozFr90Mg1CEZaBpal0KlMDQ:7bd3b8212476fd01e588f7e145a68a46"
last-modified: Thu, 21 Sep 2023 18:15:54 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 1db03b964c596a103fbc1af4b6ebb7c4.cloudfront.net (CloudFront)
cache-tag: F-135977138766,P-3012736,FLS-ALL
cf-bgj: imgq:86,h2pri
cf-resized: internal=ok/m q=0 n=478+3 c=0+3 v=2025.3.1 l=2070 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lMhgzx4EH2L32vwZgXEILLX9vqJbm5PEzHcbrfGL7VFrvm6eKCZmy5hhUG%2BCK%2Ba55dYZdtXji1pKQ3wMoNB7CQCudj7W%2FZs2aEp208pIV4Sww%2BVTWjnmMett0YSS%2Fb4%3D"}],"group":"cf-nel","max_age":604800}, {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=ewBnXP0Tsycbx5ZhOMczkTu1H_8dPE6x9sD3089OZnE-1742002439-1.0.1.1-EBFFGaX0uPsJ8runzKot3iBELaOGiLNlBc4BjGWmE4hT2kNSKRhfPQuVaNn3iZKX58wZH9NhJCnfZZfsqvkfc1zvIRY1DfOUDWA823gTCq59UcZcuzEhPCv6aQSg8HE8nWGZ9PxeZhRdIQyj2Mn.1g"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=ewBnXP0Tsycbx5ZhOMczkTu1H_8dPE6x9sD3089OZnE-1742002439-1.0.1.1-EBFFGaX0uPsJ8runzKot3iBELaOGiLNlBc4BjGWmE4hT2kNSKRhfPQuVaNn3iZKX58wZH9NhJCnfZZfsqvkfc1zvIRY1DfOUDWA823gTCq59UcZcuzEhPCv6aQSg8HE8nWGZ9PxeZhRdIQyj2Mn.1g; report-to cf-csp-endpoint
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET settings.luckyorange.com/a8b01208
200 OK 4.6 kB URL GET settings.luckyorange.com/a8b01208
IP
ASN #396982 GOOGLE-CLOUD-PLATFORM
Certificate IssuerLet's Encrypt
Subjectsettings.luckyorange.com
Fingerprint6D:AC:D1:53:0D:E1:EA:68:57:FC:38:B5:3F:3D:BA:83:54:35:79:C6
ValidityThu, 06 Feb 2025 23:03:02 GMT - Wed, 07 May 2025 23:03:01 GMT
File type troff or preprocessor input, ASCII text, with very long lines (5198), with no line terminators
Hash 4b6ce856e09504432dc343ad743cbc38
1740a561dcf90c20769a5f448bc956f5f401b2da
a3d27bfcac1cdaa5fe13e7467ac295494ccd066918b17e616348dc98fc9ee775
GET /a8b01208 HTTP/1.1
Host: settings.luckyorange.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
x-lucky-uid: undefined
x-lucky-referrer:
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.ntiva.com
access-control-allow-credentials: true
content-type: application/json; charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
date: Sat, 15 Mar 2025 01:34:01 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET d10lpsik1i8c69.cloudfront.net/w.js
200 OK 5.3 kB URL GET d10lpsik1i8c69.cloudfront.net/w.js
IP
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerAmazon
Subject*.cloudfront.net
Fingerprint28:D3:87:79:3C:E8:8B:3C:D9:10:45:E5:F7:64:7A:6D:44:4E:5A:62
ValidityTue, 30 Jul 2024 00:00:00 GMT - Thu, 03 Jul 2025 23:59:59 GMT
File type JavaScript source, ASCII text, with very long lines (5489), with no line terminators
Hash bec974f936e6fbb394951933bccc9710
dff36aa53b5d74325ff68454f2eee7ba94600ecc
c1037850c3b60666fc01d89dd3a4bae7afc0b5b7c4444b638b556e45ce475aa3
GET /w.js HTTP/1.1
Host: d10lpsik1i8c69.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 25 Jan 2024 18:19:40 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
server: AmazonS3
date: Sat, 15 Mar 2025 01:07:32 GMT
cache-control: max-age=3600
etag: W/"e31293f40e8a324de552ff593ee76a9b"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pb2Q0vWR17UH_ZFzXfmG5__hsWxyzKN71hPeCE1JuOfm2ofet_Jk0g==
age: 1596
X-Firefox-Spdy: h2
GET www.ntiva.com/hs/hsstatic/jquery-libs/static-1.4/jquery/jquery-1.11.2.js
200 OK 96 kB URL GET www.ntiva.com/hs/hsstatic/jquery-libs/static-1.4/jquery/jquery-1.11.2.js
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type JavaScript source, ASCII text, with very long lines (32047)
Hash 5790ead7ad3ba27397aedfa3d263b867
8130544c215fe5d1ec081d83461bf4a711e74882
2ecd295d295bec062cedebe177e54b9d6b19fc0a841dc5c178c654c9ccff09c0
GET /hs/hsstatic/jquery-libs/static-1.4/jquery/jquery-1.11.2.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: application/javascript
cf-ray: 9208440219f39312-CPH
cf-cache-status: HIT
age: 28893
cache-control: public, max-age=31536000
content-encoding: gzip
etag: W/"5790ead7ad3ba27397aedfa3d263b867"
expires: Sun, 15 Mar 2026 01:33:57 GMT
last-modified: Thu, 08 Jan 2015 18:08:00 GMT
set-cookie: __cf_bm=JMd3RyEhGzzEosuh2bEYewLKnnRQH3I7zYCcL6lUqCQ-1742002437-1.0.1.1-V5JsKEcKzC2Rr5w36lhrB0yYujdSOcLT5GxkSyjV4H8MFvvN96lJIXrZeXxap0sLrKDUv1U2KnXReXCVmg60TDUM0zjggGL06Pxez6P9qe0; path=/; expires=Sat, 15-Mar-25 02:03:57 GMT; domain=.hubspotusercontent.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: accept-encoding
via: 1.1 d5d7b369f72f565a0dffcd2db50ec516.cloudfront.net (CloudFront)
x-amz-cf-id: IqqEa6QsiPtNuCCPcVzM39r-mgrJaeJzmzbp2V1tHWtC-xZo0jJ6Cw==
x-amz-cf-pop: ARN56-P2
x-amz-version-id: null
x-cache: Hit from cloudfront
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6MPwEXKk0E0hgNgCuj69dna5M2vmS08gZRNPRB3vF0rMSId8PllVArhmVqjVWO0TdRtMzhOVi5xGrIxvqZBmOEs0I6BDUhYXV6AA0RHzSgpX0YbdoOuLOJgF1fwgWlQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109506047289/1688672013018/module_109506047289_home-happy.min.css
200 OK 1.5 kB URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/module_assets/109506047289/1688672013018/module_109506047289_home-happy.min.css
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (1518), with no line terminators
Hash c7243a706c57cdcf3d90367130b44f9b
8a62efa917a5fde811819f4499077bf985b0af9c
306421f2886f004108b98d2d079b9683265782653695cbf015d2b7ad7a52184b
GET /hs-fs/hub/3012736/hub_generated/module_assets/109506047289/1688672013018/module_109506047289_home-happy.min.css HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: text/css
cf-ray: 9208440229fc9312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
content-encoding: gzip
etag: W/"c7243a706c57cdcf3d90367130b44f9b"
last-modified: Thu, 06 Jul 2023 19:33:34 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 041a4887d523cabe8177e269cc358162.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: ujvIqELvD4EVk8x6qgFfmqZzwPzh3HrZRQVZttVv113pBJWsaIuP3Q==
x-amz-cf-pop: IAD89-C1
x-amz-id-2: J8ez19JWBTDr6SN9LMsN6nSMotJKIzmqA8lWjXW8lmhdDiid1gDyLnvc1mDZmLyhOYqb39ZdPzg=
x-amz-meta-created-unix-time-millis: 1688672013018
x-amz-replication-status: COMPLETED
x-amz-request-id: 4E2X9XBFHED6NQQ8
x-amz-server-side-encryption: AES256
x-amz-storage-class: INTELLIGENT_TIERING
x-amz-version-id: htkCAYejZG.Z8XqcDVpB.DzY.WREqpc1
x-cache: Miss from cloudfront
x-envoy-upstream-service-time: 179
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-656644bdb-tjdnr
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: 2f00d8d7-8acd-4553-8bc0-390d70116e55
x-request-id: 2f00d8d7-8acd-4553-8bc0-390d70116e55
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SK5x%2BE29mzWoCeNaEmitNKG6yTLZTVsymoT0XOy4Dlsc4%2BIRERlIwK70r2ziR1fyQj4x%2F0F%2BwF0aoYCKP7gW88TKxFpevJ%2BxBSGDkC7zUFq3UI5OW8WZXpPsTPRxeA8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET app.hubspot.com/content-tools-menu/api/v1/tools-menu/has-permission-json?portalId=3012736
204 No Content 0 B URL GET app.hubspot.com/content-tools-menu/api/v1/tools-menu/has-permission-json?portalId=3012736
IP
Certificate IssuerGoogle Trust Services
Subjecthubspot.com
FingerprintF0:21:55:D0:0F:48:23:84:BF:11:EB:E3:D3:0C:47:2A:19:4F:7D:C9
ValidityWed, 29 Jan 2025 19:30:43 GMT - Tue, 29 Apr 2025 20:30:39 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /content-tools-menu/api/v1/tools-menu/has-permission-json?portalId=3012736 HTTP/1.1
Host: app.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Sat, 15 Mar 2025 01:33:59 GMT
cf-ray: 920844107c11569a-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://www.ntiva.com
cache-control: max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
access-control-allow-credentials: true
access-control-allow-methods: GET
report-to: {"group":"default","max_age":86400,"endpoints":[{"url":"https://send.hsbrowserreports.com/csp/reports"}]}
reporting-endpoints: default="https://send.hsbrowserreports.com/csp/reports?cfRay=920844107c11569a&resource=unknown"
x-content-type-options: no-sniff
x-envoy-upstream-service-time: 4
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-554d564d77-cm7l7
x-evy-trace-virtual-host: all
x-hs-worker-debug-mode: false
x-hubspot-correlation-id: 9b5a6471-68dc-492f-849d-568bcafc9501
x-request-id: 9b5a6471-68dc-492f-849d-568bcafc9501
set-cookie: __cf_bm=agd5AcSU4XYFdhi.Y.0rQf6nZg0TMRoLXYUtPvv5V1o-1742002439-1.0.1.1-9Shp5mqSk2ES_wrZj5ccKtXwJUv3wSzSsohGW2B1OWBlNDt5_z9cn9JWgv92fu4Q1c13AFQX8t9HMkY.UJfHdTrDwUHhQuJ6BuwPVnMGoNg; path=/; expires=Sat, 15-Mar-25 02:03:59 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
_cfuvid=11q0IPUmVBOPqmsh6WvXWXiKOP9Wqawsn_H._Gr6uGA-1742002439957-0.0.1.1-604800000; path=/; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2
GET www.ntiva.com/hs-fs/hubfs/bryles-1.webp?width=86&height=35&name=bryles-1.webp
200 OK 980 B URL GET www.ntiva.com/hs-fs/hubfs/bryles-1.webp?width=86&height=35&name=bryles-1.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 86x35, Scaling: [none]x[none], YUV color, decoders should clamp
Hash f3f3576c55be8640bcc44e31f73caff7
de17b84613e7c974d62f4496cb88836326ff6350
6b5f4e1afd7b24d6e2a62f7b267f3c59e2cc9c69542d182d786a9e331b8a9064
GET /hs-fs/hubfs/bryles-1.webp?width=86&height=35&name=bryles-1.webp HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 980
cf-ray: 9208440e2dd49312-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfas1OBMqpF6hIVrQtRHzeObtqDZ-m-h0W0Ep4kUKLDQ:f3f3576c55be8640bcc44e31f73caff7"
last-modified: Wed, 05 Jul 2023 16:29:02 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 e029c86e892e2d8a35492f6625a1d26e.cloudfront.net (CloudFront)
cache-tag: F-123506817859,P-3012736,FLS-ALL
cf-bgj: imgq:0,h2pri
cf-resized: internal=ok/h q=0 n=110+0 c=0+0 v=2025.3.1 l=980 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fcIvp9Dnkgc6ypVwk2gxSXgz2zoCD3XLjYz6ixQoWMe87RcFMdSQxbE%2B0QkQHGBtT44GcQoD4ypfHnQpfzQ%2FQXQOEBw62jZ6vFw8M79d5dKXv2WBZ1xFCNmV0bocDzE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET cta-service-cms2.hubspot.com/web-interactives/public/v1/embed/combinedConfigs?portalId=3012736¤tUrl=https%3A%2F%2Fwww.ntiva.com%2F&contentId=55167303252
200 OK 61 B URL GET cta-service-cms2.hubspot.com/web-interactives/public/v1/embed/combinedConfigs?portalId=3012736¤tUrl=https%3A%2F%2Fwww.ntiva.com%2F&contentId=55167303252
IP
Certificate IssuerGoogle Trust Services
Subjecthubspot.com
FingerprintF0:21:55:D0:0F:48:23:84:BF:11:EB:E3:D3:0C:47:2A:19:4F:7D:C9
ValidityWed, 29 Jan 2025 19:30:43 GMT - Tue, 29 Apr 2025 20:30:39 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash b2cc5f719df379e8c29730a3dbb0328a
42b9e82168c187e31f435e97d480cd6918ce2d39
6a8f9203c76029dd01644d804e1a6c5c80bf10caf266458a1a337d4b882044c7
GET /web-interactives/public/v1/embed/combinedConfigs?portalId=3012736¤tUrl=https%3A%2F%2Fwww.ntiva.com%2F&contentId=55167303252 HTTP/1.1
Host: cta-service-cms2.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:34:00 GMT
content-type: application/json;charset=utf-8
vary: origin
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Content-Type, Host, Origin, Referer, User-Agent
access-control-allow-credentials: true
x-content-type-options: nosniff
access-control-allow-origin: https://www.ntiva.com
access-control-allow-methods: OPTIONS, GET
access-control-max-age: 180
cache-control: max-age=0, no-cache, no-store
x-robots-tag: noindex, follow
x-envoy-upstream-service-time: 20
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 7cf68234-7adf-490f-841e-5706527e04df
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-5c76648889-lwhl2
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 7cf68234-7adf-490f-841e-5706527e04df
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FUiY0VCSPi6DNEYHSGpJCvy8bTU4V2pym1Tz7yBx4aXijIsgThyI1Lvb1VPAcGe21NHY08cF1%2F%2FHMor4%2FwaWFYMZKmUfLNPpioOup5DfQSGZEvMafTieFl0%2B5QPzvJftkHrKxBTZgk%2Bcib%2Fmoj0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
set-cookie: __cf_bm=DSVsqNhGthUUE8diqktkJZ5iMZVEmcbMVwH0MMpTDG8-1742002440-1.0.1.1-QI5_zZzYfWbgbf6mnsOPD1y3UFldpfvLmuDWunorP5ON3dyDIfmLUiy6E55PZFbyCFXVNRuqKIksFXTYZTRyiJv.c.CMjFKCZXHLp0UDxzQ; path=/; expires=Sat, 15-Mar-25 02:04:00 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
_cfuvid=0fFbKl68AoaNsgI6tx1qq7Ke08OJKLmKi2.OrlMO7Ks-1742002440905-0.0.1.1-604800000; path=/; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 92084416cd6c0afa-OSL
content-encoding: br
X-Firefox-Spdy: h2
GET www.ntiva.com/hs-fs/hubfs/Alfa-Tools-Logo-gray.png?width=87&height=45&name=Alfa-Tools-Logo-gray.png
200 OK 3.7 kB URL GET www.ntiva.com/hs-fs/hubfs/Alfa-Tools-Logo-gray.png?width=87&height=45&name=Alfa-Tools-Logo-gray.png
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type RIFF (little-endian) data, Web/P image
Hash 207b3ad84c4b79c6cf4e7349483c4469
9f598d03e9c11aed10b2909422912d9d0a5e35ad
de668bfcc3490c18b720c67b490da6016baf5f1ad74ce1232c05a787d258eddc
GET /hs-fs/hubfs/Alfa-Tools-Logo-gray.png?width=87&height=45&name=Alfa-Tools-Logo-gray.png HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:58 GMT
content-type: image/webp
content-length: 3744
cf-ray: 920844025a079312-CPH
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "cfv-UX18oSY3f7gYv2YbJRHVzNONxmKjOvURuhF9J1DQ:8ab5fc0307a69e1ea132260896cb609e"
last-modified: Thu, 21 Sep 2023 18:03:43 GMT
strict-transport-security: max-age=31536000
vary: Accept, Accept-Encoding
via: 1.1 ef955f95d080740af1e658b6929731ce.cloudfront.net (CloudFront)
cache-tag: F-135977275311,P-3012736,FLS-ALL
cf-bgj: imgq:100,h2pri
cf-resized: internal=ok/m q=0 n=464+6 c=0+6 v=2025.3.1 l=3744 f=false c2=0
content-security-policy: default-src 'none'; navigate-to 'none'; form-action 'none'
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-content-type-options: nosniff
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=btqz8mcTQJMGfx8OfEUBqM3CBqEnwdJYUXEnSdNip3LkPFo1%2FDLddZnvSMc8xawV8FvxL7RF9zNum5HDsfqXZmSKp%2Bbw6as9nKuMXt1mlQu3HfG2qT0%2BLJaR94HnulA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET www.ntiva.com/hs/scriptloader/3012736.js
200 OK 2.5 kB URL GET www.ntiva.com/hs/scriptloader/3012736.js
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (2655), with no line terminators
Hash 49c35e50843a9eb97804c101dd71892f
3ffc86792d1c1c610571ba2b35cd3d5c54bde70a
033011965bf2dc796ee1c203a259b28e9b471d5d9ddc85940c9fb4a7acf0bf51
GET /hs/scriptloader/3012736.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:57 GMT
content-type: application/javascript;charset=utf-8
content-length: 682
cf-ray: 920844026a129312-CPH
cf-cache-status: EXPIRED
accept-ranges: bytes
access-control-allow-origin: https://www.ntiva.com
cache-control: public, max-age=90
content-encoding: gzip
expires: Sat, 15 Mar 2025 01:35:27 GMT
last-modified: Sat, 15 Mar 2025 01:33:57 GMT
set-cookie: __cf_bm=bwfY4XcTENO9V0Uky1UFedXQ3clJA7_otxaPunWc81k-1742002437-1.0.1.1-jyfHCM4UPcGiN.JPQqkG9IUB762gDhFtcY6lw9Mfo29095liTz2m.V4s.o5oOI8J3x2XCUvstrXS7ohZY0cyWljTiCFZVWpkc4KU_ELmd5Q; path=/; expires=Sat, 15-Mar-25 02:03:57 GMT; domain=.hs-scripts.com; HttpOnly; Secure; SameSite=None
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
access-control-allow-credentials: true
access-control-max-age: 3600
content-security-policy: upgrade-insecure-requests
x-content-type-options: nosniff
x-hubspot-correlation-id: c9b72d24-6b34-8566-d727-194f4c24b50c
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3FqfUVTx5e4ObWsyyEpK2gXPavKuJZh9gZoBp%2Bhj%2Fm%2F5788l%2FvXyRl%2FvUMJ%2BqOJb8oppzYtRhnPuVWSuXNtoGo6%2BYRRWkXj0GuToO9cF3169N3gbtn8lh9m7F5JK9Mg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
200 OK 48 kB URL GET fonts.gstatic.com/s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2
IP
Certificate IssuerGoogle Trust Services
Subject*.gstatic.com
FingerprintA4:5F:89:8D:68:B4:5F:99:BE:F5:66:6F:C1:5E:A5:8C:72:BF:1E:D5
ValidityWed, 26 Feb 2025 15:33:59 GMT - Wed, 21 May 2025 15:33:58 GMT
File type Web Open Font Format (Version 2), TrueType, length 48496, version 1.0
Hash 8b7943a41013101d892c4684617ed41d
1853b95f5ae2cc51c89edf6f2c44a676efe31f3b
9d9e7b21769c8048b64fbdc1743c32641c3aa1c70c37197987ffe14d0f0508cd
GET /s/inter/v18/UcC73FwrK3iLTeHuS_nVMrMxCp50SjIa1ZL7W0I5nvwU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.ntiva.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Mar 2025 09:23:55 GMT
expires: Fri, 13 Mar 2026 09:23:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Jul 2024 22:47:09 GMT
content-type: font/woff2
age: 144604
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET go.ntiva.com/hubfs/card-cloud-solutions.webp
200 OK 19 kB URL GET go.ntiva.com/hubfs/card-cloud-solutions.webp
IP
ASN #209242 Cloudflare London, LLC
Certificate IssuerGoogle Trust Services
Subjectgo.ntiva.com
FingerprintAA:6A:75:2E:78:01:5A:33:93:C9:62:EB:DF:32:EB:C3:EB:05:0E:00
ValidityFri, 28 Feb 2025 02:52:37 GMT - Thu, 29 May 2025 03:52:33 GMT
File type RIFF (little-endian) data, Web/P image
Hash 6e59886a67829cea99358df70a6443e5
d9416fcaf889512b98e8e8f197e97b82063e74cd
19ea49ea637eaf93014da2babcff52ffae5177584f6799eba4dafb32f0153fbb
GET /hubfs/card-cloud-solutions.webp HTTP/1.1
Host: go.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=JQBTlAck62DAc3oTYlcJJb5hKWPlhRzenFyEHZh2DVc-1742002436-1.0.1.1-PTKGq0Nr8EdKYXpOKE9U.SXRAu8.0EezSFhsnBY84c4Y9dEIEphwGTfW1u5gcsw9WQHbmupWKurnuRcfl1Nv5RW.ROINMWUKS3F8xOW2mmk; _cfuvid=Dk0hkGulc2C3VGo7R3dwfEltgMcVUr9diqlEG6nNg6k-1742002436226-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:33:59 GMT
content-type: image/webp
content-length: 19280
cf-ray: 9208440e8a402625-CPH
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900
etag: "6e59886a67829cea99358df70a6443e5"
last-modified: Wed, 05 Jul 2023 15:25:37 GMT
strict-transport-security: max-age=31536000
vary: Accept-Encoding
via: 1.1 38f2e8dfe4a6e6a8f81d75aed457ec00.cloudfront.net (CloudFront)
access-control-allow-methods: GET
cache-tag: F-123492949081,P-3012736,FLS-ALL
edge-cache-tag: F-123492949081,P-3012736,FLS-ALL
timing-allow-origin: d8fk70yj6xfhx.cloudfront.net
x-amz-cf-id: BlHhOFqChtEMck7wu7WIJ7tBi3SVlfwyFByVTOhb7hdYIrtIH1iypA==
x-amz-cf-pop: ARN53-P1
x-cache: Miss from cloudfront
x-hs-alternate-content-type: text/plain
x-robots-tag: all
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xA5zhwbHA3u4Pzu8zqcmbIQtK%2F%2BjuXmHjEQK%2Bu%2FGYTODKmZ3J4d6UNJUPeOKSBXQPBo06LDKyoFtD5fhlz1%2B2SYXj44ZBXCCCv6UFefNN3oDxzoBIGEjO94TdER11g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET static.getclicky.com/js
200 OK 12 kB IP
Certificate IssuerLet's Encrypt
Subject*.getclicky.com
Fingerprint1E:20:74:CB:BD:76:FF:CF:41:9B:17:DF:D0:96:EA:16:45:1E:9F:3F
ValiditySun, 19 Jan 2025 19:21:15 GMT - Sat, 19 Apr 2025 19:21:14 GMT
File type JavaScript source, ASCII text, with very long lines (11949), with no line terminators
Hash d1b86b9e8552e368ab68e1ff0043c582
23a5452010b7728405cf4f594931a04e0f45ee0d
df55f93e427d967cfd870062537ee200479a16bcf84284e49111b15998205658
GET /js HTTP/1.1
Host: static.getclicky.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sat, 15 Mar 2025 01:34:00 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
cache-control: max-age=604800
x-proxy-cache: MISS
content-encoding: gzip
last-modified: Wed, 12 Mar 2025 22:56:14 GMT
cf-cache-status: HIT
age: 182261
server: cloudflare
cf-ray: 92084413aa227129-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.ntiva.com/hs-fs/hubfs/hub_generated/template_assets/1/52381071736/1741778233495/template_Ntiva_2021_style.min.css
200 OK 156 kB URL GET www.ntiva.com/hs-fs/hubfs/hub_generated/template_assets/1/52381071736/1741778233495/template_Ntiva_2021_style.min.css
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 156 kB (156117 bytes)
Hash ce6475c761ca7db4f8e7a24fb49cdfa3
5d84d254ad1783c9b59c113cae795427118d4bf3
d90fcb5d8660d262941f826b0a2e4e9682c4a0fb52d91fe275cb7bd48e722135
GET /hs-fs/hubfs/hub_generated/template_assets/1/52381071736/1741778233495/template_Ntiva_2021_style.min.css HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/cheq-ppc-invalid-users
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441; _cq_duid=1.1742002442.vKqCNSj5XUxI2aZ7; _cq_suid=1.1742002442.Feq1i50o6EVlK9Gv
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: text/css
cf-ray: 9208442c08fb9312-CPH
cf-cache-status: HIT
cache-control: public, max-age=60
content-encoding: gzip
etag: W/"ce6475c761ca7db4f8e7a24fb49cdfa3"
last-modified: Wed, 12 Mar 2025 11:17:16 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 14d757a67b913f1bc93427e69819362c.cloudfront.net (CloudFront)
access-control-allow-credentials: false
cache-tag: F-187211397472,FD-187211446867,P-3012736,FLS-ALL
edge-cache-tag: F-187211397472,FD-187211446867,P-3012736,FLS-ALL
timing-allow-origin: www.ntiva.com
x-amz-cf-id: 4NQeUOvrN5lArIVcPTESoQnEkEnc5lV3fbfN54AxhiQTDLB8V1jR_w==
x-amz-cf-pop: IAD89-C1
x-cache: Miss from cloudfront
x-envoy-upstream-service-time: 209
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-7f89d4c7c5-t5zt6
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hubspot-correlation-id: c9058bfd-198d-49d9-a927-42b1758255e0
x-request-id: c9058bfd-198d-49d9-a927-42b1758255e0
x-robots-tag: none
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nVUfHsf0amTWF1kKKYfR6BygvOwar25aoeHtU7fBw2uZgWJT4TzU3IM%2FoaaGYu0v1lR%2B0h9HlVze8iz8vS7FAlQz9pQzFUCdPsBshlT%2BedEWnG12xQdWS6bmAsWCPPA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET ob.segreencolumn.com/i/da6ef38172f548492c31485ab9feeb67.js
200 OK 110 kB URL GET ob.segreencolumn.com/i/da6ef38172f548492c31485ab9feeb67.js
IP
Certificate IssuerAmazon
Subject*.segreencolumn.com
FingerprintFD:2D:DA:6D:B8:69:17:D5:E7:49:1E:91:EC:08:3D:52:F6:BB:17:A9
ValidityTue, 18 Jun 2024 00:00:00 GMT - Thu, 17 Jul 2025 23:59:59 GMT
Size 110 kB (109627 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /i/da6ef38172f548492c31485ab9feeb67.js HTTP/1.1
Host: ob.segreencolumn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 40015
content-encoding: gzip
server: Caddy
date: Fri, 14 Mar 2025 21:09:05 GMT
cache-control: max-age=43200
expires: Sat, 15 Mar 2025 07:58:20 GMT
etag: "1ac3b-AW7xAUyC0vv733AlMBlQ2pcu3Mc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xs7XrSu4wwXKa0HoKumKZjwB2SKsGAKoYCC6flQwZyqBFoXstUpeww==
age: 20140
X-Firefox-Spdy: h2
GET forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1
200 OK 35 B URL GET forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1
IP
Certificate IssuerGoogle Trust Services
Subjecthsforms.com
FingerprintB7:57:C2:9C:80:E0:37:32:A6:85:49:69:E2:39:B8:7B:E3:5B:DE:41
ValidityWed, 05 Feb 2025 21:07:47 GMT - Tue, 06 May 2025 22:07:28 GMT
File type GIF image data, version 89a, 1 x 1
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1 HTTP/1.1
Host: forms-na1.hsforms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.ntiva.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 15 Mar 2025 01:34:00 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Cache-Control: max-age=0, no-cache, no-store
vary: origin
access-control-allow-credentials: false
x-content-type-options: nosniff
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
x-envoy-upstream-service-time: 2
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 1326d886-2d25-4b30-b672-dd2bc58c3fc8
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-5c76648889-bft7g
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 1326d886-2d25-4b30-b672-dd2bc58c3fc8
cf-cache-status: DYNAMIC
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Set-Cookie: __cf_bm=2I.HNuy4u882RCoyYWTDKEFhjbtEW0cc7yKbxx.FVeY-1742002440-1.0.1.1-W7ro8exrYISlxWBY5IVPq6_T7idAQIPgWoev1dLqhSdDXf6bfXYepB2V9D1oh8jt9tlvfg2FELaZ5uwG0H4Xsc6ZgpNKn5gpAaiVX7mg3us; path=/; expires=Sat, 15-Mar-25 02:04:00 GMT; domain=.hsforms.com; HttpOnly; Secure; SameSite=None
_cfuvid=8kn62EE70PJOkU2sWdjPi43_EMbxE9s5EjmQIxX9xQw-1742002440724-0.0.1.1-604800000; path=/; domain=.hsforms.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 92084415dab7569d-OSL
alt-svc: h3=":443"; ma=86400
GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/template_assets/5204755363/1625755888768/Coded_files/Custom/page/company_theme/CompanyMain.js
200 OK 1.1 kB URL GET www.ntiva.com/hs-fs/hub/3012736/hub_generated/template_assets/5204755363/1625755888768/Coded_files/Custom/page/company_theme/CompanyMain.js
IP
ASN #209242 Cloudflare London, LLC
Requested by https://www.ntiva.com/cheq-ppc-invalid-users
Certificate IssuerGoogle Trust Services
Subjectwww.ntiva.com
Fingerprint43:B2:97:73:39:E3:E2:4B:8A:19:D5:8C:46:72:64:FF:6F:1F:77:7F
ValidityFri, 28 Feb 2025 06:34:09 GMT - Thu, 29 May 2025 07:34:00 GMT
File type JavaScript source, ASCII text, with very long lines (1163), with no line terminators
Hash 18057dc83a1a863a7dac037947cf8959
fe75016bd0728ab7680d2add73b327dec0052e75
00c62c8b83e7dd2d2c1bf1713bcb9b0665b9c03d9a9be0830cd4fdfaed6d806e
GET /hs-fs/hub/3012736/hub_generated/template_assets/5204755363/1625755888768/Coded_files/Custom/page/company_theme/CompanyMain.js HTTP/1.1
Host: www.ntiva.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ntiva.com/cheq-ppc-invalid-users
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=d93me2zXjiTDRiV3ZREFkglfrbiTF2N6AX6B.G3nHi8-1742002436-1.0.1.1-bUTdFXpwP.BvN6Bw1Drb4jUQrcml5LSd2xxb8aOekfPJylZb3aFmHgImtNrdlDGZG0pR4YINXB8X1hFcM1q61KViPEW5C2L4llqARdruIA8; _cfuvid=u.c1Ldy_LKr.74Y9KNoiEz8KCVThsCriUIh2kCGRQRg-1742002436845-0.0.1.1-604800000; _gcl_au=1.1.1313079655.1742002439; _ga_JKTPCKN83D=GS1.1.1742002440.1.0.1742002440.60.0.357826396; _ga=GA1.1.105610842.1742002441; _cq_duid=1.1742002442.vKqCNSj5XUxI2aZ7; _cq_suid=1.1742002442.Feq1i50o6EVlK9Gv
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sat, 15 Mar 2025 01:34:04 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 9208442c19069312-CPH
cf-cache-status: HIT
cache-control: s-maxage=2592000, max-age=1209600, stale-while-revalidate=900,s-maxage=31536000, max-age=31536000
etag: W/"fde2e5280f9294d5d3e5337f2fb21af5"
last-modified: Thu, 08 Jul 2021 14:51:29 GMT
strict-transport-security: max-age=31536000
vary: origin, Accept-Encoding
via: 1.1 824fe21e467658628899bdd8725649ee.cloudfront.net (CloudFront)
access-control-allow-credentials: false
timing-allow-origin: www.ntiva.com
x-amz-cf-id: C2m0d50iBVOr9wsE6YfxlrqCGxXL9yo8ci20d-AMNbTdVp2hDh27GQ==
x-amz-cf-pop: IAD89-C1
x-amz-id-2: 6TvWxPv/uZqA4a9zzZkKhP+HpFmoZs1CNYVTX0d5hQX2hv6unN28ifSCxItqiKc+F6goY6f4OF9jZQpYanLXZTzJTLHYVwA0
x-amz-meta-created-unix-time-millis: 1625755888768
x-amz-replication-status: COMPLETED
x-amz-request-id: GRMB3KMPWKMK5Q1K
x-amz-server-side-encryption: AES256
x-amz-version-id: OYbH_YjA_vB59ecPz5WZUNrrQqOYdCfe
x-cache: RefreshHit from cloudfront
x-envoy-upstream-service-time: 172
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/cms-hubfs-td/envoy-proxy-6548769dcd-zn5t2
x-evy-trace-virtual-host: all
x-hs-alternate-content-type: text/plain
x-hs-cf-lambda: us-east-1.EnforceAclForReads 3
x-hs-cf-lambda-enforce: us-east-1.EnforceAclForReads 3
x-hubspot-correlation-id: 7ae5dd36-3a37-4536-8b84-16591a929a8b
x-request-id: 7ae5dd36-3a37-4536-8b84-16591a929a8b
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8Hq3LI5Y8eEdYqMbx0luMMqFTOY386n64gqTvC%2BqfBCl4FOulHYzZH2MHPNIX9PKvT15qxtoaT%2FLpXk3X75uhbMQrXzwT9oNJ%2BlxZRhsBZFijeKxok2fS0wXBkTXNDM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
199.60.103.29
104.16.160.168
51.145.12.81
142.250.150.154
0.0.0.0