www.xiterealty.com/
148.72.31.216301 Moved Permanently 227 B IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6a88b2f97d187b0f526071a4a0970296
a7bff7584bf0547c7d3c3f883b5ca38d42a47c23
d2b20a0c40a4b2dc012c35901f6a24bdcf2d02b81413e18c42c2bac69528eff0
GET / HTTP/1.1
Host: www.xiterealty.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 30 Jan 2023 15:49:31 GMT
Server: Apache
Location: https://xiteco.com/
Cache-Control: max-age=0
Expires: Mon, 30 Jan 2023 15:49:31 GMT
Content-Length: 227
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4459
Expires: Mon, 30 Jan 2023 17:03:50 GMT
Date: Mon, 30 Jan 2023 15:49:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9113
Expires: Mon, 30 Jan 2023 18:21:24 GMT
Date: Mon, 30 Jan 2023 15:49:31 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 15:35:44 GMT
content-type: application/json
age: 827
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3582
Expires: Mon, 30 Jan 2023 16:49:13 GMT
Date: Mon, 30 Jan 2023 15:49:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kB58TRoc0mo3V+IBgGm43+uRW1uaD9JvhiFRk7U4QkivErwEBRoxoqUL17bmFFd3gkRkFTc/c3M=
x-amz-request-id: MGFY7HP6C83EA7MQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 14:50:46 GMT
age: 3525
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 15:49:31 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 15:41:41 GMT
age: 471
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3226
Expires: Mon, 30 Jan 2023 16:43:18 GMT
Date: Mon, 30 Jan 2023 15:49:32 GMT
Connection: keep-alive
xiteco.com/
148.72.31.216301 Moved Permanently 0 B IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-powered-by: PHP/7.3.33
expires: Mon, 30 Jan 2023 16:49:32 GMT
cache-control: max-age=3600
x-redirect-by: WordPress
location: https://www.xiteco.com/
vary: Accept-Encoding
content-length: 0
content-type: text/html; charset=UTF-8
date: Mon, 30 Jan 2023 15:49:32 GMT
server: Apache
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.70.68.230101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.70.68.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: R91vJtDA2vsjOkJm163gUw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7tR6Kn6QEuKr1Cc1IYNPpt8dx8o=
www.xiteco.com/
148.72.31.216200 OK 18 kB IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8047), with CRLF, LF line terminators
Hash 0d9c6af8a3b4718163712c6d3c0a9293
620a414847844a9a5e8bf94fb0be37af83b2137e
282dad8bcbd39ea54914c9a96dbd3eced762bf0e4bc2253c791d7d3d4e73db44
GET / HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.3.33
last-modified: Thu, 26 Jan 2023 21:09:47 GMT
cache-control: max-age=0
expires: Mon, 30 Jan 2023 15:49:32 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 17829
content-type: text/html; charset=UTF-8
date: Mon, 30 Jan 2023 15:49:32 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2ac1bcdceabf1fc4e07017906aa8a815
ba00b737325fc50b35af8d851ced0fe13d1cba22
c6c54f5dbbfc40b454b9c67a7972827f500d83b10a1594f7cb56c69158278c08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-603GX3W72C
142.250.74.72200 OK 77 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-603GX3W72C
IP 142.250.74.72:0
File type ASCII text, with very long lines (19467)
Hash 8dbe10537cffdddc60b666722f4c5a77
923cdcd9f1b996c6c6597c56a1526824b3a2b13f
08f45b6c8dd858d96e6f7c31bc821be077864a898fde56b25276411a7fdc494c
GET /gtag/js?id=G-603GX3W72C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 15:49:33 GMT
expires: Mon, 30 Jan 2023 15:49:33 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LeZIFIaAAAAAOcyZd9C_PMktvJTG-HQPK9l60aE&ver=3.0
142.250.74.132200 OK 587 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LeZIFIaAAAAAOcyZd9C_PMktvJTG-HQPK9l60aE&ver=3.0
IP 142.250.74.132:0
File type ASCII text, with very long lines (884), with no line terminators
Hash ef33cc330120f517c81d5aec7beda809
eca297746db0a648cc8667c2a4dc4a42e0f6ab11
4bfe6f9a1283bb5f7a061d44f92c373c8ad1ab3b0173cff3920be33e5c4e1fa2
GET /recaptcha/api.js?render=6LeZIFIaAAAAAOcyZd9C_PMktvJTG-HQPK9l60aE&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 30 Jan 2023 15:49:33 GMT
date: Mon, 30 Jan 2023 15:49:33 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 587
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1659097242
148.72.31.216200 OK 1.3 kB URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (4933), with no line terminators
Hash d2d7f4c273d3b4cd972a337969b14754
b441775d1dcba61a5234df0256a40c7f58a8b059
fcfdbdf2a45072bbb545934d419cf76e5272d3193742eb8b659e938cafab4cdf
GET /wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1286
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
148.72.31.216200 OK 12 kB URL HTTP/2 www.xiteco.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.3
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.3 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 25 Jul 2022 20:03:21 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 11681
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/plugins/wpcf7-redirect/build/css/wpcf7-redirect-frontend.min.css?ver=6.0.3
148.72.31.216200 OK 124 B URL HTTP/2 www.xiteco.com/wp-content/plugins/wpcf7-redirect/build/css/wpcf7-redirect-frontend.min.css?ver=6.0.3
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF, CR line terminators
Hash 893dd4d34591cb544851b5a41747cdfd
e8585a3187cfaa2288f0cb48e5696929306b7615
1de5e3983dd9d63c6d92bc1543a4ae8978b38fbaa8d79fbbc2035c62a68cd7cf
GET /wp-content/plugins/wpcf7-redirect/build/css/wpcf7-redirect-frontend.min.css?ver=6.0.3 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 15 Aug 2022 19:37:12 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 124
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/ajax-load-more-anything/assets/css/styles.css?ver=1668539651
148.72.31.216200 OK 557 B URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/ajax-load-more-anything/assets/css/styles.css?ver=1668539651
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1364), with no line terminators
Hash 75492f98df4c09801c3853e47d081a1c
f8c3fb4edd345488f23d138f54f4cf97a9de4eb2
f6b183f7ddf7f8105b63ddcb4bb98a4be4335d84336d1404f9af2521fe1b2c57
GET /wp-content/cache/min/1/wp-content/plugins/ajax-load-more-anything/assets/css/styles.css?ver=1668539651 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 15 Nov 2022 19:14:11 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 557
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Roboto+Slab%3A400%2C500%2C600%2C700%2C300%7CRoboto%3A400%2C500%2C700%2C300%7CPacifico%7CPoppins%7CLato%3A900&ver=1.0.0
142.250.74.106200 OK 1.7 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto+Slab%3A400%2C500%2C600%2C700%2C300%7CRoboto%3A400%2C500%2C700%2C300%7CPacifico%7CPoppins%7CLato%3A900&ver=1.0.0
IP 142.250.74.106:0
Hash 49a2684a23f8d72bf48e444a69df2c21
70ceff36edc03a14c3f62a56a388a214d2d492fa
1028ef9a475899d972271be57d9d69f87f559392eee83bd6e270f19fb8c9f13a
GET /css?family=Roboto+Slab%3A400%2C500%2C600%2C700%2C300%7CRoboto%3A400%2C500%2C700%2C300%7CPacifico%7CPoppins%7CLato%3A900&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 15:49:33 GMT
date: Mon, 30 Jan 2023 15:49:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=1659097242
148.72.31.216200 OK 22 kB URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 379e702ab662defcf4c0ecf88868e5e4
2ab2c0dededf4259fbeda17f7e8a712ed0fc855c
60e2a5ee738051c475e3ee7a0e07bcc6602bf011b63f37ce97dbfe31a8b1acc0
GET /wp-content/cache/min/1/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 22459
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1659097242
148.72.31.216200 OK 854 B URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2237), with no line terminators
Hash c32d27fc309681153da63de98aaff6a5
73f0323c876b6bd28259d6c62a2368fa264c6494
86b7134de37f8ef8abe492992f7fa041baf56ada3318ac967ed5f9dbe5c3e82e
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 854
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7-multi-step-module/resources/cf7msm.css?ver=1659097242
148.72.31.216200 OK 107 B URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/contact-form-7-multi-step-module/resources/cf7msm.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with no line terminators
Hash a86b548a8d9d799672c1cd1b98fc5040
1786bed75a3f8ba76a540b77c1be2a34915ff718
1cfb5d1c7f5a2f93bbc5bf5d4dad64de6f8f2d499c902a77c576ac2d282b4887
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7-multi-step-module/resources/cf7msm.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 107
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=1659097242
148.72.31.216200 OK 2.6 kB URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (17809), with no line terminators
Hash d45c9e0b4109fd68bc2eaae40d01f61a
f0fd80fcb3e8b7a9d95782d0f0c79ddc19b2fa96
072aa95bd2ad493914030593b84c611b2dfcc39444f726ddab52751f4b4bf926
GET /wp-content/cache/min/1/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 2554
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/themes/kanter/style.css?ver=6.0.3
148.72.31.216200 OK 391 B URL HTTP/2 www.xiteco.com/wp-content/themes/kanter/style.css?ver=6.0.3
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash da0447b5506ab1aa0fcddbdd7943cfcf
30b81005d9666ab6940d7cedb071791b67ce7be4
676d083b3f1caeab7805170151510e6867b1df040dd4b54aaf9b8a5177a8c158
GET /wp-content/themes/kanter/style.css?ver=6.0.3 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2021 08:07:03 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 391
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=1659097242
148.72.31.216200 OK 9.0 kB URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (63749), with no line terminators
Hash 1827b1fa0877fc029ce7fe01d3cf7c1d
c1dea116405860354a20adc8ca4d30e1ccf4b212
690cc1502209f2566c73e7fea07c23907ac2f0df0ce0cd84f1c3ffeffda71728
GET /wp-content/cache/min/1/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 8952
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/themes/kanter/assets/css/wordpress.css?ver=1659097242
148.72.31.216200 OK 205 B URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/themes/kanter/assets/css/wordpress.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with no line terminators
Hash e0fa7a322ec99c1be2bc3d19f31aaf79
7fca6897e6448732aab10e2fd0a53341aa97a51e
b532d07b3ba222fbf1b3d3e077f7d1ea8d63e798f020eb686d0e00ef837a1380
GET /wp-content/cache/min/1/wp-content/themes/kanter/assets/css/wordpress.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 205
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/cf7-conditional-fields/style.css?ver=1659097242
148.72.31.216200 OK 423 B URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/cf7-conditional-fields/style.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1201), with no line terminators
Hash d11e39a4c6531acf4f68036c1104e9e2
326412f5022ff43e0c0220b00224837e7e7b242b
568aa6051f811fc4525e1a4071162925b7d0554b92e00348a51c71cabf9e5780
GET /wp-content/cache/min/1/wp-content/plugins/cf7-conditional-fields/style.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 423
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/plugins/ultimate-composer/assets/min-css/background-style.min.css?ver=3.19.8
148.72.31.216200 OK 1.8 kB URL HTTP/2 www.xiteco.com/wp-content/plugins/ultimate-composer/assets/min-css/background-style.min.css?ver=3.19.8
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9312), with no line terminators
Hash 201a821d0093fc9b7b4e120ca51cefd3
d440fb972c1ecca4e24180a21dc2a1f399663397
0a4fc7354e973a436ffa77f98db4c2ae8bc1c234102f6e3ce81a912822c3e534
GET /wp-content/plugins/ultimate-composer/assets/min-css/background-style.min.css?ver=3.19.8 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2021 08:08:45 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1786
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/plugins/ultimate-composer/assets/min-css/style.min.css?ver=3.19.8
148.72.31.216200 OK 2.8 kB URL HTTP/2 www.xiteco.com/wp-content/plugins/ultimate-composer/assets/min-css/style.min.css?ver=3.19.8
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (13362), with no line terminators
Hash 022bf1d37b467a4a6d0e964f4682ed2f
313cb2c56ffdd2ecc9f3f78348d060152085b3e0
fd5140ccd70892401a43e96c3a21205b63e1bc2f37dcb1870a6bbb7bd4f33b2c
GET /wp-content/plugins/ultimate-composer/assets/min-css/style.min.css?ver=3.19.8 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2021 08:08:45 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 2752
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=1659097242
148.72.31.216200 OK 4.8 kB URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (26099), with no line terminators
Hash b906e01a90cc40743c63f7019e8d896a
b9e42033b6b8336a28cb7eea15b42717288f7175
171ce747c2cad47b23739af4d8a1fcc1cbc2b7983d6ee4d4435507d3b974adcc
GET /wp-content/cache/min/1/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 4766
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/plugins/ultimate-composer/assets/min-css/flip-box.min.css?ver=3.19.8
148.72.31.216200 OK 2.2 kB URL HTTP/2 www.xiteco.com/wp-content/plugins/ultimate-composer/assets/min-css/flip-box.min.css?ver=3.19.8
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (18364), with no line terminators
Hash 7b02a146cfc0ab79e365670d513d4b90
5bb408356b982125eee3965ff269aaf0c1ff8bee
4308d482fc574f565147b903096ac130af874fa1cf0678effcb4b2400bb746cb
GET /wp-content/plugins/ultimate-composer/assets/min-css/flip-box.min.css?ver=3.19.8 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2021 08:08:45 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 2203
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/themes/kanter-child/style.css?ver=1659097242
148.72.31.216200 OK 1.3 kB URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/themes/kanter-child/style.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (3728), with no line terminators
Hash 5a81a4bf5feca12cf3ee8ce1244ea4da
f1a23225bb82d9c9c9434e88a89d20a145cf5534
f195721a0110b919a5b2e50dc261a699049611b1c20b11afa222106519051ea3
GET /wp-content/cache/min/1/wp-content/themes/kanter-child/style.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 1255
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/wp-gdpr-compliance/Assets/css/front.css?ver=1659097242
148.72.31.216200 OK 4.3 kB URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/wp-gdpr-compliance/Assets/css/front.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (26316), with no line terminators
Hash 16f6b0d854b5336e8a618be364c62422
e607403fc6d59f09dc35da1fb3c19c29f248c7e0
9a3e445ebe914ea574ae45ef6bd659449147910549bd7ab40986846730fe8a63
GET /wp-content/cache/min/1/wp-content/plugins/wp-gdpr-compliance/Assets/css/front.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 4312
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/plugins/ultimate-composer/assets/min-css/animate.min.css?ver=3.19.8
148.72.31.216200 OK 6.0 kB URL HTTP/2 www.xiteco.com/wp-content/plugins/ultimate-composer/assets/min-css/animate.min.css?ver=3.19.8
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (64385), with CRLF line terminators
Hash 3917b9eb453aaf736636986ef5f9af65
f42cae340ebb0678b454418b5ff0d82a7520d301
69217992a558e1832414ec72e1cd015284b614d70017d598e2169c1fb1340811
GET /wp-content/plugins/ultimate-composer/assets/min-css/animate.min.css?ver=3.19.8 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2021 08:08:45 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 5998
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/kanter-helper/includes/vc_extend/vc_icons/fonts/stroke/dist/pe-icon-7-stroke.css?ver=1659097242
148.72.31.216200 OK 2.5 kB URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/kanter-helper/includes/vc_extend/vc_icons/fonts/stroke/dist/pe-icon-7-stroke.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9656)
Hash f03e3613d24737559661eaf51f3f7bb8
0115c1a1f14319dcefe5eb9a4d52de33ee600a62
37684359dbce5df05a4f04045f436ca4e997aa1da1b0cc3f7f9876a20c9e2df1
GET /wp-content/cache/min/1/wp-content/plugins/kanter-helper/includes/vc_extend/vc_icons/fonts/stroke/dist/pe-icon-7-stroke.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 2535
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
148.72.31.216200 OK 7.1 kB URL HTTP/2 www.xiteco.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 2f4fcc5a628b379672d76b7e91cbdf07
9d72f2c9cbc1e9b036360acfce8c8ccc8b832b8c
a360f715a418026d2e1acd81c02c83233d0c0b60fdf4ce0b4d33562925d6a0b5
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 25 Jul 2022 20:03:21 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 7095
content-type: application/javascript; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/themes/kanter/assets/css/libs.css?ver=1659097242
148.72.31.216200 OK 24 kB URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/themes/kanter/assets/css/libs.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (44244)
Hash 71972187d1f031bb64ccc00c9550e3d2
35338d75e1b0a3e31e1530d368edc3e0b264f074
4a2e7d23caa4d692334d5dc294c2e598ba879cc4a56fbf4357b238fd22debc70
GET /wp-content/cache/min/1/wp-content/themes/kanter/assets/css/libs.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 23724
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/themes/kanter/assets/css/3.css?ver=1659097242
148.72.31.216200 OK 26 kB URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/themes/kanter/assets/css/3.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 08df29e3de18a29c0892d5da391d3960
bbf073bdb501b790fb6075e03f0be2629733de81
3c1bd9a7d61c7e3f4859823edb07136789c6ea86871e824d94431d1f5499d009
GET /wp-content/cache/min/1/wp-content/themes/kanter/assets/css/3.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 26515
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
148.72.31.216200 OK 31 kB URL HTTP/2 www.xiteco.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 25 Jul 2022 20:03:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 30908
content-type: application/javascript; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/visual-composer/assets/css/js_composer.min.css?ver=1659097242
148.72.31.216200 OK 46 kB URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/visual-composer/assets/css/js_composer.min.css?ver=1659097242
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65359)
Hash 3df3a409bf058d7125b5247c2b352b0d
d1c10975f97f89fc21420c5e165ca3ec0b220273
b112ab8c338d273e7ad09d6bede24af156fad070e5583e11e8b1dc26c1b1dac2
GET /wp-content/cache/min/1/wp-content/plugins/visual-composer/assets/css/js_composer.min.css?ver=1659097242 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 29 Jul 2022 12:20:42 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 45999
content-type: text/css; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/uploads/2021/04/xite-healthcare-real-estate-and-practice-sales-white.png
148.72.31.216200 OK 5.3 kB URL HTTP/2 www.xiteco.com/wp-content/uploads/2021/04/xite-healthcare-real-estate-and-practice-sales-white.png
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 219 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash e4f0decb13128c4e6f8f4aa79af8b80e
aa0224441c74c5569c4a2fb0e3fdf09fcf705f93
ad2afef013d4a45795f72ef6fff4d02758bb6b992235f4a20d6597d9c4ad6090
GET /wp-content/uploads/2021/04/xite-healthcare-real-estate-and-practice-sales-white.png HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 27 Apr 2021 20:15:36 GMT
accept-ranges: bytes
content-length: 5316
cache-control: max-age=10368000, public
expires: Tue, 30 May 2023 15:49:33 GMT
vary: Accept-Encoding
content-type: image/png
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/uploads/2021/04/xite-healthcare-real-estate-and-practice-sales-dark.png
148.72.31.216200 OK 9.9 kB URL HTTP/2 www.xiteco.com/wp-content/uploads/2021/04/xite-healthcare-real-estate-and-practice-sales-dark.png
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 219 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 2345ae9f72e0c67996d416d5de735458
2952eccb451ced55d5337a0dbda60d1b84931a6a
7efe421de3769322b0d1c13c5e0d568c51227588f15ee39e62b4e2858219c53e
GET /wp-content/uploads/2021/04/xite-healthcare-real-estate-and-practice-sales-dark.png HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 27 Apr 2021 20:17:17 GMT
accept-ranges: bytes
content-length: 9865
cache-control: max-age=10368000, public
expires: Tue, 30 May 2023 15:49:33 GMT
vary: Accept-Encoding
content-type: image/png
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/uploads/2021/04/1519890480520.png
148.72.31.216200 OK 11 kB URL HTTP/2 www.xiteco.com/wp-content/uploads/2021/04/1519890480520.png
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 200 x 200, 8-bit/color RGB, non-interlaced\012- data
Hash c52249ee05bb3914c8557ed96e41f802
dcc977fd52a18eb2c25da17419d90c1f653ed3c8
b566845a2869dec397cff1a31562989d83840e022769c0ae2f45c9afef69e0f3
GET /wp-content/uploads/2021/04/1519890480520.png HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 10 Apr 2021 14:28:43 GMT
accept-ranges: bytes
content-length: 10830
cache-control: max-age=10368000, public
expires: Tue, 30 May 2023 15:49:33 GMT
vary: Accept-Encoding
content-type: image/png
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12105
Expires: Mon, 30 Jan 2023 19:11:18 GMT
Date: Mon, 30 Jan 2023 15:49:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12105
Expires: Mon, 30 Jan 2023 19:11:18 GMT
Date: Mon, 30 Jan 2023 15:49:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12105
Expires: Mon, 30 Jan 2023 19:11:18 GMT
Date: Mon, 30 Jan 2023 15:49:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12105
Expires: Mon, 30 Jan 2023 19:11:18 GMT
Date: Mon, 30 Jan 2023 15:49:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12105
Expires: Mon, 30 Jan 2023 19:11:18 GMT
Date: Mon, 30 Jan 2023 15:49:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VHh2SQ21xoDoBnGvM2kRiposhXuCE-DdWW1bM35kEykjbHYmhsldVA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:51:22 GMT
age: 64691
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/cache/min/1/769c7da00dfcbdcedbc21985e97c8e57.js
148.72.31.216200 OK 255 kB URL HTTP/2 www.xiteco.com/wp-content/cache/min/1/769c7da00dfcbdcedbc21985e97c8e57.js
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Size 255 kB (255197 bytes)
Hash ca7b1d213e118daba511504d6fb355e1
e328ad961ad2d35353249cce63f9771420380a08
9b8c6be6e4fbe3cb88b324757a2f1ffbd112f8a24c2415855107db764ed11444
GET /wp-content/cache/min/1/769c7da00dfcbdcedbc21985e97c8e57.js HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 26 Jan 2023 21:09:46 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:33 GMT
vary: Accept-Encoding
content-encoding: gzip
content-type: application/javascript; charset=utf-8
date: Mon, 30 Jan 2023 15:49:33 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Poppins:regular,300
142.250.74.106200 OK 1.6 kB URL HTTP/2 fonts.googleapis.com/css?family=Poppins:regular,300
IP 142.250.74.106:0
File type ASCII text, with very long lines (7043)
Hash e6ef3c8ede1c2ef0101c5cb381bb4f39
75ab91075b3331160b95c8871099efa1abe4eba8
a0a980786b1720e42cb5a21c5952cd0e1a289a7b39251271bf0e92909be8b8c8
GET /css?family=Poppins:regular,300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 15:49:33 GMT
date: Mon, 30 Jan 2023 15:49:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3EXFa0gb46AbdZ9ZznGiPTemGZ7zWh9WLs5Yr1zmfyh_jyKA6o7xoA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:19:57 GMT
age: 62976
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe31ee140c2fd62e616c8a1edc9e78bb
7aa5fbdc8156514770ae620e81f1afef1c77890f
799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: y6bDvcD7a3-A4DLC3cSdZT-yewV1kkFqcGr7AMuqvUeGA4A0pgF4wQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:59:27 GMT
age: 64207
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:08:57 GMT
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
age: 63637
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: e6e0789c-a4a9-4ffa-a0ae-691770d1035b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPF9YEBmIAMF0kQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf8388-01d2093432d3959903671a69;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:06:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: awfNeaKbFw2bjiTGwUrwUTxU-qbVS2eTjn948H8kn1hy7pi_DwLMlQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 17:35:56 GMT
age: 80018
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5190c0bdc6abe0ee258e9f8c20ddaf51
d60f280f8a742480527dbc32d08f321f972d4fcf
874b38a04aa3736e65aaef72da2cc2efceb208618267107a495bdfe51ec58e58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12507
x-amzn-requestid: 85c9adcd-b997-48ca-bbfb-ccdeaf3e8cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFaJoAMFqKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-2bcdd8c353d8429d2b1e95f6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XABaoZCqUulmnfZOXx6XTLSUMS5Mie6u0OfkqozmBzCf3Qjzf-fbRA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:54:32 GMT
age: 64502
etag: "d60f280f8a742480527dbc32d08f321f972d4fcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
142.250.74.163200 OK 7.8 kB URL HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Hash 8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xiteco.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7840
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 03:13:04 GMT
expires: Fri, 26 Jan 2024 03:13:04 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:51:55 GMT
content-type: font/woff2
age: 390990
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/uploads/2022/03/bg_help-doctors.jpg?id=7792
148.72.31.216200 OK 133 kB URL HTTP/2 www.xiteco.com/wp-content/uploads/2022/03/bg_help-doctors.jpg?id=7792
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x1280, components 3\012- data
Size 133 kB (133098 bytes)
Hash aef8cbef096832ddacea13485164014c
1f77a97a8c02f27395a60bf809ea976933e45411
8f152ab6780212b6637ac2cb82827431bad59aab939a2c160f705ce28e723c26
GET /wp-content/uploads/2022/03/bg_help-doctors.jpg?id=7792 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 21 Mar 2022 16:16:32 GMT
accept-ranges: bytes
content-length: 133098
cache-control: max-age=10368000, public
expires: Tue, 30 May 2023 15:49:34 GMT
vary: Accept-Encoding
content-type: image/jpeg
date: Mon, 30 Jan 2023 15:49:34 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/uploads/2022/03/pattern.png?id=7789
148.72.31.216200 OK 24 kB URL HTTP/2 www.xiteco.com/wp-content/uploads/2022/03/pattern.png?id=7789
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 1920 x 656, 2-bit colormap, non-interlaced\012- data
Hash 4ad8ad7df6f193c4ff21d5966f0d5dcf
cc506eee5440c52b935c6203b9d027a1d9e580af
e3a40b1e8465f5c9c34aeb574dcef5674f763fac7f46d73ad45e033fc126ec1f
GET /wp-content/uploads/2022/03/pattern.png?id=7789 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 23:32:22 GMT
accept-ranges: bytes
content-length: 23464
cache-control: max-age=10368000, public
expires: Tue, 30 May 2023 15:49:34 GMT
vary: Accept-Encoding
content-type: image/png
date: Mon, 30 Jan 2023 15:49:34 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.xiteco.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 12:46:12 GMT
expires: Mon, 29 Jan 2024 12:46:12 GMT
cache-control: public, max-age=31536000
age: 97402
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/themes/kanter/assets/img/arrow-down.png
148.72.31.216200 OK 110 B URL HTTP/2 www.xiteco.com/wp-content/themes/kanter/assets/img/arrow-down.png
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 9 x 5, 8-bit gray+alpha, non-interlaced\012- data
Hash 3800c786bb597285ba247f7c1812c4d8
76bbb7da962f772ed03a182bd1365c0c751dbca7
7c53c6e88940ea8fbe09a4c262a363f929e8495ffd4ab92e6eac7c606e11c14b
GET /wp-content/themes/kanter/assets/img/arrow-down.png HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/wp-content/cache/min/1/wp-content/themes/kanter/assets/css/3.css?ver=1659097242
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2021 17:06:56 GMT
accept-ranges: bytes
content-length: 110
cache-control: max-age=10368000, public
expires: Tue, 30 May 2023 15:49:34 GMT
vary: Accept-Encoding
content-type: image/png
date: Mon, 30 Jan 2023 15:49:34 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
kanter.fidex.com.ua/wp-content/uploads/2018/05/pat_white.jpg?id=2402
79.133.42.35200 OK 95 kB URL HTTP/2 kanter.fidex.com.ua/wp-content/uploads/2018/05/pat_white.jpg?id=2402
IP 79.133.42.35:0
ASN #44066 diva-e Datacenters GmbH
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2500x2500, components 3\012- data
Hash a0a1ec115dfccf40da5be423be02d904
14f190a4cdbee5d618a1eef064bf25b93c4d04f3
521d508330367d1aa7e13c9d1056934372d3c5aedb2f8e2e675f384eb36a67a4
GET /wp-content/uploads/2018/05/pat_white.jpg?id=2402 HTTP/1.1
Host: kanter.fidex.com.ua
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 15:49:34 GMT
content-type: image/jpeg
content-length: 94673
last-modified: Sun, 24 Jan 2021 22:15:08 GMT
etag: "600df16c-171d1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/themes/kanter/assets/libs/font-awesome-4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
148.72.31.216200 OK 77 kB URL HTTP/2 www.xiteco.com/wp-content/themes/kanter/assets/libs/font-awesome-4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/kanter/assets/libs/font-awesome-4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.xiteco.com/wp-content/cache/min/1/wp-content/themes/kanter/assets/css/libs.css?ver=1659097242
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2021 17:06:56 GMT
accept-ranges: bytes
content-length: 77160
cache-control: max-age=10368000
expires: Tue, 30 May 2023 15:49:34 GMT
vary: Accept-Encoding
content-type: font/woff2
date: Mon, 30 Jan 2023 15:49:34 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/plugins/kanter-helper/includes/vc_extend/vc_icons/fonts/stroke/fonts/Pe-icon-7-stroke.woff?d7yf1v
148.72.31.216200 OK 59 kB URL HTTP/2 www.xiteco.com/wp-content/plugins/kanter-helper/includes/vc_extend/vc_icons/fonts/stroke/fonts/Pe-icon-7-stroke.woff?d7yf1v
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format, TrueType, length 58556, version 1.0\012- data
Hash b38ef310874bdd008ac14ef3db939032
7e544bb11b7655998db6f324c612f7ffbf0ab66e
6fb4217048f333e23e0fd0ba2ab05e05fd7500f86a5a80a7cf04a2f94b257bec
GET /wp-content/plugins/kanter-helper/includes/vc_extend/vc_icons/fonts/stroke/fonts/Pe-icon-7-stroke.woff?d7yf1v HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.xiteco.com/wp-content/cache/min/1/wp-content/plugins/kanter-helper/includes/vc_extend/vc_icons/fonts/stroke/dist/pe-icon-7-stroke.css?ver=1659097242
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2021 08:07:42 GMT
accept-ranges: bytes
content-length: 58556
cache-control: max-age=10368000
expires: Tue, 30 May 2023 15:49:34 GMT
vary: Accept-Encoding
content-type: font/woff
date: Mon, 30 Jan 2023 15:49:34 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/uploads/2022/03/medical-real-estate-brokers_Xite-Realty_sm.jpg
148.72.31.216200 OK 161 kB URL HTTP/2 www.xiteco.com/wp-content/uploads/2022/03/medical-real-estate-brokers_Xite-Realty_sm.jpg
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 555x419, components 3\012- data
Size 161 kB (161218 bytes)
Hash 59bc8f8ac050eeb1df54afc84fa89962
f20a9f78d1dd5e3a21f51daf440201e9e636f4e7
c56f2bcbb7063283e46354b44251ebbf735ff910729f7878c96f28e4d44158d7
GET /wp-content/uploads/2022/03/medical-real-estate-brokers_Xite-Realty_sm.jpg HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 20 Mar 2022 21:26:51 GMT
accept-ranges: bytes
content-length: 161218
cache-control: max-age=10368000, public
expires: Tue, 30 May 2023 15:49:34 GMT
vary: Accept-Encoding
content-type: image/jpeg
date: Mon, 30 Jan 2023 15:49:34 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/IyXbJzZKMVM
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/IyXbJzZKMVM
IP 142.250.74.131:0
Hash 2e64d818939f4d065ccdcb65b0a58923
782d1aeb09da9043dc51a3efa1da76b64a1643ca
158dc6753ec2c83524c24abba73951f0dd1d342bccef58b0b1c1ef280690107f
POST /s/gts1d4/IyXbJzZKMVM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:34 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
embedsocial.com/embedscript/ri.js
35.201.69.215200 OK 3.1 kB URL HTTP/2 embedsocial.com/embedscript/ri.js
IP 35.201.69.215:0
File type ASCII text, with very long lines (11364)
Hash ee750339300703a56d5d66584d205a62
b975facd0c19b180f65f5ca89bff265b05bb2d15
f0fc4cdc60c42f0a15a63e5a916e5b925a8835293d98622c6d6ad28c4fd2a134
GET /embedscript/ri.js HTTP/1.1
Host: embedsocial.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsa65b4xdQ6YURl5Qd1ygnHYgpd0rdJThNxbC9FV3IfamJctBstNLUW_7d-IaZxuNYWaymDtfLN3hAaIwbpz2Yn
x-goog-generation: 1654174810732138
x-goog-metageneration: 3
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 3143
content-encoding: gzip
x-goog-hash: crc32c=ioMhJw==, md5=7nUDOTAHA6VtXWZYTSBaYg==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 3143
server: UploadServer
date: Sat, 21 Jan 2023 15:34:57 GMT
expires: Sat, 01 Apr 2023 15:34:57 GMT
cache-control: public, max-age=6048000,no-transform
last-modified: Thu, 02 Jun 2022 13:00:10 GMT
etag: "ee750339300703a56d5d66584d205a62"
content-type: application/javascript
age: 778477
access-control-allow-origin: *
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/IyXbJzZKMVM
142.250.74.131200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/IyXbJzZKMVM
IP 142.250.74.131:0
Hash 2e64d818939f4d065ccdcb65b0a58923
782d1aeb09da9043dc51a3efa1da76b64a1643ca
158dc6753ec2c83524c24abba73951f0dd1d342bccef58b0b1c1ef280690107f
POST /s/gts1d4/IyXbJzZKMVM HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:34 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.xiteco.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
148.72.31.216200 OK 5.0 kB URL HTTP/2 www.xiteco.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 25 Jul 2022 20:03:21 GMT
accept-ranges: bytes
cache-control: max-age=31536000, public
expires: Tue, 30 Jan 2024 15:49:34 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 5009
content-type: application/javascript; charset=utf-8
date: Mon, 30 Jan 2023 15:49:34 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/uploads/2021/03/optical_dark_bg.jpg
148.72.31.216200 OK 255 kB URL HTTP/2 www.xiteco.com/wp-content/uploads/2021/03/optical_dark_bg.jpg
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x461, components 3\012- data
Size 255 kB (255206 bytes)
Hash d592b52059bc45a67e8e3dcfaebe7028
25824c00d89738444c88af60e8345633cad647ec
0a6323935baeb94b98940ade4879937abfb9716f4271e40ac7706ca3e891123e
GET /wp-content/uploads/2021/03/optical_dark_bg.jpg HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Mar 2021 08:28:03 GMT
accept-ranges: bytes
content-length: 255206
cache-control: max-age=10368000, public
expires: Tue, 30 May 2023 15:49:34 GMT
vary: Accept-Encoding
content-type: image/jpeg
date: Mon, 30 Jan 2023 15:49:34 GMT
server: Apache
X-Firefox-Spdy: h2
maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
142.250.74.3200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/7/init_embed.js
IP 142.250.74.3:0
File type ASCII text, with very long lines (2599)
Hash fd4867728783671f13b38d1f073e7be9
ff5ba304ce5b2838e4b49b6cff833dede37e1098
52a398663110b5dc50e72094c287b049ec5ed33a2b639418e4e1a9c3d313b82c
GET /maps-api-v3/embed/js/51/7/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 69373
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 03:51:36 GMT
expires: Sun, 28 Jan 2024 03:51:36 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 21:48:16 GMT
content-type: text/javascript
age: 215878
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
216.58.211.3200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP 216.58.211.3:0
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xiteco.com
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 17:09:34 GMT
expires: Tue, 23 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
age: 600000
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
23.36.76.121200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 23.36.76.121:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=53961
date: Mon, 30 Jan 2023 15:49:35 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
www.xiteco.com/wp-json/contact-form-7/v1/contact-forms/3079/feedback/schema
148.72.31.216200 OK 225 B URL HTTP/2 www.xiteco.com/wp-json/contact-form-7/v1/contact-forms/3079/feedback/schema
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JSON data\012- , ASCII text, with very long lines (617), with no line terminators
Hash 6950a200959f98a851b3c0d29f3c72a0
d45e14f5d8d92b7c5dc8e73f887a9fb601fe329a
bb4ebe33789333aa64194e80ad1d02559ef9ed7d8a7a701ec87d6919c812c4f2
GET /wp-json/contact-form-7/v1/contact-forms/3079/feedback/schema HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xiteco.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.3.33
x-robots-tag: noindex
link: <https://www.xiteco.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type, X-HTTP-Method-Override
allow: GET
vary: Origin,Accept-Encoding
cache-control: max-age=0
expires: Mon, 30 Jan 2023 15:49:34 GMT
content-encoding: gzip
content-length: 225
content-type: application/json; charset=UTF-8
date: Mon, 30 Jan 2023 15:49:34 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
216.58.207.206200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.58.207.206:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 30 Jan 2023 15:46:59 GMT
expires: Mon, 30 Jan 2023 17:46:59 GMT
cache-control: public, max-age=7200
age: 156
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c239475b53a2314c43c5922ef55e73f8
e30168fe4daa7e6ebe19591863e7175bf9ad784d
2f985a21771f800b54258c8b1e70a38c9249ef7b9bf2ec61e01d5717c2e204d4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1952
Cache-Control: max-age=120737
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:35 GMT
Etag: "63d71410-1d7"
Expires: Wed, 01 Feb 2023 01:21:52 GMT
Last-Modified: Mon, 30 Jan 2023 00:49:20 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
googleads.g.doubleclick.net/pagead/viewthroughconversion/www.xiteco.com/?random=1675093787473&cv=11&fst=1675093787473&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xiteco.com%2F&tiba=Healthcare%20Real%20Estate%20%26%20Practice%20Sales%20%7C%20Xite%20Realty&auid=2027138507.1675093787&rfmt=3&fmt=4
142.250.74.66200 OK 883 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/www.xiteco.com/?random=1675093787473&cv=11&fst=1675093787473&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xiteco.com%2F&tiba=Healthcare%20Real%20Estate%20%26%20Practice%20Sales%20%7C%20Xite%20Realty&auid=2027138507.1675093787&rfmt=3&fmt=4
IP 142.250.74.66:0
File type ASCII text, with very long lines (1891), with no line terminators
Hash 7952dc23a6337046d6c366347e997e9c
67c0597f20dd063b0566554af3ba6e75da4a0651
6e6e499368e74f7487439394a5d073571ab883cd466cd33839f2a75594ab2a6e
GET /pagead/viewthroughconversion/www.xiteco.com/?random=1675093787473&cv=11&fst=1675093787473&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.xiteco.com%2F&tiba=Healthcare%20Real%20Estate%20%26%20Practice%20Sales%20%7C%20Xite%20Realty&auid=2027138507.1675093787&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 15:49:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 883
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 30-Jan-2023 16:04:35 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 8d9g0O7+rkPgmquvTnyuqxONedSnyRHUwmQytJZQbVGerLdYHZUn1yRpatq9G/ieKb9Jq40wrwPt/zb3pWrc7g==
priority: u=3,i
content-length: 27815
x-fb-trip-id: 1679558926
date: Mon, 30 Jan 2023 15:49:35 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.xiteco.com/wp-content/uploads/2021/02/cropped-xite-icon-trans-2-192x192.png
148.72.31.216200 OK 27 kB URL HTTP/2 www.xiteco.com/wp-content/uploads/2021/02/cropped-xite-icon-trans-2-192x192.png
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 2dfe4d0bdedb034938d1126ca7064f40
a9fc4e69ebc74e2140bf5b5f52313fccd39dc6e1
5a7dede037b46d7725d871a9851723a5e935cf052d43a7798f05263a9739b3ab
GET /wp-content/uploads/2021/02/cropped-xite-icon-trans-2-192x192.png HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Cookie: _ga_603GX3W72C=GS1.1.1675093787.1.0.1675093787.0.0.0; _ga=GA1.1.1522490980.1675093787; _gcl_au=1.1.2027138507.1675093787
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2021 08:38:01 GMT
accept-ranges: bytes
content-length: 26567
cache-control: max-age=10368000, public
expires: Tue, 30 May 2023 15:49:35 GMT
vary: Accept-Encoding
content-type: image/png
date: Mon, 30 Jan 2023 15:49:35 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/uploads/2021/02/cropped-xite-icon-trans-2-32x32.png
148.72.31.216200 OK 2.7 kB URL HTTP/2 www.xiteco.com/wp-content/uploads/2021/02/cropped-xite-icon-trans-2-32x32.png
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 7431baed31ab5fa36332883faac0c2e3
1e0b7b7b362e56d0dd4321ea24d1034a5a453c5e
fb92779a7c1f4a38811569b9d6caded192575409a6ca73e9b0bbf54e36ba6f60
GET /wp-content/uploads/2021/02/cropped-xite-icon-trans-2-32x32.png HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Cookie: _ga_603GX3W72C=GS1.1.1675093787.1.0.1675093787.0.0.0; _ga=GA1.1.1522490980.1675093787; _gcl_au=1.1.2027138507.1675093787
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2021 08:38:01 GMT
accept-ranges: bytes
content-length: 2670
cache-control: max-age=10368000, public
expires: Tue, 30 May 2023 15:49:35 GMT
vary: Accept-Encoding
content-type: image/png
date: Mon, 30 Jan 2023 15:49:35 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c239475b53a2314c43c5922ef55e73f8
e30168fe4daa7e6ebe19591863e7175bf9ad784d
2f985a21771f800b54258c8b1e70a38c9249ef7b9bf2ec61e01d5717c2e204d4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1952
Cache-Control: max-age=120737
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:35 GMT
Etag: "63d71410-1d7"
Expires: Wed, 01 Feb 2023 01:21:52 GMT
Last-Modified: Mon, 30 Jan 2023 00:49:20 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/www.xiteco.com/?random=1675093787473&cv=11&fst=1675090800000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.xiteco.com%2F&tiba=Healthcare%20Real%20Estate%20%26%20Practice%20Sales%20%7C%20Xite%20Realty&fmt=3&is_vtc=1&random=3296277664&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/www.xiteco.com/?random=1675093787473&cv=11&fst=1675090800000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.xiteco.com%2F&tiba=Healthcare%20Real%20Estate%20%26%20Practice%20Sales%20%7C%20Xite%20Realty&fmt=3&is_vtc=1&random=3296277664&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/www.xiteco.com/?random=1675093787473&cv=11&fst=1675090800000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.xiteco.com%2F&tiba=Healthcare%20Real%20Estate%20%26%20Practice%20Sales%20%7C%20Xite%20Realty&fmt=3&is_vtc=1&random=3296277664&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 15:49:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6c754739b42f49d4f916eeddf5e0ad0b
dbd00615dd46df6aebbf184c5a674500fca79409
8cc3bb1dc1272a7db571c09fcd67fce2b6cc1e1c23daaa725c40ba5b66b204d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6c754739b42f49d4f916eeddf5e0ad0b
dbd00615dd46df6aebbf184c5a674500fca79409
8cc3bb1dc1272a7db571c09fcd67fce2b6cc1e1c23daaa725c40ba5b66b204d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/a/AItbvmmXZNd9QuG0SBTUkhWxBipKqG1NEXfSt3675iI1=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 3.7 kB URL HTTP/2 lh3.googleusercontent.com/a/AItbvmmXZNd9QuG0SBTUkhWxBipKqG1NEXfSt3675iI1=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 5972420f1994b4fa1a389e1c632a9fcf
c2d8a85b0abf35f8e4304671cc7e34a6ee6236f5
9441f0e9c4fee4bdaa0846b8cf8405e003444e7653de6f1af94e0f0b8c3f4ed4
GET /a/AItbvmmXZNd9QuG0SBTUkhWxBipKqG1NEXfSt3675iI1=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 3700
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6c754739b42f49d4f916eeddf5e0ad0b
dbd00615dd46df6aebbf184c5a674500fca79409
8cc3bb1dc1272a7db571c09fcd67fce2b6cc1e1c23daaa725c40ba5b66b204d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6c754739b42f49d4f916eeddf5e0ad0b
dbd00615dd46df6aebbf184c5a674500fca79409
8cc3bb1dc1272a7db571c09fcd67fce2b6cc1e1c23daaa725c40ba5b66b204d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6c754739b42f49d4f916eeddf5e0ad0b
dbd00615dd46df6aebbf184c5a674500fca79409
8cc3bb1dc1272a7db571c09fcd67fce2b6cc1e1c23daaa725c40ba5b66b204d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-42516119-1&cid=1522490980.1675093787&jid=522563166&gjid=926024087&_gid=158928680.1675093788&_u=YCDAgEABAAAAAEAAI~&z=1211607797
173.194.73.156200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-42516119-1&cid=1522490980.1675093787&jid=522563166&gjid=926024087&_gid=158928680.1675093788&_u=YCDAgEABAAAAAEAAI~&z=1211607797
IP 173.194.73.156:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-42516119-1&cid=1522490980.1675093787&jid=522563166&gjid=926024087&_gid=158928680.1675093788&_u=YCDAgEABAAAAAEAAI~&z=1211607797 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.xiteco.com
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.xiteco.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 30 Jan 2023 15:49:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-603GX3W72C>m=2oe1p0&_p=20837747&cid=1522490980.1675093787&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675093787&sct=1&seg=0&dl=https%3A%2F%2Fwww.xiteco.com%2F&dt=Healthcare%20Real%20Estate%20%26%20Practice%20Sales%20%7C%20Xite%20Realty&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-603GX3W72C>m=2oe1p0&_p=20837747&cid=1522490980.1675093787&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675093787&sct=1&seg=0&dl=https%3A%2F%2Fwww.xiteco.com%2F&dt=Healthcare%20Real%20Estate%20%26%20Practice%20Sales%20%7C%20Xite%20Realty&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-603GX3W72C>m=2oe1p0&_p=20837747&cid=1522490980.1675093787&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675093787&sct=1&seg=0&dl=https%3A%2F%2Fwww.xiteco.com%2F&dt=Healthcare%20Real%20Estate%20%26%20Practice%20Sales%20%7C%20Xite%20Realty&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xiteco.com
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/2 204 No Content
access-control-allow-origin: https://www.xiteco.com
date: Mon, 30 Jan 2023 15:49:35 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2816210&time=1675093787877&url=https%3A%2F%2Fwww.xiteco.com%2F
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2816210&time=1675093787877&url=https%3A%2F%2Fwww.xiteco.com%2F
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=2816210&time=1675093787877&url=https%3A%2F%2Fwww.xiteco.com%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2816210%26time%3D1675093787877%26url%3Dhttps%253A%252F%252Fwww.xiteco.com%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQIC3heiYOLuoQAAAYYDXpRNcQTBKG8y0p41IvO7LyAd7Bz7B-Nhi7tMr3hKaLh7xp38unk7IqPgfA; Max-Age=2592000; Expires=Wed, 01 Mar 2023 15:49:35 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJnkU9R9a78QAAAAYYDXpRNI-NVT_M_EZfOSjWnvmpnZ5zOKbmxl2op_IRBl4so-bIftFzIRODCrcOj2BKJCA; Max-Age=2592000; Expires=Wed, 01 Mar 2023 15:49:35 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&751d4f86-4949-47cd-89ee-688cb4d9f03f"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 30-Jan-2024 15:49:35 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2478:u=1:x=1:i=1675093775:t=1675180175:v=2:sig=AQEZ5CqPNbX49AIsFVIEUDhcXCMiQfuh"; Expires=Tue, 31 Jan 2023 15:49:35 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzfSlzLUwFNpRdkKHhbg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 711F9796DFAF492EB8E723C2C048223C Ref B: OSL30EDGE0211 Ref C: 2023-01-30T15:49:35Z
date: Mon, 30 Jan 2023 15:49:34 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 6c754739b42f49d4f916eeddf5e0ad0b
dbd00615dd46df6aebbf184c5a674500fca79409
8cc3bb1dc1272a7db571c09fcd67fce2b6cc1e1c23daaa725c40ba5b66b204d6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 15:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/a/AItbvmldReMwBbtwPrdn_KJ2EeqGAHbPx5k0XkkrYr2f=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 4.0 kB URL HTTP/2 lh3.googleusercontent.com/a/AItbvmldReMwBbtwPrdn_KJ2EeqGAHbPx5k0XkkrYr2f=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash cc1ddc9acaa5d8977deed96f39871f95
c362c75b0afc43f0559ace75c5628836b62cd938
2d03897a582311c36f6f4b3587af5f95963c85a7a9edd2ae804217fe83a94943
GET /a/AItbvmldReMwBbtwPrdn_KJ2EeqGAHbPx5k0XkkrYr2f=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 4021
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AItbvmn0WsRdEOVxB_uIFZ666wYffn78HNqIzTq_Y0Ap=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 3.6 kB URL HTTP/2 lh3.googleusercontent.com/a/AItbvmn0WsRdEOVxB_uIFZ666wYffn78HNqIzTq_Y0Ap=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 08ea7019861f31a7ad3e6fba05d6bde8
4d471bf957d3694ca0c538a6a6a760ccab72861b
75c813f1153f45ee28c2d8094b065c807edf3785dd26f8fdad7c74227380d1e6
GET /a/AItbvmn0WsRdEOVxB_uIFZ666wYffn78HNqIzTq_Y0Ap=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 3624
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AItbvmkdOqsmzupo7H-Qy-NHX1vcNSAK9VdIdw-YXqy6=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 2.9 kB URL HTTP/2 lh3.googleusercontent.com/a/AItbvmkdOqsmzupo7H-Qy-NHX1vcNSAK9VdIdw-YXqy6=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash f131aef8d5c08b4d5d3b94d48f6f11df
d8405162bf210538e14902847c1dcc8d685133f4
2cf66c70d0e2e246a1f425e45938417b1aa8eb3a89f3c74c472b3878e8957a02
GET /a/AItbvmkdOqsmzupo7H-Qy-NHX1vcNSAK9VdIdw-YXqy6=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 2943
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AItbvmmsaXHbM7WOa0bMwoM-tEZckApRJaoKihGlcwoV=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 3.9 kB URL HTTP/2 lh3.googleusercontent.com/a/AItbvmmsaXHbM7WOa0bMwoM-tEZckApRJaoKihGlcwoV=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 037d3b700cbc318890ccc90f719870d4
14ace332bb94fb707ee3a6c81265b07e83808a59
b9283bde7755a6b495044a9c3d4de7b957679d6a5c924ba7018147862134d0e5
GET /a/AItbvmmsaXHbM7WOa0bMwoM-tEZckApRJaoKihGlcwoV=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 3933
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AATXAJz-Jv_g_GQiYubH3x2ZwSW5iYSuO0mqRCfEooMP=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 3.9 kB URL HTTP/2 lh3.googleusercontent.com/a/AATXAJz-Jv_g_GQiYubH3x2ZwSW5iYSuO0mqRCfEooMP=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 838b16f7ed0b98c7288bee37a0697b52
e90ca7f2d5b86c5710d0cc3ba4bb4c9e69caa4ea
ad2bde07c7637b4e5875d4b9bac407f9e3d28fce85eec33301d7a4e204493565
GET /a/AATXAJz-Jv_g_GQiYubH3x2ZwSW5iYSuO0mqRCfEooMP=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 3852
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AItbvmkza7eC55Kuzq09V_rde22HMFlqpO1K0A1hJhq_=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 2.9 kB URL HTTP/2 lh3.googleusercontent.com/a/AItbvmkza7eC55Kuzq09V_rde22HMFlqpO1K0A1hJhq_=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 07f72eb616564ce044be14d2d5bb36ed
21929a12137a4954ad806f0bacb5091c3c0b5a5e
9de907e29130f3f1dd54e5da1147e581ad13b92874f39d76eda190498c253919
GET /a/AItbvmkza7eC55Kuzq09V_rde22HMFlqpO1K0A1hJhq_=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 2887
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/ALm5wu3yezVoSGr8Fns_e3V2nIrYBrOg1iPhyNW_jxUZ=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 3.4 kB URL HTTP/2 lh3.googleusercontent.com/a/ALm5wu3yezVoSGr8Fns_e3V2nIrYBrOg1iPhyNW_jxUZ=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 84e1383d3c0f32bef339a50aab349932
ee5a95487c3b4d261c1e9213c5b660878281673d
aa1d881113ed5ec10538ec20ad3da5dc270047a2ec681c169131049d66e3d2d2
GET /a/ALm5wu3yezVoSGr8Fns_e3V2nIrYBrOg1iPhyNW_jxUZ=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 3368
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AATXAJylA1g6MMFRo60g2RphUNQMFojB1j7SdFHjAt5e=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 4.1 kB URL HTTP/2 lh3.googleusercontent.com/a/AATXAJylA1g6MMFRo60g2RphUNQMFojB1j7SdFHjAt5e=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash c2d6faea6fc2e87f9b026af6b05d6fda
6d4881357180002a512a24f0e733a3f29f9c5ee9
b4806a5b553fb94489e6bc50ace7c3e2b6fe2389397a1fdd1bff14f696b30066
GET /a/AATXAJylA1g6MMFRo60g2RphUNQMFojB1j7SdFHjAt5e=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 4069
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AItbvmmZY1TtZfB7kDKgBQCj2QhV1zcs1MRgourIYLpZ=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 2.8 kB URL HTTP/2 lh3.googleusercontent.com/a/AItbvmmZY1TtZfB7kDKgBQCj2QhV1zcs1MRgourIYLpZ=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash d2188a78a0d322bc956628116f4c4fb9
31ac92c1ffe2f0d8bf71eb5ccc472496172536c2
bd689055150c5c8f60f8111f4e27573a6d37e17e9e14c086b665e8267b202050
GET /a/AItbvmmZY1TtZfB7kDKgBQCj2QhV1zcs1MRgourIYLpZ=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 2808
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AItbvmn2foYX6Zg_tWBe9ooKFI7neXtKzj_3ybsLnDvc=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 3.4 kB URL HTTP/2 lh3.googleusercontent.com/a/AItbvmn2foYX6Zg_tWBe9ooKFI7neXtKzj_3ybsLnDvc=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 06aec71a4c2b1ec301975435d99d4011
9fbc5fe9f7c4a81085eb0629a71b088cac8a7624
4ab5e8b732c0d281a256e132c4b2e0dbb62ce88e0ce23b42307b347573a3d38f
GET /a/AItbvmn2foYX6Zg_tWBe9ooKFI7neXtKzj_3ybsLnDvc=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 3425
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AATXAJxSzLBh628oxB4QDbJD-SijwHBqpP4BVHDwOmd_=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 3.5 kB URL HTTP/2 lh3.googleusercontent.com/a/AATXAJxSzLBh628oxB4QDbJD-SijwHBqpP4BVHDwOmd_=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash ff07b744efe634cfd01aaf5594f8ba5c
dc1c64aa545456a5e22a846065034afac7cc6f6d
dca4f4f4d72c11a9c4207f9adfc3872894cb1b74994608e503093ff4c647cb3c
GET /a/AATXAJxSzLBh628oxB4QDbJD-SijwHBqpP4BVHDwOmd_=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 3521
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2816210%26time%3D1675093787877%26url%3Dhttps%253A%252F%252Fwww.xiteco.com%252F%26liSync%3Dtrue
13.107.42.14302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2816210%26time%3D1675093787877%26url%3Dhttps%253A%252F%252Fwww.xiteco.com%252F%26liSync%3Dtrue
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2816210%26time%3D1675093787877%26url%3Dhttps%253A%252F%252Fwww.xiteco.com%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xiteco.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=2816210&time=1675093787877&url=https%3A%2F%2Fwww.xiteco.com%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&16206a55-4b1a-431a-8961-5608273f3d53"; Domain=.linkedin.com; Expires=Tue, 30-Jan-2024 15:49:35 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&202301301549353268ecfb-6c03-47f1-8969-278c5c3858afAQFiecNv47UCYLLVNiQHXvLKiqkFjLT8"; Domain=.www.linkedin.com; Expires=Tue, 30-Jan-2024 15:49:35 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzUwOTM3NzU7MjswMjHpzZ7YahvYWdq/E/YHOfXnO78YmLhwu1NBnNyRxuVT8g==; Domain=.linkedin.com; Expires=Sat, 29 Jul 2023 15:49:35 GMT; Path=/; Secure; SameSite=None
lidc="b=OGST09:s=O:r=O:a=O:p=O:g=2423:u=1:x=1:i=1675093775:t=1675180175:v=2:sig=AQFs2G1RQ-nx3FWjmj-qqh8d-XjWOIsH"; Expires=Tue, 31 Jan 2023 15:49:35 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lor1
x-li-pop: afd-prod-lor1-x
x-li-proto: http/2
x-li-uuid: AAXzfSl2w65MC6eGBwHTxA==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: B4E50D3D40E945C592289385AE538512 Ref B: OSL30EDGE0211 Ref C: 2023-01-30T15:49:35Z
date: Mon, 30 Jan 2023 15:49:34 GMT
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=147601107012212&ev=PageView&dl=https%3A%2F%2Fwww.xiteco.com%2F&rl=&if=false&ts=1675093788343&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.1.1675093788341.449655326&it=1675093787904&coo=false&rqm=GET
157.240.205.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=147601107012212&ev=PageView&dl=https%3A%2F%2Fwww.xiteco.com%2F&rl=&if=false&ts=1675093788343&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.1.1675093788341.449655326&it=1675093787904&coo=false&rqm=GET
IP 157.240.205.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=147601107012212&ev=PageView&dl=https%3A%2F%2Fwww.xiteco.com%2F&rl=&if=false&ts=1675093788343&sw=1280&sh=1024&v=2.9.92&r=stable&ec=0&o=30&fbp=fb.1.1675093788341.449655326&it=1675093787904&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 30 Jan 2023 15:49:35 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:58 GMT
expires: Fri, 26 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 366217
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 03:13:01 GMT
expires: Fri, 26 Jan 2024 03:13:01 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 390994
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/AFdZucpYHgV9TQTDIj6uK7-Ad3lRXdDuWTNyZwQ7rMPrig=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 29 kB URL HTTP/2 lh3.googleusercontent.com/a-/AFdZucpYHgV9TQTDIj6uK7-Ad3lRXdDuWTNyZwQ7rMPrig=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 279f69e767af3981d4f62f1db7678350
305a0daecab57672850e8089cb53115872da62e0
0c52444025111afa9db0b51da5e628a8306308981e8abf6abb0e45cc688e69db
GET /a-/AFdZucpYHgV9TQTDIj6uK7-Ad3lRXdDuWTNyZwQ7rMPrig=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1f7"
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 29206
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/AFdZucpOd9OG06LzvGWnkcB4n-K6S1yUZPmsMSr-UB-nlkw=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 32 kB URL HTTP/2 lh3.googleusercontent.com/a-/AFdZucpOd9OG06LzvGWnkcB4n-K6S1yUZPmsMSr-UB-nlkw=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 0807b5d5889eea3399ce2ec2771c448c
4dabc3b1344afd7627ba8bfe6ebbbb1bec877afa
0ba39a095fb5f5a47840fc7c2e0e6018efacc9de36d49bf358a0d15e2cd38b93
GET /a-/AFdZucpOd9OG06LzvGWnkcB4n-K6S1yUZPmsMSr-UB-nlkw=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v8010"
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 31838
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/AOh14GikjK01wag0FvtYxL1cBpe93MEQWQukINH-TgfvUA=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 29 kB URL HTTP/2 lh3.googleusercontent.com/a-/AOh14GikjK01wag0FvtYxL1cBpe93MEQWQukINH-TgfvUA=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash d7177a112ba57cc71e89ef9022a96cac
67720e86915571ab9e240a1af0858ee6992e6bb7
172de878f3b6cc5ca5343418dd44f2fbfc73af393733a92f2d33036ec3f5029d
GET /a-/AOh14GikjK01wag0FvtYxL1cBpe93MEQWQukINH-TgfvUA=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1b94"
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 29442
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a/AATXAJxbOg9ejqk1IRxcAOTdSPQz4FbVvJQgWj7Eg85p=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 27 kB URL HTTP/2 lh3.googleusercontent.com/a/AATXAJxbOg9ejqk1IRxcAOTdSPQz4FbVvJQgWj7Eg85p=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash ca584a35254feb4b5397dbe8be13f62c
a48272e834ef97e6a88d7c9f21ec097a073dd6c8
d061117a1b2c084babb1279f720c85a7e75801758f95af80e2b5529ec045e71a
GET /a/AATXAJxbOg9ejqk1IRxcAOTdSPQz4FbVvJQgWj7Eg85p=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2168"
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 27394
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=2816210&time=1675093787877&url=https%3A%2F%2Fwww.xiteco.com%2F&liSync=true
13.107.42.14200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2816210&time=1675093787877&url=https%3A%2F%2Fwww.xiteco.com%2F&liSync=true
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=2816210&time=1675093787877&url=https%3A%2F%2Fwww.xiteco.com%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xiteco.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&4b0c9f11-e942-428a-8ba0-da134d90c349"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 30-Jan-2024 15:49:35 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2478:u=1:x=1:i=1675093775:t=1675180175:v=2:sig=AQEZ5CqPNbX49AIsFVIEUDhcXCMiQfuh"; Expires=Tue, 31 Jan 2023 15:49:35 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzfSl6Ue4CbvZsicRRKg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 8049A5E30A174F33B76EA400B95D277C Ref B: OSL30EDGE0211 Ref C: 2023-01-30T15:49:35Z
date: Mon, 30 Jan 2023 15:49:35 GMT
content-length: 0
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/ACNPEu_-kZ3FkApY-4YqBHY9aVJU_7gidVe43Pp7M_Gs=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 30 kB URL HTTP/2 lh3.googleusercontent.com/a-/ACNPEu_-kZ3FkApY-4YqBHY9aVJU_7gidVe43Pp7M_Gs=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash 7fe1aaee5c0c36ec6b2d05ec170cbf7c
de2257c1c9117a275ed4bb46387e281d6c4cb8a3
bcfec11319d639a8293bf817a18c15fa770d24c15ba3ab935d55b59ce9a79fa5
GET /a-/ACNPEu_-kZ3FkApY-4YqBHY9aVJU_7gidVe43Pp7M_Gs=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v5"
expires: Tue, 31 Jan 2023 15:49:36 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:36 GMT
server: fife
content-length: 30413
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/AFdZucouz0uv02zT__qeoJRLSlTWFqDD5EhHoFcPktzGX2o=s120-c-c0x00000000-cc-rp-mo-br100-s120
142.250.74.97200 OK 27 kB URL HTTP/2 lh3.googleusercontent.com/a-/AFdZucouz0uv02zT__qeoJRLSlTWFqDD5EhHoFcPktzGX2o=s120-c-c0x00000000-cc-rp-mo-br100-s120
IP 142.250.74.97:0
File type PNG image data, 120 x 120, 8-bit/color RGBA, non-interlaced\012- data
Hash a42d4875c2008a4057a2fb443cabce4b
a4a3ef31be6d86a1161b55db13cd71dce3b3e77f
925165bfdad52ff46d7341e13b42fe81a05c0594a2ba610e95e062b3d8b71e79
GET /a-/AFdZucouz0uv02zT__qeoJRLSlTWFqDD5EhHoFcPktzGX2o=s120-c-c0x00000000-cc-rp-mo-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v441e"
expires: Tue, 31 Jan 2023 15:49:36 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:36 GMT
server: fife
content-length: 26693
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
lh3.googleusercontent.com/a-/AOh14GhMCIdtHa0aA9CdVY2TUSlvaCMyjGO7akv1xvH1jgo=s120-c-c0x00000000-cc-rp-mo-ba2-br100-s120
142.250.74.97200 OK 9.9 kB URL HTTP/2 lh3.googleusercontent.com/a-/AOh14GhMCIdtHa0aA9CdVY2TUSlvaCMyjGO7akv1xvH1jgo=s120-c-c0x00000000-cc-rp-mo-ba2-br100-s120
IP 142.250.74.97:0
File type PNG image data, 256 x 256, 8-bit colormap, non-interlaced\012- data
Hash 45a5c7dfbf243efcf541d89a0f9dbcf4
b3b618dcb6029d454cd498ea6db62ee551b5e447
236a5547ac3009183a0542d082ac1682e802f427571881dddbc59991da58ab1c
GET /a-/AOh14GhMCIdtHa0aA9CdVY2TUSlvaCMyjGO7akv1xvH1jgo=s120-c-c0x00000000-cc-rp-mo-ba2-br100-s120 HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://embedsocial.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v9712"
expires: Tue, 31 Jan 2023 15:49:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.png"
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 15:49:35 GMT
server: fife
content-length: 20105
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.xiteco.com/?wc-ajax=get_refreshed_fragments
148.72.31.216200 OK 223 B URL HTTP/2 www.xiteco.com/?wc-ajax=get_refreshed_fragments
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JSON data\012- , ASCII text, with very long lines (331), with no line terminators
Hash 2c8cd317fbfb234b543dff9e4badeaf0
c2a7ac54ccf338cd6631c94ce2e1aa63b81df301
79f7e7b6f76d00a11bc216d91b34627b1dfa1675fe265936475421a8e2286cc3
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://www.xiteco.com
Connection: keep-alive
Referer: https://www.xiteco.com/
Cookie: _ga_603GX3W72C=GS1.1.1675093787.1.0.1675093787.0.0.0; _ga=GA1.2.1522490980.1675093787; _gcl_au=1.1.2027138507.1675093787; _gid=GA1.2.158928680.1675093788; _dc_gtm_UA-42516119-1=1; ln_or=eyIyODE2MjEwIjoiZCJ9; _fbp=fb.1.1675093788341.449655326
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.3.33
cache-control: max-age=0
expires: Mon, 30 Jan 2023 15:49:36 GMT
vary: Accept-Encoding
content-encoding: gzip
content-length: 223
content-type: application/json; charset=UTF-8
date: Mon, 30 Jan 2023 15:49:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-content/uploads/2018/05/pat_white.jpg
148.72.31.216200 OK 95 kB URL HTTP/2 www.xiteco.com/wp-content/uploads/2018/05/pat_white.jpg
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2500x2500, components 3\012- data
Hash a0a1ec115dfccf40da5be423be02d904
14f190a4cdbee5d618a1eef064bf25b93c4d04f3
521d508330367d1aa7e13c9d1056934372d3c5aedb2f8e2e675f384eb36a67a4
GET /wp-content/uploads/2018/05/pat_white.jpg HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.xiteco.com/
Cookie: _ga_603GX3W72C=GS1.1.1675093787.1.0.1675093787.0.0.0; _ga=GA1.2.1522490980.1675093787; _gcl_au=1.1.2027138507.1675093787; _gid=GA1.2.158928680.1675093788; _dc_gtm_UA-42516119-1=1; ln_or=eyIyODE2MjEwIjoiZCJ9; _fbp=fb.1.1675093788341.449655326
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 10 Feb 2021 08:15:57 GMT
accept-ranges: bytes
content-length: 94673
cache-control: max-age=10368000, public
expires: Tue, 30 May 2023 15:49:36 GMT
vary: Accept-Encoding
content-type: image/jpeg
date: Mon, 30 Jan 2023 15:49:36 GMT
server: Apache
X-Firefox-Spdy: h2
www.xiteco.com/wp-json/contact-form-7/v1/contact-forms/3079/refill
148.72.31.216200 OK 22 B URL HTTP/2 www.xiteco.com/wp-json/contact-form-7/v1/contact-forms/3079/refill
IP 148.72.31.216:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JSON data\012- , ASCII text, with no line terminators
Hash 061faf60a30dde2f20ba8f454c3020de
1940a26a9be338cb36f5b50a1d638ef36b124d51
21947b02ead137acb20e602e9448c7c453b2836d1a755aadd5e1c61ecd2eb034
GET /wp-json/contact-form-7/v1/contact-forms/3079/refill HTTP/1.1
Host: www.xiteco.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.xiteco.com/
Connection: keep-alive
Cookie: _ga_603GX3W72C=GS1.1.1675093787.1.0.1675093787.0.0.0; _ga=GA1.2.1522490980.1675093787; _gcl_au=1.1.2027138507.1675093787; _gid=GA1.2.158928680.1675093788; _dc_gtm_UA-42516119-1=1; ln_or=eyIyODE2MjEwIjoiZCJ9; _fbp=fb.1.1675093788341.449655326
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.3.33
x-robots-tag: noindex
link: <https://www.xiteco.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type, X-HTTP-Method-Override
allow: GET
vary: Origin,Accept-Encoding
cache-control: max-age=0
expires: Mon, 30 Jan 2023 15:49:36 GMT
content-encoding: gzip
content-length: 22
content-type: application/json; charset=UTF-8
date: Mon, 30 Jan 2023 15:49:36 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/2816210/domain/xiteco.com/token
54.230.111.78200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/2816210/domain/xiteco.com/token
IP 54.230.111.78:0
GET /partner/2816210/domain/xiteco.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.xiteco.com
Connection: keep-alive
Referer: https://www.xiteco.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
date: Mon, 30 Jan 2023 15:49:35 GMT
access-control-allow-origin: *
cache-control: public, max-age=15993
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bcnHvvALfWCan_Jz4ZCH7OfpjKKYdzZRiVRu8kmV7DjPWn2n6HGnaQ==
X-Firefox-Spdy: h2