5012022.xyz/
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: 5012022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 24 Nov 2022 06:52:17 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 24 Nov 2022 07:52:17 GMT
Location: https://5012022.xyz/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oROh0K7SPlF2qiH%2B%2BkomM6LhY3SdfSFSXCqF9ge4efJlpybvv1tHe0oPG8e2AyWAnhcb%2BbEoVDsiOypTHR8Bo9g50%2FgXy7udpmn0S3n5Z%2Fs4M7g3uns3mH8pzVueVg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f038904a9fb527-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb72f04bd7a4410640c0543bb4bd402
7c63b7e220b337b6a4f39864e11d6aa9e26c38ac
b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18028
Expires: Thu, 24 Nov 2022 11:52:45 GMT
Date: Thu, 24 Nov 2022 06:52:17 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 770d09773b5f304acf141fd66a4862b4
5ddc46ab75de26c858a9a6f6d1beaaec9bb181f5
c7bcc6928fa1c0bb225ce8a2f6badd6cb1bd6ea002fb808ed34e8dafbd7b3b26
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1932
Cache-Control: max-age=101471
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:17 GMT
Etag: "637df674-1d7"
Expires: Fri, 25 Nov 2022 11:03:28 GMT
Last-Modified: Wed, 23 Nov 2022 10:31:16 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 054ff0d1a0a43f7cb1d78dbd34e27f99
3caf54f3de1d6a8c6f6454083f8b8e7dec77db54
fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2572
Expires: Thu, 24 Nov 2022 07:35:09 GMT
Date: Thu, 24 Nov 2022 06:52:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 24 Nov 2022 06:18:57 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2000
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tlvwEUrAw2fUs7nwIcHknv+ck9eYc3ig3ov9Px/5nB7RRAzqkhQDm0cK4sHQxLpUBMq7fFAA/1o=
x-amz-request-id: 54DYSF9AYJ6G3QS0
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 24 Nov 2022 06:43:18 GMT
age: 539
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 5b6cd36e6a1bbc0de2998676b6bea738
719f766bd6b3e271e7b3d335826bfcb938eced9b
517295e35915581c87a850388885a3497353bb0ee1ec0d73cd70a0b1d9c1a79a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "517295E35915581C87A850388885A3497353BB0EE1EC0D73CD70A0B1D9C1A79A"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 24 Nov 2022 12:52:17 GMT
Date: Thu, 24 Nov 2022 06:52:17 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 24 Nov 2022 06:52:17 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 5b6cd36e6a1bbc0de2998676b6bea738
719f766bd6b3e271e7b3d335826bfcb938eced9b
517295e35915581c87a850388885a3497353bb0ee1ec0d73cd70a0b1d9c1a79a
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "517295E35915581C87A850388885A3497353BB0EE1EC0D73CD70A0B1D9C1A79A"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Thu, 24 Nov 2022 12:52:17 GMT
Date: Thu, 24 Nov 2022 06:52:18 GMT
Connection: keep-alive
e1.o.lencr.org/
200 OK 346 B IP
ASN #20940 Akamai International B.V.
Hash 7c8ffc372b5189a3421b7afad9e5945e
84ba4809993bc187c410e72a56b1760ba8abaaab
6413544c424a596b89f92201388724fbc3072b7fb4fe0061250e64dfce5e4b7e
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "6413544C424A596B89F92201388724FBC3072B7FB4FE0061250E64DFCE5E4B7E"
Last-Modified: Mon, 21 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10807
Expires: Thu, 24 Nov 2022 09:52:25 GMT
Date: Thu, 24 Nov 2022 06:52:18 GMT
Connection: keep-alive
5012022.xyz/
301 Moved Permanently 495 B IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (329), with CRLF line terminators
Hash 43fece0e6073efa426c0b0f82ec6766a
3283668ca2a51ee136ed118a776493c8b5b5c521
20ec76d65833d583853eec96e014a6a38fe3be81b134bfab78a6e1e16574b58f
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: 5012022.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Thu, 24 Nov 2022 06:52:17 GMT
content-type: text/html
location: https://www.squadhelp.com/name/5012022.xyz?lp=d
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BsEcQYwwKRkMxzwVB%2BHf5XTPlSunxmQPeDIh%2FtsAKnjttIc%2FLRD3dqoM13Uhh6dcrNpdk9FhGokwuLhR3TIh%2FSh3Qcjl3IUDKK3sjCMQVdmAuM9d%2FcFJHn01SGB6Zg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f0389318c0b50b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash eb52164d651f5f45416e873aec29eb04
405b29bb7e7cd4367cf82988f8603e53db65f139
ed885e05db822ff30fe951e10b6d4f21e574d053939afca792992a1549a15301
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1646
Cache-Control: max-age=96121
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:18 GMT
Etag: "637de2ad-1d7"
Expires: Fri, 25 Nov 2022 09:34:19 GMT
Last-Modified: Wed, 23 Nov 2022 09:06:53 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sP+LfjsrECfvZ2n7VCD6QA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: y01miW0PmTApV1+HS+Qr0cBt8/o=
www.squadhelp.com/static_images/home-icon1.png
200 OK 3.6 kB URL HTTP/2 www.squadhelp.com/static_images/home-icon1.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 255e49a515ce5a8fe5cef7a24045ca30
65072fc8cafd2abbd553c3ad5df5ca93b195d41c
c103affc8be9313fd99aff050e5db5c6d1bc94856e6b52b770ab5d4f5462d7cb
GET /static_images/home-icon1.png HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/5012022.xyz?lp=d
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:18 GMT
content-type: image/webp
content-length: 3552
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=5219
content-disposition: inline; filename="home-icon1.webp"
etag: "633e1091-1463"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 05 Oct 2022 23:17:37 GMT
vary: Accept
cf-cache-status: HIT
age: 15777
accept-ranges: bytes
server: cloudflare
cf-ray: 76f03899fe7eb4fd-OSL
X-Firefox-Spdy: h2
www.squadhelp.com/static_images/home-icon2.png
200 OK 2.2 kB URL HTTP/2 www.squadhelp.com/static_images/home-icon2.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash b31c6de35a7a24bd049cee7a1558c157
f53487cd7110bd9addbc08bd91707e34c98ee4e1
8d09c2a5731ced1cf0fd4e7f49645ba163bc2e32d35dd88b07a8fbee29639574
GET /static_images/home-icon2.png HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/5012022.xyz?lp=d
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:18 GMT
content-type: image/webp
content-length: 2166
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=3373
content-disposition: inline; filename="home-icon2.webp"
etag: "633e1092-d2d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 05 Oct 2022 23:17:38 GMT
vary: Accept
cf-cache-status: HIT
age: 116211
accept-ranges: bytes
server: cloudflare
cf-ray: 76f03899fe7fb4fd-OSL
X-Firefox-Spdy: h2
www.squadhelp.com/resources/views/frontend/sellers/theme5/imgs/video.png
200 OK 103 kB URL HTTP/2 www.squadhelp.com/resources/views/frontend/sellers/theme5/imgs/video.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Size 103 kB (102874 bytes)
Hash 5d2393021d371aed3cca4c0db1414cf0
6a3b169c6f5395bfc8f969c634e11daffc558d6c
82b305c25c6a7093ff4f0032658ac2a778de3465a4556656b861377395e043ab
GET /resources/views/frontend/sellers/theme5/imgs/video.png HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/5012022.xyz?lp=d
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:18 GMT
content-type: image/webp
content-length: 102874
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=166612
content-disposition: inline; filename="video.webp"
etag: "630e09f2-28ad4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 30 Aug 2022 13:00:34 GMT
vary: Accept
cf-cache-status: HIT
age: 651470
accept-ranges: bytes
server: cloudflare
cf-ray: 76f03899fe85b4fd-OSL
X-Firefox-Spdy: h2
www.squadhelp.com/static_images/home-icon3.png
200 OK 2.7 kB URL HTTP/2 www.squadhelp.com/static_images/home-icon3.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 2669c0dc36a56e7ae681b3c063fe0dcc
efce14449860b648ef0788a6ebdca0151318968c
5315f1506f9c7ff4bcba0a685a489554ef67d8c6c189f24df2193778f34d3caa
GET /static_images/home-icon3.png HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/5012022.xyz?lp=d
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:18 GMT
content-type: image/webp
content-length: 2736
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
access-control-expose-headers: Content-Length,Content-Range
cache-control: max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=4142
content-disposition: inline; filename="home-icon3.webp"
etag: "633e1092-102e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 05 Oct 2022 23:17:38 GMT
vary: Accept
cf-cache-status: HIT
age: 1155740
accept-ranges: bytes
server: cloudflare
cf-ray: 76f03899fe81b4fd-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 80389a495dc7c545bace3203f00d8ea3
a09d93c953a43fdf41179a16d8d6bbc287f4f0bd
d9c0a487698f276e396dd96efd9eae33c18313dccc1e42ff615e472bc4bd8e20
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 292
Cache-Control: max-age=127146
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:18 GMT
Etag: "637e6128-118"
Expires: Fri, 25 Nov 2022 18:11:24 GMT
Last-Modified: Wed, 23 Nov 2022 18:06:32 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 280
www.squadhelp.com/modules/marketplace/assets/fonts/bubble/ProductSans-Regular.woff2
200 OK 13 kB URL HTTP/2 www.squadhelp.com/modules/marketplace/assets/fonts/bubble/ProductSans-Regular.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 13440, version 1.0\012- data
Hash a2a67cca7e731eecd64d7689f6e58360
da6671f04a96bd5f39b3f3425d7ee101231f511f
abc04a100d9ffb66432cc6b85574582ac7d4da86d7eba38a699c605fe3086fbe
GET /modules/marketplace/assets/fonts/bubble/ProductSans-Regular.woff2 HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.squadhelp.com/var/38aa56c2b82c262dcf55db8d9aba81eb.css
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:19 GMT
content-type: application/octet-stream
content-length: 13440
last-modified: Mon, 12 Sep 2022 15:01:37 GMT
etag: "631f49d1-3480"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2675963
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389bd888b4fd-OSL
X-Firefox-Spdy: h2
www.squadhelp.com/modules/marketplace/assets/fonts/bubble/ProductSans-Bold.woff2
200 OK 20 kB URL HTTP/2 www.squadhelp.com/modules/marketplace/assets/fonts/bubble/ProductSans-Bold.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 20100, version 1.0\012- data
Hash eb964ca850eecca0ccad41e2905742cc
5c07dcf2dc8a0cb41f79aa6242386ba3526518c0
46c3a9dd12310f604a7003f51fc8b81509f63bfda367f1d537854f0120ba30bc
GET /modules/marketplace/assets/fonts/bubble/ProductSans-Bold.woff2 HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.squadhelp.com/var/38aa56c2b82c262dcf55db8d9aba81eb.css
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:19 GMT
content-type: application/octet-stream
content-length: 20100
last-modified: Mon, 12 Sep 2022 15:01:34 GMT
etag: "631f49ce-4e84"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2675963
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389bd88cb4fd-OSL
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/icon-arrow-long-right.svg
200 OK 115 kB URL HTTP/2 www.squadhelp.com/html/static_images/icon-arrow-long-right.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text
Size 115 kB (114985 bytes)
Hash c8b3ebbe7a64257fea786262ea90c9a0
dbe4b1924e8ac9cf901e505ffd3b737405eaab78
1f6494ca630f76a1ffbf6593edd8576ed4983b989cbef84de2852acf076f3fb7
GET /html/static_images/icon-arrow-long-right.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/38aa56c2b82c262dcf55db8d9aba81eb.css
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:19 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:36:02 GMT
etag: W/"63431492-e1"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2686298
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389ba85bb4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js
200 OK 553 B URL HTTP/2 www.google.com/recaptcha/api.js
IP
File type ASCII text, with very long lines (850), with no line terminators
Hash 1309ff133720d219cc98090d66a051ed
b96fc5a893e42be16d687d7abdecdb13d348a019
358683c66634ea5ee3021c93111d8621d583880bcbbfadf3ec2ff87a15ea1038
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Thu, 24 Nov 2022 06:52:19 GMT
date: Thu, 24 Nov 2022 06:52:19 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 6fe23ae41ec0cbb3d702b1c64028cd13
e0e4d852454a5eae80a797aaa6f0991834dcc19a
47a12f27ec1ec271d17295d822c69d1b49c6a24107f3f7ce06a320688fae7f3c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.squadhelp.com/domain_audios/5012022.xyz-234.mp3
206 Partial Content 69 kB URL HTTP/2 www.squadhelp.com/domain_audios/5012022.xyz-234.mp3
IP
File type Audio file with ID3 version 2.4.0, contains:\012- MPEG ADTS, layer III, v2, 48 kbps, 24 kHz, Monaural\012- data
Hash 93b57b74e9c9e9ac18142fa63dfd06a5
d37503715dbc0791effaa13413052523dfcc441c
d71c5700f81da4b556eb55a0b64a91ed831d70fdd99f6e77060c9eb4a7b5d2f0
GET /domain_audios/5012022.xyz-234.mp3 HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://www.squadhelp.com/name/5012022.xyz?lp=d
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 206 Partial Content
date: Thu, 24 Nov 2022 06:52:19 GMT
content-type: audio/mpeg
content-length: 69309
last-modified: Mon, 31 Oct 2022 18:10:15 GMT
etag: "63600f87-10ebd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: MISS
content-range: bytes 0-69308/69309
server: cloudflare
cf-ray: 76f0389a1ea3b4fd-OSL
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/icon-heart-black.svg
200 OK 2.5 kB URL HTTP/2 www.squadhelp.com/html/static_images/icon-heart-black.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (882)
Hash b63090a88e96648f905fb8e8236386fb
1f39f79ab38a88cf00bd396c16b2fb0631f1f1b6
d23ad41fc76bbd824b2d583a6543c4d29dfba6cac1de1b4c408da0212f53b9e1
GET /html/static_images/icon-heart-black.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/38aa56c2b82c262dcf55db8d9aba81eb.css
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:19 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:36:03 GMT
etag: W/"63431493-3da"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2686298
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389bb865b4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/icon-arrow-down-blue.svg
200 OK 105 kB URL HTTP/2 www.squadhelp.com/html/static_images/icon-arrow-down-blue.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (679)
Size 105 kB (105281 bytes)
Hash 10d5956b11188386f9bc776640919963
73365eaa92e5a27064a02b4e73b6aa0e71aa79ca
2c2b32da3450540f464bb8d88c1302c528c3a6fc548e2d4bba723877918a5d43
GET /html/static_images/icon-arrow-down-blue.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/38aa56c2b82c262dcf55db8d9aba81eb.css
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:19 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:36:03 GMT
etag: W/"63431493-326"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2686298
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389ba85db4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:19 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4604
Expires: Thu, 24 Nov 2022 08:09:03 GMT
Date: Thu, 24 Nov 2022 06:52:19 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4604
Expires: Thu, 24 Nov 2022 08:09:03 GMT
Date: Thu, 24 Nov 2022 06:52:19 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4604
Expires: Thu, 24 Nov 2022 08:09:03 GMT
Date: Thu, 24 Nov 2022 06:52:19 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4604
Expires: Thu, 24 Nov 2022 08:09:03 GMT
Date: Thu, 24 Nov 2022 06:52:19 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg
200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dc118bae963b381ce5450890130ecf15
9355a16a81b11e024dd2c5c0024aba1121fff925
cb5bc2cc49e05c133434eeb725690b3e32a0d3c6b75074582f941eee3bf7e1c1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F707b8d34-3bd2-4793-9e17-c60d0b285f84.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9828
x-amzn-requestid: bf2f8429-416d-40d4-a237-7593ee26c27a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEv0KHywIAMFvtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e934d-349e1dcc595b1be906a83577;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:40:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bQcpPUgu6eN6PQeLMGWwBlf01iHj77_aXHjKmh8SH7HsWlUX6kipDg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:23 GMT
age: 32096
etag: "9355a16a81b11e024dd2c5c0024aba1121fff925"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0856fdb55f19f03a1bec38b3d6e0ac77
89accd230fba95fe0049678070817b36ead015fa
17c6e6f9bb8f4261fff2dc2a43ed994986418761624b8afead768e89927594f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F433fbaf5-7c54-485b-af70-542e1e788832.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5070
x-amzn-requestid: d86d95ad-9b78-4047-82e7-04e83a97e330
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEwViF1GIAMF_PQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9423-10809ba1634776171cf79cb8;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:44:03 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8rbsN9OVJmneT9ov-Q7V4RB8DP5UWhhn-7cnukHiBpl06zmMM0zJTg==
via: 1.1 0dc4feb22bb4657ce2bb95fd05ec7122.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:57:20 GMT
age: 32099
etag: "89accd230fba95fe0049678070817b36ead015fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 481c033b9ffd030ff0de6e35cf788b47
85d3baad9217af2b5d75c019d2ef95dbb919a788
02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 65a3db77-b2e6-40b9-a776-021c2e9b56d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bubSsHbZoAMFZNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6375a5aa-1286b97968cc2e4c7fe8ab29;Sampled=0
x-amzn-remapped-date: Thu, 17 Nov 2022 03:08:26 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: _j5ykGwKHIQEFLyuJK_OMvs-CsCvkUQhZc_YD8gAtbyOECQ894zvjw==
via: 1.1 38eecd3ca21bf068d69a2f9cfe668d14.cloudfront.net (CloudFront), 1.1 abbf2df97f9d83839470842dc2e68cb6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 05:46:02 GMT
age: 3977
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a16068e-5377-48a5-aaf5-19e46c86681d.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a16068e-5377-48a5-aaf5-19e46c86681d.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e091109c8f54cf23b221d8d0a35d6914
a67bdea6358146f7de38d6be37e9f69a8edd5f22
362dc1665e27a4307a7ce832019a6e5e3d8edb0d18db084e4dc9dd026ea68df4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a16068e-5377-48a5-aaf5-19e46c86681d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11447
x-amzn-requestid: fb600f6e-d936-4255-b79f-528d9cb8e729
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYTEqyIAMFalg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-2bc3102e268ccdff7f960289;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: flF0yRgk5BMItKbudaEq7iQgLJcCHd6WNsvqFr1uDAvI_EKyVkc4_w==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 07:15:20 GMT
etag: "a67bdea6358146f7de38d6be37e9f69a8edd5f22"
content-type: image/jpeg
age: 85019
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a9a0208-d5ae-4e15-bd4d-c5c19edf354e.jpeg
200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a9a0208-d5ae-4e15-bd4d-c5c19edf354e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1404c6b865808ea73ca5b2062fefecc0
c66fd3a955cd81ab93474fb1aabc4c19d5775bcc
0a92ca52eff8baa4ba43bdb29008c59bcd37c55e78ac657de25819e980ea8e96
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a9a0208-d5ae-4e15-bd4d-c5c19edf354e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5545
x-amzn-requestid: 215b9f9b-4941-4c13-a1d4-6fdc5b453fad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCtEkIIAMF3gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-27081b9e0dc1de6522299e4e;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SFO53-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Xr183esurgfu-4jjQtCS5s_np_CtltrPx48zpq-NMwZbcGnAwTxtkg==
via: 1.1 68914922a694954838e87fc9b0aa10fe.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:52:56 GMT
age: 32363
etag: "c66fd3a955cd81ab93474fb1aabc4c19d5775bcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
vimeo.com/api/oembed.json?url=https%3A%2F%2Fvimeo.com%2F720893092&domain=www.squadhelp.com&id=720893092&autoplay=0
200 OK 606 B URL HTTP/1.1 vimeo.com/api/oembed.json?url=https%3A%2F%2Fvimeo.com%2F720893092&domain=www.squadhelp.com&id=720893092&autoplay=0
IP
File type JSON data\012- , ASCII text, with very long lines (1207), with no line terminators
Hash 1b8f17b08757f9ca6a8b9a89201b648e
93816ebaa548dcc36c4294e77edbe0de5420dcff
5da5f3386713614c57a271a5aa3c506040b9de4299f633382f61afd8e1605b53
GET /api/oembed.json?url=https%3A%2F%2Fvimeo.com%2F720893092&domain=www.squadhelp.com&id=720893092&autoplay=0 HTTP/1.1
Host: vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 06:52:19 GMT
Content-Type: application/json
Content-Length: 606
Connection: keep-alive
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With
x-content-type-options: nosniff
x-frame-options: sameorigin
last-modified: Thu, 24 Nov 2022 06:18:03 GMT
etag: "81a5200f2761f46f97590d08bb2881f17c15d7b7"
x-ua-compatible: IE=edge
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy-report-only: default-src https: data: blob: wss: 'unsafe-inline' 'unsafe-eval'; report-uri /_csp
x-bapp-server: pweb-c8f7d5f98-j5mfz
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: webproxy-rollout-prod-varnish-3
x-backend-proxy: webproxy4
Content-Encoding: gzip
Accept-Ranges: bytes
Age: 0
X-Served-By: cache-iad-kjyo7100041-IAD, cache-cph2320025-CPH
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1669272740.715954,VS0,VE97
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=6HVYMrZSDw22dlm2ILhG8aw_kCnPnmWMlhsCzBdYccg-1669272739-0-AdWhgcTDOWAZtZlAKynwXf4ofqWL0uWl2GF8clzuE0dGfuf+40hbaLQpkJXUd9Pi0F+G8e733ThqZWPc5PCa/wo=; path=/; expires=Thu, 24-Nov-22 07:22:19 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 76f0389f1ee1b523-OSL
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 23 Nov 2022 21:47:06 GMT
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
age: 32713
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/search-insights@1.3.1
200 OK 2.9 kB URL HTTP/2 cdn.jsdelivr.net/npm/search-insights@1.3.1
IP
File type ASCII text, with very long lines (10262)
Hash f66557a8cde2590db029b6b8304378db
11bbbcd7974761b20ec50d17f4049977315d9d08
9ab7d5c8a5762c81158601720fd131bef233a57193e6daaa8d1ad26e5912f1d3
GET /npm/search-insights@1.3.1 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 1.3.1
x-jsd-version-type: version
etag: W/"2817-FGLI0cv/s1qAA3nM5zLdFEpck2Q"
content-encoding: gzip
accept-ranges: bytes
date: Thu, 24 Nov 2022 06:52:19 GMT
age: 2939229
x-served-by: cache-fra-eddf8230023-FRA, cache-bma1670-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2870
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 280 B IP
Hash 9fc47df66f766e631ee72b07f14eae3c
10efe23c2677829012ec3ac1c0cd45fcbb0c851b
abb9ee4b6ce6bc3df8bde8309882b1c3b07a627629200d8e6080ae24ec3a2775
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2766
Cache-Control: max-age=123907
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:19 GMT
Etag: "637e4ad8-118"
Expires: Fri, 25 Nov 2022 17:17:26 GMT
Last-Modified: Wed, 23 Nov 2022 16:31:20 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 280
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
Hash 070ccc603167ac469f72465c36a0dde9
fd6994397434e17231171ab00fd3735d748a3098
945842b5c49f1d921087cdab07f84f30810adcef4c823f13a6ed812718dcdbb8
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 06:52:19 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "04808BB9DE396A4D052C0039906F508583C05511"
Expires: Thu, 24 Nov 2022 17:00:00 GMT
Last-Modified: Thu, 24 Nov 2022 05:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3117
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76f038a0ee690af6-OSL
www.squadhelp.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
200 OK 24 kB URL HTTP/2 www.squadhelp.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
Hash 360d47590f8cf6987cf08a7017d7a0c7
6496066df9b80cb160199241414ecf7af0b68318
dfeae3a6fd6d5731cad6606e9d0ad64a7dd59f929b405bd9d402ab4e0e1d5aae
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/5012022.xyz?lp=d
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:18 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 13:35:09 GMT
etag: W/"637cd00d-4d7"
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389a0e88b4fd-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 26 Nov 2022 06:52:18 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 6254651c381f7b7303b440a63277fb1e
43d10c93c13a333002c19c34a3c245b0f90a9112
e355c02d8cab9a6479e9e005d5ac347655cac046788fcb33f72b6c0f928706ac
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121250
Date: Thu, 24 Nov 2022 06:52:20 GMT
Etag: "637e4ad7-1d7"
Expires: Fri, 25 Nov 2022 16:33:10 GMT
Last-Modified: Wed, 23 Nov 2022 16:31:19 GMT
Server: ECS (dcb/7FA5)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: vJWkm0ZVA2lbRdhF7_New4txmyVkAwiY8sTe4h0nNF7jquJrfYS1Rw==
Age: 111
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 939c7cbfb418e120172f99d44d1060c4
f6b8960776e005f72099ef9912995d7cc5ef50cd
05ae8ce9995f2a5d8c7c4bae658001595fd284c67880cba54c0bd1c2e46cb7a6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "05AE8CE9995F2A5D8C7C4BAE658001595FD284C67880CBA54C0BD1C2E46CB7A6"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4929
Expires: Thu, 24 Nov 2022 08:14:29 GMT
Date: Thu, 24 Nov 2022 06:52:20 GMT
Connection: keep-alive
ocsp.sectigo.com/
200 OK 472 B IP
Hash 93bd78803099544350153d462647be50
3719fb0d12bead50ba71367771d7b39baa81eb03
ea3b15b23d2d59aec21ac5c2c1c764f61d3b38e52ddb99a33df566d72a5b49a2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 06:52:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 15:27:42 GMT
Expires: Mon, 28 Nov 2022 15:27:41 GMT
Etag: "3719fb0d12bead50ba71367771d7b39baa81eb03"
Cache-Control: max-age=375920,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f038a17e9b1bfe-OSL
widget.intercom.io/widget/ld9mkn53
200 OK 6.2 kB URL HTTP/2 widget.intercom.io/widget/ld9mkn53
IP
File type Unicode text, UTF-8 text, with very long lines (18920), with no line terminators
Hash 45ad94131af5970a8f20ac9c37d9a547
3bb1df32710ac21a69ea536718967cf962c2277c
4d20e62e1d7bfc1a667a6148789a1d81278616240b3e8e939a258bcf69e72b76
GET /widget/ld9mkn53 HTTP/1.1
Host: widget.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 6171
last-modified: Wed, 23 Nov 2022 14:49:48 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: VUZ3DIRCqb9o1c0fuPnoI3hlmOZkXXx3
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Nov 2022 06:39:05 GMT
cache-control: max-age=900, s-maxage=900, public
etag: "45ad94131af5970a8f20ac9c37d9a547"
x-cache: Error from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: kW0fD7TpnB1h_iljzq32usOP96kbx34fXPCTJ6rTfIl-c4xdDpn0Lg==
age: 795
vary: Accept-Encoding, Origin
X-Firefox-Spdy: h2
player.vimeo.com/video/720893092?h=eddf4f3cf1&app_id=122963
200 OK 6.4 kB URL HTTP/1.1 player.vimeo.com/video/720893092?h=eddf4f3cf1&app_id=122963
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (20760), with no line terminators
Hash 331ae5fb645f702791338137e31bfb3d
81cd7473b5ac17727d8d53d94081904b2e855d43
6c5b76725c58d9e5916bc5a5dd960f945cb0707002d91fc9052fb4ee60774899
GET /video/720893092?h=eddf4f3cf1&app_id=122963 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 06:52:20 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: resource: https://f.vimeocdn.com https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv https://f.vimeocdn.com; style-src 'self' 'unsafe-inline' https://f.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com https://f.vimeocdn.com; connect-src 'self' ws: wss: https://vimeo.com https://vimeo.dev https://api.vimeo.com https://api.vimeo.dev https://*.ci.vimeows.com https://csi.gstatic.com https://fresnel-player-staging.vimeows.com https://fresnel-event-staging.vimeows.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://netflux.cloud.vimeo.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://sentry.io https://*.ingest.sentry.io https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com https://live-api-dev.cloud.vimeo.com https://devcaptions.cloud.vimeo.com/; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; default-src 'none'; font-src https://edge-assets.wirewax.com https://player.vimeo.com https://fonts.gstatic.com; img-src 'self' data: https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://player.vimeo.com https://*.ci.vimeows.com https://videoapi-sprites.vimeocdn.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com https://f.vimeocdn.com; frame-src 'self' https://*
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
link: <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin, <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin
p3p: CP="This is not a P3P policy! See https://vimeo.com/privacy"
expires: Thu, 24 Nov 2022 06:53:43 GMT
x-host: player-57c7694bdc-lf2m6
via: 1.1 varnish, 1.1 varnish
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-varnish-cache: 1
x-vserver: playproxy-rollout-prod-varnish-9
x-backend-proxy: playproxy10
x-bapp-server: player-57c7694bdc-lf2m6
Age: 0
X-Served-By: cache-cph2320027-CPH
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1669272740.994978,VS0,VE131
Vary: Accept-Encoding
X-Player-Backend: p
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=9s3mgpaln9RYM3EdV7jMJ1.Bs1Zso.2ROwXc8LbSHhE-1669272740-0-AQZdV6iczJ/OCatgq5VV3m2Eavq8ioRCRdt0zv8pb+OKvzaahIj6it3pPnk9oQfc+ZakNCRnziwWdbcx1/mH3t0=; path=/; expires=Thu, 24-Nov-22 07:22:20 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 76f038a0dfbcfabc-OSL
Content-Encoding: gzip
ocsp.digicert.com/
200 OK 727 B IP
Hash 670419cc338e9f5b46d7026585cf309e
4c4f10ae16b02da9b4d8a7befbf809ea01c481f9
6cd3aeb9fb9c870e5222cc30876e64a6df6ce5b3e95be775c632028d256ba13f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6291
Cache-Control: max-age=127396
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:20 GMT
Etag: "637e4ab6-2d7"
Expires: Fri, 25 Nov 2022 18:15:36 GMT
Last-Modified: Wed, 23 Nov 2022 16:30:46 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 727
insights.algolia.io/1/events?X-Algolia-Application-Id=UY28JH5EE6&X-Algolia-API-Key=eef4bbb1b2bf44af3b7b0b62d16a28fb&X-Algolia-Agent=insights-js%20(1.3.0)%3B%20insights-gtm%20(1.0.1)
200 OK 29 B URL HTTP/2 insights.algolia.io/1/events?X-Algolia-Application-Id=UY28JH5EE6&X-Algolia-API-Key=eef4bbb1b2bf44af3b7b0b62d16a28fb&X-Algolia-Agent=insights-js%20(1.3.0)%3B%20insights-gtm%20(1.0.1)
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash ca1d7c9f272503952d3bf37cc4a649bd
7129c38467ef8cd3e902fe034328071f5cd07602
e5ddba99266abd003aa6eef168bc2a2bea5e69b1e0d1fc4373150934ab5dd76a
POST /1/events?X-Algolia-Application-Id=UY28JH5EE6&X-Algolia-API-Key=eef4bbb1b2bf44af3b7b0b62d16a28fb&X-Algolia-Agent=insights-js%20(1.3.0)%3B%20insights-gtm%20(1.0.1) HTTP/1.1
Host: insights.algolia.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 145
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.squadhelp.com
content-type: application/json
vary: Origin
date: Thu, 24 Nov 2022 06:52:20 GMT
content-length: 29
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.intercomcdn.com/vendor.231270d1.js
200 OK 108 kB URL HTTP/2 js.intercomcdn.com/vendor.231270d1.js
IP
File type Unicode text, UTF-8 text, with very long lines (65431)
Size 108 kB (108179 bytes)
Hash be8688a47ab558cac22ae7cbcd61b959
2491de152a0bd5d6b1baf2d4d6d5a9349e0529eb
9d35e70022f665606ac507af408975267444b3f8af92fc45cfe91dded753563d
GET /vendor.231270d1.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 108179
last-modified: Wed, 23 Nov 2022 14:48:19 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: EVd_oeGAoTq3VMRO9zOnzVYAFpYgwaQV
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Nov 2022 06:49:51 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "be8688a47ab558cac22ae7cbcd61b959"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: FJxoKEzK_5TF0CzU7rWtbLfXSDskETINex-m33USfM7HmscHVaCojg==
age: 149
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
script.fixel.ai/config/FXL-1150-2383.json
200 OK 0 B URL HTTP/2 script.fixel.ai/config/FXL-1150-2383.json
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /config/FXL-1150-2383.json HTTP/1.1
Host: script.fixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.squadhelp.com/
Origin: https://www.squadhelp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-length: 0
date: Thu, 24 Nov 2022 06:46:48 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
server: AmazonS3
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _JlEFX1dVMwDdyv5Ncog7354HX_XtE47wOrxlhEmQUo8NhxdLXyU4A==
age: 333
X-Firefox-Spdy: h2
script.fixel.ai/config/FXL-1150-2383.json
200 OK 152 B URL HTTP/2 script.fixel.ai/config/FXL-1150-2383.json
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 651a6d3ba7143f83f44261232093a38c
43e11c4cc441663daf605df0414947c8756f2155
7a5cfb625e89e99af010b95040c9b9fdd6f518b9b87da64206c00fbb120933d1
GET /config/FXL-1150-2383.json HTTP/1.1
Host: script.fixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/json
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
content-length: 152
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Mon, 01 Feb 2021 10:13:36 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: VlbH.UIcLlGlg9QOIym1wMb.PKZS9R_3
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Nov 2022 06:52:20 GMT
etag: "651a6d3ba7143f83f44261232093a38c"
vary: Origin
x-cache: Hit from cloudfront
via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: g_N9zP1N-tz5A0h8Y8Y45oJeOn9odTdfioiVnwAuBj8NHEC4sRvdLw==
age: 57
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 29aef7781fd855e700a683b6c8c2e214
380ccd2f214955e1b3d55f2f79a81e30a9a18cb3
6ac72415d1ccb12fdbc8f9ead6d1ed9a5cf4461183971220829a7b002fcd546d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=124665
Date: Thu, 24 Nov 2022 06:52:20 GMT
Etag: "637e496c-1d7"
Expires: Fri, 25 Nov 2022 17:30:05 GMT
Last-Modified: Wed, 23 Nov 2022 16:25:16 GMT
Server: ECS (dcb/7EA6)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: s6ssQFIXR7z9IteLRvAbskyGwMiy1S5PvSWsXpMHHuziSQc5RnL-yg==
Age: 3889
f.vimeocdn.com/p/4.14.1/css/player.css
200 OK 21 kB URL HTTP/2 f.vimeocdn.com/p/4.14.1/css/player.css
IP
File type ASCII text, with very long lines (65495)
Hash 4acf7af3b78cc35650da87ee77464c29
abe870c3258849b8286439c8e06b7b885a1f1ac3
ed7715a1dab6ae7896cca6ae124ce68f61b8a502a7f468001142fdf9a81a3626
GET /p/4.14.1/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 24 Nov 2022 06:52:20 GMT
age: 130428
x-served-by: cache-iad-kiad7000129-IAD, cache-bma1671-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 28931
x-timer: S1669272740.241709,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 20726
X-Firefox-Spdy: h2
i.vimeocdn.com/video/1451960391-27331ec81e39eb316fde7c35212ed6f1497510379d6f0a68a08f21f2c061fabc-d.jpg?mw=80&q=85
200 OK 1.5 kB URL HTTP/2 i.vimeocdn.com/video/1451960391-27331ec81e39eb316fde7c35212ed6f1497510379d6f0a68a08f21f2c061fabc-d.jpg?mw=80&q=85
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Hash 5e87158ee30c950b032e6335be012e5b
469828cd2eb6bef44f0a91b4a864318ac99af3c9
2351ff70736da33512a32489ea9bf8c6b68bc6dcc6e9275f105e6db5ac42d90a
GET /video/1451960391-27331ec81e39eb316fde7c35212ed6f1497510379d6f0a68a08f21f2c061fabc-d.jpg?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: 5e87158ee30c950b032e6335be012e5b
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-njkb
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Thu, 24 Nov 2022 06:52:20 GMT
age: 2571009
x-served-by: cache-dfw-kdfw8210022-DFW, cache-bma1671-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 26251, 4
x-timer: S1669272740.254570,VS0,VE0
content-length: 1518
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash 93bd78803099544350153d462647be50
3719fb0d12bead50ba71367771d7b39baa81eb03
ea3b15b23d2d59aec21ac5c2c1c764f61d3b38e52ddb99a33df566d72a5b49a2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 06:52:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 21 Nov 2022 15:27:42 GMT
Expires: Mon, 28 Nov 2022 15:27:41 GMT
Etag: "3719fb0d12bead50ba71367771d7b39baa81eb03"
Cache-Control: max-age=375920,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f038a26f621bfe-OSL
q.quora.com/_/ad/dcf3487c2f234553bf375cb5ea4c260b/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd
200 OK 43 B URL HTTP/1.1 q.quora.com/_/ad/dcf3487c2f234553bf375cb5ea4c260b/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /_/ad/dcf3487c2f234553bf375cb5ea4c260b/pixel?tag=ViewContent&i=gtm&u=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd HTTP/1.1
Host: q.quora.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Thu, 24 Nov 2022 06:52:20 GMT
Server: nginx
Strict-Transport-Security: max-age=63072000; includeSubDomains; preload
X-Q-Stat: ,7723d80cd5c55f0f53c315e69f43eb56,10.0.0.28,6430,91.90.42.154,,214425351260,1,1669272740.253,0.001,,.,0,0,0.000,0.000,-,0,0,197,133,66,10,26847,,,,,,-,
Content-Length: 43
Connection: keep-alive
f.vimeocdn.com/p/4.14.1/js/player.module.js
200 OK 117 kB URL HTTP/2 f.vimeocdn.com/p/4.14.1/js/player.module.js
IP
File type Unicode text, UTF-8 text, with very long lines (65445)
Size 117 kB (116762 bytes)
Hash 93b123a49355679299f45758f7c7ead7
5edf4cf812084390b321b37e824196e0a5351243
2310a3197f869d02d56fbeabd61c29c842e0c22e4bcc8c528c17beb1a348042b
GET /p/4.14.1/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 24 Nov 2022 06:52:20 GMT
age: 130428
x-served-by: cache-iad-kjyo7100101-IAD, cache-bma1652-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 23946
x-timer: S1669272740.292559,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 116762
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash b71ab482301c3b448112c58aa4a4b50a
17395f37d70fe6e07726e5a541c623a69fd281a9
68a2375b2a0adc63fd548ea85ce57850a76260793854b09d20e4c2a49ea5875c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Thu, 24 Nov 2022 06:52:20 GMT
Last-Modified: Thu, 24 Nov 2022 06:15:32 GMT
Server: ECS (dcb/7F14)
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: b6QJUQ2iT_LAop7h_xZlBj1_HpTg_zTyaDptUjAKjZNfZGhg5lzYEw==
Age: 2209
f.vimeocdn.com/p/4.14.1/js/vendor.module.js
200 OK 116 kB URL HTTP/2 f.vimeocdn.com/p/4.14.1/js/vendor.module.js
IP
File type ASCII text, with very long lines (65457)
Size 116 kB (116187 bytes)
Hash 30972a3e9883ce81e7bb54ca377da88f
19077360603241f1fb218c44027d7d1437770d8d
10fb36a7c941c7565c0cb906cfeafc288aeaca33c293bbf3d1353f418eeb7d8f
GET /p/4.14.1/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 24 Nov 2022 06:52:20 GMT
age: 130428
x-served-by: cache-iad-kjyo7100028-IAD, cache-bma1652-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 29804
x-timer: S1669272740.464873,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 116187
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash 146e6e3be66e0a86d9cad5afc1d721ce
dce52d9504271332800be6a5af449673591d42aa
2c2fc47cf10149324312563add7b402bde418c696f415379b434e51c1126a219
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119944
Date: Thu, 24 Nov 2022 06:52:20 GMT
Etag: "637e36fa-1d7"
Expires: Fri, 25 Nov 2022 16:11:24 GMT
Last-Modified: Wed, 23 Nov 2022 15:06:34 GMT
Server: ECS (dcb/7F3A)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZoIiyhcc0sP376ucTyleTcAsvggkgg-z9ojYoySkcWEwhwmYf_A0Zg==
Age: 3891
f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
200 OK 997 B URL HTTP/2 f.vimeocdn.com/js_opt/modules/utils/vuid.min.js
IP
File type ASCII text, with very long lines (1839)
Hash b81408535edef4b73951fa7683a0ecb4
2be1041a686c8d5130ce96600bc7ec68538b4cd9
7b68a0f94a2376708329d7fabc0000c92eb45755267bde5dc8983184b77f3ec7
GET /js_opt/modules/utils/vuid.min.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
cache-control: public, max-age=2592000
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 24 Nov 2022 06:52:20 GMT
age: 480901
x-served-by: cache-iad-kiad7000106-IAD, cache-bma1671-BMA
x-cache: HIT, HIT
x-cache-hits: 30, 82635
x-timer: S1669272741.595644,VS0,VE0
vary: Accept-Encoding,x-http-method-override
content-length: 997
X-Firefox-Spdy: h2
acsbapp.com/apps/app/dist/js/app.js
200 OK 142 kB URL HTTP/2 acsbapp.com/apps/app/dist/js/app.js
IP
File type Unicode text, UTF-8 text, with very long lines (61000), with no line terminators
Size 142 kB (142347 bytes)
Hash 09e8b17fe8fb4fd2f6bd3e814adeb976
05f09e2001c9bfc7bd0ada6831b4edaeb1fc2f08
fd0952431ab51c8c8a234b8df7917f7b0bba2a67c06e9fa27697ce7b476fb571
GET /apps/app/dist/js/app.js HTTP/1.1
Host: acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Fri, 25 Nov 2022 06:52:20 GMT
content-type: application/x-javascript
last-modified: Tue, 01 Nov 2022 18:06:07 GMT
etag: "6aab4-6361600f-af3ebb833015feec;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 142347
date: Thu, 24 Nov 2022 06:52:20 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
i.vimeocdn.com/video/1451960391-27331ec81e39eb316fde7c35212ed6f1497510379d6f0a68a08f21f2c061fabc-d?mw=500&mh=278
200 OK 9.1 kB URL HTTP/2 i.vimeocdn.com/video/1451960391-27331ec81e39eb316fde7c35212ed6f1497510379d6f0a68a08f21f2c061fabc-d?mw=500&mh=278
IP
File type ISO Media, AVIF Image\012- data
Hash ce8943fcc1990aaa27ba042f7a95198b
3b96cec4008bcac21cb8c2df6fd227fe60118796
8faab915d8e966c2df8846a95f9be8d7c8c9fdf8ca86fa79f298247460361994
GET /video/1451960391-27331ec81e39eb316fde7c35212ed6f1497510379d6f0a68a08f21f2c061fabc-d?mw=500&mh=278 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: ce8943fcc1990aaa27ba042f7a95198b
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-central1-jmdg
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Thu, 24 Nov 2022 06:52:20 GMT
age: 1267323
x-served-by: cache-dfw-kdfw8210138-DFW, cache-bma1671-BMA
x-cache: miss, HIT, HIT
x-cache-hits: 200, 1
x-timer: S1669272741.609695,VS0,VE1
vary: Accept
content-length: 9082
X-Firefox-Spdy: h2
api.fixelapp.com/api/v2/grade/FXL-1150-2383
503 Service Unavailable: Back-end server is at capacity 0 B URL HTTP/1.1 api.fixelapp.com/api/v2/grade/FXL-1150-2383
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/grade/FXL-1150-2383 HTTP/1.1
Host: api.fixelapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 401
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 503 Service Unavailable: Back-end server is at capacity
Content-Length: 0
Connection: keep-alive
region1.google-analytics.com/g/collect?v=2&tid=G-VJ36JWQDE1>m=2oeb90&_p=1628389843&cid=1524611418.1669272740&ul=en-us&sr=1280x1024&_s=1&sid=1669272739&sct=1&seg=0&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&dt=5012022.xyz%20is%20for%20sale&en=page_view&_fv=1&_nsi=1&_ss=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-VJ36JWQDE1>m=2oeb90&_p=1628389843&cid=1524611418.1669272740&ul=en-us&sr=1280x1024&_s=1&sid=1669272739&sct=1&seg=0&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&dt=5012022.xyz%20is%20for%20sale&en=page_view&_fv=1&_nsi=1&_ss=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-VJ36JWQDE1>m=2oeb90&_p=1628389843&cid=1524611418.1669272740&ul=en-us&sr=1280x1024&_s=1&sid=1669272739&sct=1&seg=0&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&dt=5012022.xyz%20is%20for%20sale&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.squadhelp.com
date: Thu, 24 Nov 2022 06:52:20 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.acsbapp.com/cache/app/squadhelp.com/config.json
200 OK 159 B URL HTTP/2 cdn.acsbapp.com/cache/app/squadhelp.com/config.json
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 9492d5fcbc88f3d897a1aa7f6e0044ce
ee9d53922a5a95ad96deeebf53d4542f73864816
2ea7439558a336db505d84582ab45584ed347e7b92f66b99ae6152f69c41a8cf
GET /cache/app/squadhelp.com/config.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Origin: https://www.squadhelp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Fri, 25 Nov 2022 06:52:21 GMT
content-type: application/json
last-modified: Thu, 24 Nov 2022 06:51:16 GMT
etag: "9f-637f1464-67d4fe08274d43d5;;;"
accept-ranges: bytes
content-length: 159
date: Thu, 24 Nov 2022 06:52:21 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
IP
Hash 6d2149c8f0c888f933ad308ea9e821a1
a47698ad9b89f0c10bf7594429e800e4d2011375
dd624ffe3a7960a4550450a78dd7e850a253e8ba3dcfb0df01e612bb71a751b6
POST /s/gts1d4/QNGijQL5IyE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/QNGijQL5IyE
IP
Hash 6d2149c8f0c888f933ad308ea9e821a1
a47698ad9b89f0c10bf7594429e800e4d2011375
dd624ffe3a7960a4550450a78dd7e850a253e8ba3dcfb0df01e612bb71a751b6
POST /s/gts1d4/QNGijQL5IyE HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:21 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.acsbapp.com/cache/app/en.build.json
200 OK 26 kB URL HTTP/2 cdn.acsbapp.com/cache/app/en.build.json
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65461), with no line terminators
Hash 52bdf84f0be5da69da591fc15e745787
e6c82caac2991c051c8a019e05c9938fe177ef1e
ab2c5a322cf6efa7cece1d7fec1a6cc588c31346141ca08954ae221a3b52a26e
GET /cache/app/en.build.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Origin: https://www.squadhelp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Fri, 25 Nov 2022 06:52:21 GMT
content-type: application/json
last-modified: Sun, 06 Nov 2022 16:24:03 GMT
etag: "3b8a8-6367dfa3-51b46ab52c9d7b04;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 25891
date: Thu, 24 Nov 2022 06:52:21 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-test-impression?beacon=1
200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-test-impression?beacon=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-test-impression?beacon=1 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 116
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Thu, 24 Nov 2022 06:52:21 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=7a473deb8980ae56355c3b7f35eb04369482bb471669272740
200 OK 0 B URL HTTP/2 fresnel.vimeocdn.com/add/player-stats?beacon=1&session-id=7a473deb8980ae56355c3b7f35eb04369482bb471669272740
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /add/player-stats?beacon=1&session-id=7a473deb8980ae56355c3b7f35eb04369482bb471669272740 HTTP/1.1
Host: fresnel.vimeocdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1477
Origin: https://player.vimeo.com
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-origin: https://player.vimeo.com
date: Thu, 24 Nov 2022 06:52:21 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
api-iam.intercom.io/messenger/web/ping
200 OK 2.3 kB URL HTTP/2 api-iam.intercom.io/messenger/web/ping
IP
Hash 8cbea7589dfa3b8317f1c487040783af
92c2a8373d38a64b6d7893594a94e1e5b94589b6
b713c71d456aeb361761fb0aa9fb314faf2ac40c39dbea68ab5db64c59190299
POST /messenger/web/ping HTTP/1.1
Host: api-iam.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 386
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:21 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cache-control: max-age=0, private, must-revalidate
x-ratelimit-limit: 13333
x-ratelimit-reset: 1669272750
strict-transport-security: max-age=31556952; includeSubDomains; preload
x-ratelimit-remaining: 13332
access-control-allow-origin: https://www.squadhelp.com
vary: Accept,Accept-Encoding
x-intercom-version: a46e537ecd9d2413f41ccdf6d99253f2bf3d4714
x-xss-protection: 1; mode=block
content-encoding: gzip
x-request-id: 0000lidnt2q720i51kdg
access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, OPTIONS
etag: W/"90c37ef034c9f700728f4058210d7e2c"
x-runtime: 0.373624
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server: nginx
x-ami-version: ami-05dcf007a1eb86c5b
X-Firefox-Spdy: h2
web1.acsbapp.com/apps/app/dist/media/logomono.svg
200 OK 1.2 kB URL HTTP/2 web1.acsbapp.com/apps/app/dist/media/logomono.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash 5a1c5c803738f6acbab0a79379c92c10
9f4639325d9e8e69ccc2bfc30d0f83d7dd11cd79
04009697f389893748179c149cad7b1e399d23a2284637350fe07ad94ffa5350
GET /apps/app/dist/media/logomono.svg HTTP/1.1
Host: web1.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=432000 public
expires: Fri, 24 Nov 2023 06:52:21 GMT
content-type: image/svg+xml
last-modified: Mon, 26 Sep 2022 21:02:04 GMT
etag: "1034-6332134c-7705bf7dfc5e498d;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1210
date: Thu, 24 Nov 2022 06:52:21 GMT
access-control-allow-origin: *
access-control-allow-headers: *
X-Firefox-Spdy: h2
nexus-websocket-a.intercom.io/pubsub/5-9aB5EQ5UzPyokoMoZUMzqGzZO-Xrixqt9KnhC5CFc3WtD0z0qyUWfZv0oyfgbLiZZA5URJ0yA9L4PreVy2-9MaKQMoyfd1mdox8a?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined
101 Switching Protocols 0 B URL HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-9aB5EQ5UzPyokoMoZUMzqGzZO-Xrixqt9KnhC5CFc3WtD0z0qyUWfZv0oyfgbLiZZA5URJ0yA9L4PreVy2-9MaKQMoyfd1mdox8a?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pubsub/5-9aB5EQ5UzPyokoMoZUMzqGzZO-Xrixqt9KnhC5CFc3WtD0z0qyUWfZv0oyfgbLiZZA5URJ0yA9L4PreVy2-9MaKQMoyfd1mdox8a?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined HTTP/1.1
Host: nexus-websocket-a.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.squadhelp.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5MSbk3wvWNiM4Y9j//G0EQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Thu, 24 Nov 2022 06:52:21 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /ZeT2c5SsL+EVog/+2D2G2rgPNg=
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 24 Nov 2022 06:41:08 GMT
expires: Thu, 24 Nov 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 674
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.squadhelp.com/static_images/approved-footer-2.svg
200 OK 69 kB URL HTTP/2 www.squadhelp.com/static_images/approved-footer-2.svg
IP
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (65154)
Hash 7a0f8e7a03c0910b9c105a9cb2ba746e
441a29a686377c4134664728edb1d49155b8f801
755d0fbf4a3be9ec2d1702e80308ec4b0a36981b86ad9b05352e86650d2aeec9
GET /static_images/approved-footer-2.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/5012022.xyz?lp=d
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:18 GMT
content-type: image/svg+xml
last-modified: Tue, 27 Sep 2022 17:47:30 GMT
etag: W/"63333732-14e52"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2686298
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389a0e8ab4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash aee1eaa2ef2d0edbb0bc5703979e6439
8baa6d1cdd85ce2c5b6e30bd7a60096eeafce4db
095cc1e6ce8241ba22f88cb66d752587909fea3dc66936a72c369ef74b3134f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
amplify.outbrain.com/cp/obtp.js
200 OK 5.3 kB URL HTTP/1.1 amplify.outbrain.com/cp/obtp.js
IP
File type ASCII text, with very long lines (16620), with no line terminators
Hash a73a09a868a98d7505575c520aaf6616
ed4e4c3fe9ad7ed18564e5f9aed6a9a68b522c7f
8b22d2e0e3e79c7ea27bf76720b302fd18ba1240fbf8dd99e54ced655d17c8e4
GET /cp/obtp.js HTTP/1.1
Host: amplify.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "c83bb35b39c166b49387a9cb3633d4be:1668418404.864545"
Last-Modified: Mon, 14 Nov 2022 09:17:09 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Cache-Control: max-age=1200
Expires: Thu, 24 Nov 2022 07:12:22 GMT
Date: Thu, 24 Nov 2022 06:52:22 GMT
Content-Length: 5276
Connection: keep-alive
cdn.taboola.com/libtrc/unip/1344021/tfa.js
200 OK 18 kB URL HTTP/2 cdn.taboola.com/libtrc/unip/1344021/tfa.js
IP
File type ASCII text, with very long lines (58473)
Hash b1ce87bbe58955561b4a0b558d75b091
da6bd52385a3921995453aeb866377baec59e958
ec68a7021db3da13ba6eb4c062560982e31bec0b366c648f6062bca6f2d8cad0
GET /libtrc/unip/1344021/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: D6ukRp9msaVRIr3qxvS/YPPZXl13cK11pUqcdxdQnXF7MZOqJF1ak3B+jPBrm+YiwGF0aShxln8=
x-amz-request-id: 4X87FY7ZZPK6Y598
x-amz-replication-status: COMPLETED
last-modified: Sun, 20 Nov 2022 11:10:48 GMT
etag: "e5ea41240723db5b1ba1a1318ccd2fb0"
x-amz-version-id: xsQJcwRA.npiV3al5C.xxs2fZBXFuvIF
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Thu, 24 Nov 2022 06:52:22 GMT
via: 1.1 varnish
age: 16
x-served-by: cache-bma1675-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1669272742.052233,VS0,VE1
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 12
content-length: 17933
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b6e7c5faf2d24e0d958ab10ee95f6791
16b68ad4b4a2776571697dff8edc9369a3c5c451
1431771f6fd4ad8c028d53a7489acc16b829e32e01d92df5e8c923723024b75a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5539
Cache-Control: max-age=119069
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:22 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 15:56:51 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.intercomcdn.com/frame.ee6821e3.js
200 OK 11 kB URL HTTP/2 js.intercomcdn.com/frame.ee6821e3.js
IP
File type Unicode text, UTF-8 text, with very long lines (39007), with no line terminators
Hash 22e2e3226eb5ada04929a2e43307eeda
04615fa88f80567974bdeb0f103ca5909746ebd7
41feebdfb0b03cd7fee2eb886adef6f3f1f85d3f14215e9a388d2a50e42efb9b
GET /frame.ee6821e3.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 137368
last-modified: Wed, 23 Nov 2022 14:48:19 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: cmGnfwTyVUOVxirqUEwto2KTW_kUokUI
accept-ranges: bytes
server: AmazonS3
date: Thu, 24 Nov 2022 06:49:51 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "dc569d42a4a68f304034bdf130930776"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: cY4qhWi-tmgnWgT1bmNAB78lpt59zQ0O_GdcEEJkdC49tqEMidBnVA==
age: 149
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1669272739644&cv=11&fst=1669272739644&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&auid=473758972.1669272740&data=dynx_itemid%3D2104775%3Bdynx_pagetype%3Dofferdetail%3Bdynx_totalvalue%3D511&rfmt=3&fmt=4
200 OK 931 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1669272739644&cv=11&fst=1669272739644&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&auid=473758972.1669272740&data=dynx_itemid%3D2104775%3Bdynx_pagetype%3Dofferdetail%3Bdynx_totalvalue%3D511&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (2029), with no line terminators
Hash 1ab700aee48dc76df217566b3b334764
bd443ea29caad6154e32203980c05b793e40a71d
eab4d2c654b9354c7e073762f089b66959e3d354fc4b3faaecfa4a3ce15d1195
GET /pagead/viewthroughconversion/1030947153/?random=1669272739644&cv=11&fst=1669272739644&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&auid=473758972.1669272740&data=dynx_itemid%3D2104775%3Bdynx_pagetype%3Dofferdetail%3Bdynx_totalvalue%3D511&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 06:52:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 931
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 07:07:22 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.ads-twitter.com/uwt.js
200 OK 15 kB URL HTTP/2 static.ads-twitter.com/uwt.js
IP
File type ASCII text, with very long lines (57596), with no line terminators
Hash 573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7
GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Thu, 24 Nov 2022 06:52:22 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1669272739597&cv=11&fst=1669272739597&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&auid=473758972.1669272740&data=ecomm_pagetype%3Dproduct&rfmt=3&fmt=4
200 OK 903 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1669272739597&cv=11&fst=1669272739597&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&auid=473758972.1669272740&data=ecomm_pagetype%3Dproduct&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (1927), with no line terminators
Hash 8602f194af213108a912d484b6087914
e45304db7ae041d5b5649e36317df161c55537be
8bd991f10ac549a0acd3cd1b9d232b68e95f07d7adf7c51e4293e8a19e06387b
GET /pagead/viewthroughconversion/1030947153/?random=1669272739597&cv=11&fst=1669272739597&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&auid=473758972.1669272740&data=ecomm_pagetype%3Dproduct&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 06:52:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 903
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 07:07:22 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1669272739610&cv=11&fst=1669272739610&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=DP_eCJK8xO0BENGCzOsD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&value=0&bttype=purchase&auid=473758972.1669272740&gcp=1&ct_cookie_present=1
200 OK 42 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1669272739610&cv=11&fst=1669272739610&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=DP_eCJK8xO0BENGCzOsD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&value=0&bttype=purchase&auid=473758972.1669272740&gcp=1&ct_cookie_present=1
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/viewthroughconversion/1030947153/?random=1669272739610&cv=11&fst=1669272739610&fmt=3&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=DP_eCJK8xO0BENGCzOsD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&value=0&bttype=purchase&auid=473758972.1669272740&gcp=1&ct_cookie_present=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 06:52:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 07:07:22 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:58:48 GMT
expires: Thu, 23 Nov 2023 14:58:48 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 57214
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1669272739795&cv=11&fst=1669272739795&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&auid=473758972.1669272740&data=event%3Dgtag.config&rfmt=3&fmt=4
200 OK 900 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1669272739795&cv=11&fst=1669272739795&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&auid=473758972.1669272740&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (1917), with no line terminators
Hash 5d5b58c7db980ab8a4a3d40fc78cebdd
56d268bf3eeaeb269f60fa120453db516cfbae7d
8b218d7179de430a08cc0d6f1ee096125c3507359ca237943b617be9b955d18a
GET /pagead/viewthroughconversion/1030947153/?random=1669272739795&cv=11&fst=1669272739795&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&auid=473758972.1669272740&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 06:52:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 900
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 07:07:22 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1669272739618&cv=11&fst=1669272739618&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=Jf_hCIzXoNECENGCzOsD&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&auid=473758972.1669272740&rfmt=3&fmt=4
200 OK 934 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1030947153/?random=1669272739618&cv=11&fst=1669272739618&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=Jf_hCIzXoNECENGCzOsD&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&auid=473758972.1669272740&rfmt=3&fmt=4
IP
File type ASCII text, with very long lines (1946), with no line terminators
Hash dbfe23da62ca7045926280318a7b7553
4a6c259d540aa237000091fc8aec7843c96c51a4
4bf50a53f8e059954c21b9cbb69a99abe85ca5f08e93c03ce18a3b75868fbf09
GET /pagead/viewthroughconversion/1030947153/?random=1669272739618&cv=11&fst=1669272739618&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=Jf_hCIzXoNECENGCzOsD&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&auid=473758972.1669272740&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 06:52:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 934
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 24-Nov-2022 07:07:22 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b6a795cdfedb5c954b3000dbb2dc7f90
b17bb97d224d89bc8227cddf5a8386e100751cda
78c411d16c1be2d8da51fc409cb45ec2aca8d32b77ab4d1a1a1fe5d1a33552e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: i5AwIPrMrBlOPyhgb7Lc6vhOxmzf+ReNHW7gdPSEDYYfvFQi1/UfeNmZWW7J3ajaxqsthGBayI/USRYdhLxPuA==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1679558926
date: Thu, 24 Nov 2022 06:52:22 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-conversion/1030947153/?random=1669272739610&cv=11&fst=1669272739610&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=DP_eCJK8xO0BENGCzOsD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&value=0&bttype=purchase&auid=473758972.1669272740&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
200 OK 63 B URL HTTP/2 www.google.no/pagead/1p-conversion/1030947153/?random=1669272739610&cv=11&fst=1669272739610&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=DP_eCJK8xO0BENGCzOsD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&value=0&bttype=purchase&auid=473758972.1669272740&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0
IP
File type ASCII text, with no line terminators
Hash 0339f8f57d1bf75003db591e28957e45
ae2286e497c9f76a02cb40c40a674b73bd293b76
609cd8e12464fe137cfaa9f1ab6637150d44e105559c901b6df50303fd05aa26
GET /pagead/1p-conversion/1030947153/?random=1669272739610&cv=11&fst=1669272739610&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=DP_eCJK8xO0BENGCzOsD&hn=www.google.com&frm=0&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tiba=5012022.xyz%20is%20for%20sale&value=0&bttype=purchase&auid=473758972.1669272740&gcp=1&sscte=1&ct_cookie_present=1&rfmt=3&fmt=4&ipr=y&prhg=0 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 24 Nov 2022 06:52:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/javascript; charset=UTF-8
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 63
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash b6e7c5faf2d24e0d958ab10ee95f6791
16b68ad4b4a2776571697dff8edc9369a3c5c451
1431771f6fd4ad8c028d53a7489acc16b829e32e01d92df5e8c923723024b75a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5539
Cache-Control: max-age=119069
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:22 GMT
Etag: "637e2d20-1d7"
Expires: Fri, 25 Nov 2022 15:56:51 GMT
Last-Modified: Wed, 23 Nov 2022 14:24:32 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash b6a795cdfedb5c954b3000dbb2dc7f90
b17bb97d224d89bc8227cddf5a8386e100751cda
78c411d16c1be2d8da51fc409cb45ec2aca8d32b77ab4d1a1a1fe5d1a33552e1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
alb.reddit.com/rp.gif?ts=1669272739823&id=t2_bc56g0l6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=ec605435-2b7d-43ef-8a97-9ce246ad63f5&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8
200 OK 42 B URL HTTP/2 alb.reddit.com/rp.gif?ts=1669272739823&id=t2_bc56g0l6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=ec605435-2b7d-43ef-8a97-9ce246ad63f5&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /rp.gif?ts=1669272739823&id=t2_bc56g0l6&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=ec605435-2b7d-43ef-8a97-9ce246ad63f5&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Thu, 24 Nov 2022 06:52:22 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 314 B IP
Hash 95f9d2fba40ffffced72e5fd789b5128
cb1898576a90da22bd41688277e47ab27feb479c
8c1163a9918a56a682fe39e6d3762cbf23316b2e99aa01dc40688049903d4753
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2533
Cache-Control: max-age=107081
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:22 GMT
Etag: "637e0a0a-13a"
Expires: Fri, 25 Nov 2022 12:37:03 GMT
Last-Modified: Wed, 23 Nov 2022 11:54:50 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 314
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 00bc34515708820916035c6e1e44f6f4
9f04488d444f8f8aa1ce37044736deff84e38c2e
de95e9ade9e71e0604828d7d2e0e177e6460280c6d65c0281df8d1bdb7e39a88
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=166498
Date: Thu, 24 Nov 2022 06:52:22 GMT
Etag: "637eef2f-1d7"
Expires: Sat, 26 Nov 2022 05:07:20 GMT
Last-Modified: Thu, 24 Nov 2022 04:12:31 GMT
Server: ECS (dcb/7EA6)
X-Cache: Miss from cloudfront
Via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xDGlSk4k9ovmngD0nHbmQtPzV4RgM-xHpm36TkQS2srYmpq1nRsRYg==
Age: 3289
api.fixelapp.com/api/v2/grade/FXL-1150-2383
503 Service Unavailable: Back-end server is at capacity 0 B URL HTTP/1.1 api.fixelapp.com/api/v2/grade/FXL-1150-2383
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/grade/FXL-1150-2383 HTTP/1.1
Host: api.fixelapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 187
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 503 Service Unavailable: Back-end server is at capacity
Content-Length: 0
Connection: keep-alive
tags.srv.stackadapt.com/events.js
200 OK 5.4 kB URL HTTP/1.1 tags.srv.stackadapt.com/events.js
IP
File type ASCII text, with very long lines (16677)
Hash cba6e632c82520b09d3c9bfe079ef3be
44e006079d947f4b5be850a0085dec57ca789efd
98c4ca63bba52fc90d8b5ecea0cd5507d585e362564977876e69a96a2a656c42
GET /events.js HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: max-age=5
Content-Encoding: gzip
Content-Type: text/javascript
Date: Thu, 24 Nov 2022 06:52:22 GMT
Set-Cookie: sa-user-id=s%3A0-4629ebe8-a6df-4799-4ce3-8b9abc947cfa.aI0qUDErYrWA6mDYGGJhj8GCNSwtPL8W4Z%2BcnBdHjrQ; Max-Age=31536000; Secure; SameSite=None
sa-user-id-v2=s%3ARinr6KbfR5lM44uavJR8-ltaKpo.%2BpDFuV32Bpjra%2BwVvOV02WKthuLO1LIhbAlSJ9AHleY; Domain=srv.stackadapt.com; Max-Age=31536000; Secure; SameSite=None
Content-Length: 5385
Connection: keep-alive
t.co/i/adsct?bci=3&eci=2&event_id=e961ae14-a4ab-4e26-9cd3-a404b20af61b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=322089e4-6f0f-412c-9326-878f18490f5d&tw_document_href=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.29
200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=e961ae14-a4ab-4e26-9cd3-a404b20af61b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=322089e4-6f0f-412c-9326-878f18490f5d&tw_document_href=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=e961ae14-a4ab-4e26-9cd3-a404b20af61b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=322089e4-6f0f-412c-9326-878f18490f5d&tw_document_href=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:22 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=d500d021-47e8-40d1-b18b-6c23aba41085; Max-Age=63072000; Expires=Sat, 23 Nov 2024 06:52:22 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 09c15feaca0627e1
strict-transport-security: max-age=0
x-response-time: 107
x-connection-hash: 35409b2921fd0e598a3f40838819841b9942f0e93aafec77bf4aacd17de235bf
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/sa.css
200 OK 27 B URL HTTP/1.1 tags.srv.stackadapt.com/sa.css
IP
Hash 83f5ba33314db5f218488a5a51da1455
87a21689afa235c4c65437334085be4bf5cca170
3f100e5e6ff270dadb43b44878f0118a2389dee0d844acc102b5179d70a824dc
GET /sa.css HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: text/css
Date: Thu, 24 Nov 2022 06:52:22 GMT
Content-Length: 27
Connection: keep-alive
bat.bing.com/action/0?ti=15226519&tm=gtm002&Ver=2&mid=52718420-e59a-4d73-8e9e-ddd95dffcee1&sid=8ba500e06bc411eda32be3f17be40643&vid=8ba520706bc411ed94f26bb953d04867&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=5012022.xyz%20is%20for%20sale&p=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&r=<=2366&evt=pageLoad&sv=1&rn=961510
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=15226519&tm=gtm002&Ver=2&mid=52718420-e59a-4d73-8e9e-ddd95dffcee1&sid=8ba500e06bc411eda32be3f17be40643&vid=8ba520706bc411ed94f26bb953d04867&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=5012022.xyz%20is%20for%20sale&p=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&r=<=2366&evt=pageLoad&sv=1&rn=961510
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=15226519&tm=gtm002&Ver=2&mid=52718420-e59a-4d73-8e9e-ddd95dffcee1&sid=8ba500e06bc411eda32be3f17be40643&vid=8ba520706bc411ed94f26bb953d04867&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=5012022.xyz%20is%20for%20sale&p=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&r=<=2366&evt=pageLoad&sv=1&rn=961510 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=1247D16DC3926AFE3A0AC30BC2C56B64; domain=.bing.com; expires=Tue, 19-Dec-2023 06:52:22 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 37578F8CFC40491F9624D476255853DD Ref B: OSL30EDGE0421 Ref C: 2022-11-24T06:52:22Z
date: Thu, 24 Nov 2022 06:52:22 GMT
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=15226519&tm=gtm002&Ver=2&mid=52718420-e59a-4d73-8e9e-ddd95dffcee1&sid=8ba500e06bc411eda32be3f17be40643&vid=8ba520706bc411ed94f26bb953d04867&vids=0&msclkid=N&pagetype=product&en=Y&sw=1280&sh=1024&sc=24&evt=custom&rn=744835
204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=15226519&tm=gtm002&Ver=2&mid=52718420-e59a-4d73-8e9e-ddd95dffcee1&sid=8ba500e06bc411eda32be3f17be40643&vid=8ba520706bc411ed94f26bb953d04867&vids=0&msclkid=N&pagetype=product&en=Y&sw=1280&sh=1024&sc=24&evt=custom&rn=744835
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=15226519&tm=gtm002&Ver=2&mid=52718420-e59a-4d73-8e9e-ddd95dffcee1&sid=8ba500e06bc411eda32be3f17be40643&vid=8ba520706bc411ed94f26bb953d04867&vids=0&msclkid=N&pagetype=product&en=Y&sw=1280&sh=1024&sc=24&evt=custom&rn=744835 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=20962B4B72476FAE0BF5392D73106ECF; domain=.bing.com; expires=Tue, 19-Dec-2023 06:52:22 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0FA7881E7DD545868C28FA000BACD6AE Ref B: OSL30EDGE0421 Ref C: 2022-11-24T06:52:22Z
date: Thu, 24 Nov 2022 06:52:22 GMT
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/34987/domain/squadhelp.com/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/34987/domain/squadhelp.com/token
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /partner/34987/domain/squadhelp.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.squadhelp.com/
Origin: https://www.squadhelp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-length: 0
date: Thu, 24 Nov 2022 05:16:27 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-headers: content-type
access-control-max-age: 1800
allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wbEEd1NWkmMeDZT1tUP0WfUNM70NmnfOZ-Qft7EI_mfafnhek3sqAQ==
age: 5755
X-Firefox-Spdy: h2
www.clarity.ms/eus2/s/0.6.43/clarity.js
200 OK 55 kB URL HTTP/2 www.clarity.ms/eus2/s/0.6.43/clarity.js
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (55029)
Hash 441723b72633b1ac9757ad7c63168005
806166ca9ebb5839dd90a5e5c9335e3e0b18c169
cc8a16ce849d72f106bd67187e4b60c20da3093375202bf0b53f23e8f40a8b11
GET /eus2/s/0.6.43/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-length: 55116
content-type: application/javascript;charset=utf-8
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d8fceb15c2864c"
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
x-cache: CONFIG_NOCACHE
x-azure-ref: 0phR/YwAAAACOqjk8ZmSjQKkgrYVUofj8T1NMMjMxMDUwMjA0MDExADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Thu, 24 Nov 2022 06:52:22 GMT
X-Firefox-Spdy: h2
tags.srv.stackadapt.com/saq_pxl?uid=tMfPTakOcQhbY9oPuRxQ5Q&is_js=true&landing_url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&t=5012022.xyz%20is%20for%20sale&tip=xoSgWkC4MuyP0nIqI99Qh3Bge5qaeNBLnNw_7PROv68&host=https://www.squadhelp.com&sa-user-id-v2=s%253ARinr6KbfR5lM44uavJR8-ltaKpo.%252BpDFuV32Bpjra%252BwVvOV02WKthuLO1LIhbAlSJ9AHleY&sa-user-id=s%253A0-4629ebe8-a6df-4799-4ce3-8b9abc947cfa.aI0qUDErYrWA6mDYGGJhj8GCNSwtPL8W4Z%252BcnBdHjrQ
200 OK 116 B URL HTTP/1.1 tags.srv.stackadapt.com/saq_pxl?uid=tMfPTakOcQhbY9oPuRxQ5Q&is_js=true&landing_url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&t=5012022.xyz%20is%20for%20sale&tip=xoSgWkC4MuyP0nIqI99Qh3Bge5qaeNBLnNw_7PROv68&host=https://www.squadhelp.com&sa-user-id-v2=s%253ARinr6KbfR5lM44uavJR8-ltaKpo.%252BpDFuV32Bpjra%252BwVvOV02WKthuLO1LIhbAlSJ9AHleY&sa-user-id=s%253A0-4629ebe8-a6df-4799-4ce3-8b9abc947cfa.aI0qUDErYrWA6mDYGGJhj8GCNSwtPL8W4Z%252BcnBdHjrQ
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 9e29b9729014a4e6a0f9acf522daa07d
7ecad4e87388022ea224a8752b5ccf02aa3abcac
65d6fc76a8f26596cce60b33939093689c23e38cdc324343e82b3e7951ea84a1
GET /saq_pxl?uid=tMfPTakOcQhbY9oPuRxQ5Q&is_js=true&landing_url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&t=5012022.xyz%20is%20for%20sale&tip=xoSgWkC4MuyP0nIqI99Qh3Bge5qaeNBLnNw_7PROv68&host=https://www.squadhelp.com&sa-user-id-v2=s%253ARinr6KbfR5lM44uavJR8-ltaKpo.%252BpDFuV32Bpjra%252BwVvOV02WKthuLO1LIhbAlSJ9AHleY&sa-user-id=s%253A0-4629ebe8-a6df-4799-4ce3-8b9abc947cfa.aI0qUDErYrWA6mDYGGJhj8GCNSwtPL8W4Z%252BcnBdHjrQ HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: https://www.squadhelp.com
Content-Type: text/plain; charset=utf-8
Date: Thu, 24 Nov 2022 06:52:22 GMT
Content-Length: 116
Connection: keep-alive
ocsp.digicert.com/
200 OK 313 B IP
Hash d9a959d78bbdd08b2a5891f00187d637
a09c3a752f9cc07d3b986e98107f69ffdaacd7e5
e5d2937be537fe06582408a08744e674ec8b7607940b6af117edca1f8388e392
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5976
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 24 Nov 2022 06:52:23 GMT
Last-Modified: Thu, 24 Nov 2022 05:12:47 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 313
bat.bing.com/p/action/15226519.js
204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/15226519.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/15226519.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=32D59D62420A6F3634108F04435D6EA5; domain=.bing.com; expires=Tue, 19-Dec-2023 06:52:22 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: B05F257ED943433194282FDA8EF733E8 Ref B: OSL30EDGE0421 Ref C: 2022-11-24T06:52:22Z
date: Thu, 24 Nov 2022 06:52:22 GMT
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1669272741839&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd
302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1669272741839&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=34987&time=1669272741839&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34987%26time%3D1669272741839%26url%3Dhttps%253A%252F%252Fwww.squadhelp.com%252Fname%252F5012022.xyz%253Flp%253Dd%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQKtbJkR9zpeTQAAAYSoaKx8Y_UBHJObYZJOIDUeojvkEIkoHCjzZgjccGHj8vTLGFjDwfu64uQKTA; Max-Age=2592000; Expires=Sat, 24 Dec 2022 06:52:23 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQICr0fCxIXqRAAAAYSoaKx8LUw0OAxOcHZrPseaqH6aejA5mu7X6Wm0wGXH0wJ21BzB3BHld8BSpeajICz8YA; Max-Age=2592000; Expires=Sat, 24 Dec 2022 06:52:23 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&fd2cc254-e4b6-4899-8fde-9d14352cc3f1"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 24-Nov-2023 06:52:23 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2435:u=1:x=1:i=1669272743:t=1669359143:v=2:sig=AQFkAMmZSw7iH2H9gxUcSzTxB0lYYau5"; Expires=Fri, 25 Nov 2022 06:52:23 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
report-to: {"group":"network-errors","max_age":2592000,"endpoints":[{"url":"https://www.linkedin.com/li/rep"}],"include_subdomains":true}
nel: {"report_to":"network-errors","max_age":1296000,"success_fraction":0.00066,"failure_fraction":1,"include_subdomains":true}
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXuMdjhnxoLcPMo53cNaQ==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: EAFD3B1E81344BB080B8FB02EC748ED5 Ref B: OSL30EDGE0510 Ref C: 2022-11-24T06:52:22Z
date: Thu, 24 Nov 2022 06:52:22 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
302 Found 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=F13B13ADD82A4804BB34368F09183303&RedC=c.clarity.ms&MXFR=39724B47535F672306665921575F6975
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=39724B47535F672306665921575F6975; domain=.clarity.ms; expires=Tue, 19-Dec-2023 06:52:23 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Thu, 24 Nov 2022 06:52:22 GMT
content-length: 0
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=e961ae14-a4ab-4e26-9cd3-a404b20af61b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=322089e4-6f0f-412c-9326-878f18490f5d&tw_document_href=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.29
200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=e961ae14-a4ab-4e26-9cd3-a404b20af61b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=322089e4-6f0f-412c-9326-878f18490f5d&tw_document_href=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.29
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=e961ae14-a4ab-4e26-9cd3-a404b20af61b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=322089e4-6f0f-412c-9326-878f18490f5d&tw_document_href=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o0zgt&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:22 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_T1XDB2LtEfHX4sGIa/3CZQ=="; Max-Age=63072000; Expires=Sat, 23 Nov 2024 06:52:23 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: fb729f3c61a6503b
strict-transport-security: max-age=631138519
x-response-time: 103
x-connection-hash: d67008afbf16558447e11717f5fdebca791112b6e6110fd6f6482e6a722ee3f0
X-Firefox-Spdy: h2
tr.outbrain.com/cachedClickId?marketerId=00307c4941e2958412d6d5d587832791fc
200 OK 56 B URL HTTP/1.1 tr.outbrain.com/cachedClickId?marketerId=00307c4941e2958412d6d5d587832791fc
IP
File type ASCII text, with no line terminators
Hash 77fbe8ab311fa20557d95906363035ed
5806df80f09a37e070d5f37c49f19797c2763fd0
4fa9f4ca5bfa56b9f8467324e3654f4a717dcd40b70c05b538092d8a101b0599
GET /cachedClickId?marketerId=00307c4941e2958412d6d5d587832791fc HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 06:52:23 GMT
Content-Type: application/javascript
Content-Length: 56
X-TraceId: 2c414759a33882f3eaac555cc14d21c5
content-encoding: gzip
tr.outbrain.com/unifiedPixel?marketerId=00307c4941e2958412d6d5d587832791fc&apiObjVersion=1.1&obtpVersion=2.0.4&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&optOut=false&bust=06698127243085787&referrer=
200 OK 60 B URL HTTP/1.1 tr.outbrain.com/unifiedPixel?marketerId=00307c4941e2958412d6d5d587832791fc&apiObjVersion=1.1&obtpVersion=2.0.4&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&optOut=false&bust=06698127243085787&referrer=
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash fb0fc5c090282e372b8bf8ff13ae3ee2
2de3834253ece606ce4d2a6f10a59654b6fa378b
90a8ffa59ad6227daafa10083d4cff2e9b295c9c82135b5f5cedd65b2e7c8ceb
GET /unifiedPixel?marketerId=00307c4941e2958412d6d5d587832791fc&apiObjVersion=1.1&obtpVersion=2.0.4&name=PAGE_VIEW&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&optOut=false&bust=06698127243085787&referrer= HTTP/1.1
Host: tr.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Thu, 24 Nov 2022 06:52:23 GMT
Content-Type: image/gif;
Content-Length: 60
Cache-Control: no-cache
X-TraceId: 3962c6f36ba9d06b84e8ffa885ce48c3
content-encoding: gzip
tags.srv.stackadapt.com/sa.jpeg
200 OK 651 B URL HTTP/1.1 tags.srv.stackadapt.com/sa.jpeg
IP
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1x1, components 3\012- data
Hash b859c128fddc20bcfea854bad771abf1
3cf90158a8e7b71213670281128f1daf439f5dcf
0161c898481b1bd31bf62bd5c70968923932cc2f6c6470ce1ab04ef727ef8edc
GET /sa.jpeg HTTP/1.1
Host: tags.srv.stackadapt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Origin: https://www.squadhelp.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: only-if-cached, no-transform, private, max-age=7776000
Content-Type: image/jpeg
Date: Thu, 24 Nov 2022 06:52:23 GMT
Content-Length: 651
Connection: keep-alive
c.bing.com/c.gif?CtsSyncId=F13B13ADD82A4804BB34368F09183303&RedC=c.clarity.ms&MXFR=39724B47535F672306665921575F6975
302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=F13B13ADD82A4804BB34368F09183303&RedC=c.clarity.ms&MXFR=39724B47535F672306665921575F6975
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=F13B13ADD82A4804BB34368F09183303&RedC=c.clarity.ms&MXFR=39724B47535F672306665921575F6975 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=F13B13ADD82A4804BB34368F09183303&MUID=1A6064D1AE92628B1F9976B7AFC56320
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=1A6064D1AE92628B1F9976B7AFC56320; domain=c.bing.com; expires=Tue, 19-Dec-2023 06:52:23 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: EE4CF370897347D9A6DB63393F4AECB4 Ref B: OSL30EDGE0421 Ref C: 2022-11-24T06:52:23Z
date: Thu, 24 Nov 2022 06:52:22 GMT
content-length: 0
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-11585500-4&cid=1524611418.1669272740&jid=970971530&gjid=638548832&_gid=2013079367.1669272742&_u=KCDAAEACQAAAACAAI~&z=814387749
200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-11585500-4&cid=1524611418.1669272740&jid=970971530&gjid=638548832&_gid=2013079367.1669272742&_u=KCDAAEACQAAAACAAI~&z=814387749
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-11585500-4&cid=1524611418.1669272740&jid=970971530&gjid=638548832&_gid=2013079367.1669272742&_u=KCDAAEACQAAAACAAI~&z=814387749 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.squadhelp.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 24 Nov 2022 06:52:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-11585500-1&cid=1524611418.1669272740&jid=1541909367&gjid=19831357&_gid=2013079367.1669272742&_u=aCDAgEADQAAAAGAAI~&z=1766258801
200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-11585500-1&cid=1524611418.1669272740&jid=1541909367&gjid=19831357&_gid=2013079367.1669272742&_u=aCDAgEADQAAAAGAAI~&z=1766258801
IP
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-11585500-1&cid=1524611418.1669272740&jid=1541909367&gjid=19831357&_gid=2013079367.1669272742&_u=aCDAgEADQAAAAGAAI~&z=1766258801 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.squadhelp.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 24 Nov 2022 06:52:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=F13B13ADD82A4804BB34368F09183303&MUID=1A6064D1AE92628B1F9976B7AFC56320
200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=F13B13ADD82A4804BB34368F09183303&MUID=1A6064D1AE92628B1F9976B7AFC56320
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=F13B13ADD82A4804BB34368F09183303&MUID=1A6064D1AE92628B1F9976B7AFC56320 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Thu, 13 Oct 2022 20:07:05 GMT
accept-ranges: bytes
etag: "40db785d3fdfd81:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Thu, 24-Nov-2022 07:02:23 GMT; path=/; SameSite=None; Secure;
date: Thu, 24 Nov 2022 06:52:22 GMT
content-length: 42
X-Firefox-Spdy: h2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34987%26time%3D1669272741839%26url%3Dhttps%253A%252F%252Fwww.squadhelp.com%252Fname%252F5012022.xyz%253Flp%253Dd%26liSync%3Dtrue
302 Found 0 B URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34987%26time%3D1669272741839%26url%3Dhttps%253A%252F%252Fwww.squadhelp.com%252Fname%252F5012022.xyz%253Flp%253Dd%26liSync%3Dtrue
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D34987%26time%3D1669272741839%26url%3Dhttps%253A%252F%252Fwww.squadhelp.com%252Fname%252F5012022.xyz%253Flp%253Dd%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1669272741839&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&66769db2-4ba4-44da-8e23-aae47c43c493"; Domain=.linkedin.com; Expires=Fri, 24-Nov-2023 06:52:23 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&2022112406522373f057b3-40b9-4261-82ae-574246be58e1AQESML8SCs1x-it0usGW1xIUKXX3QILd"; Domain=.www.linkedin.com; Expires=Fri, 24-Nov-2023 06:52:23 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NjkyNzI3NDM7MjswMjG5K4e7k4Wkr0ATdjdUuzbUFymckoI717/y88Vs/a3bSA==; Domain=.linkedin.com; Expires=Tue, 23 May 2023 06:52:23 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2435:u=1:x=1:i=1669272743:t=1669359143:v=2:sig=AQFkAMmZSw7iH2H9gxUcSzTxB0lYYau5"; Expires=Fri, 25 Nov 2022 06:52:23 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' media-src.linkedin.com/media/ www.linkedin.com s.c.lnkd.licdn.com m.c.lnkd.licdn.com wss://*.linkedin.com dms.licdn.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com static.licdn.com static-exp1.licdn.com static-exp2.licdn.com static-exp3.licdn.com media.licdn.com media-exp1.licdn.com media-exp2.licdn.com media-exp3.licdn.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com snap.licdn.com/li.lms-analytics/ platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; child-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXuMdjof3UgkAEVWC6AWw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: D3BEC046AD174883AB8CDF35EF1E5F1D Ref B: OSL30EDGE0510 Ref C: 2022-11-24T06:52:23Z
date: Thu, 24 Nov 2022 06:52:23 GMT
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=776488579087398&ev=PageView&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&rl=&if=false&ts=1669272743330&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1669272743328.542866936&it=1669272741999&coo=false&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=776488579087398&ev=PageView&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&rl=&if=false&ts=1669272743330&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1669272743328.542866936&it=1669272741999&coo=false&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=776488579087398&ev=PageView&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&rl=&if=false&ts=1669272743330&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=0&o=30&fbp=fb.1.1669272743328.542866936&it=1669272741999&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 24 Nov 2022 06:52:24 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=776488579087398&ev=ViewContent&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&rl=&if=false&ts=1669272743332&cd[content_type]=product&cd[content_ids]=%5B%272104775%27%5D&cd[value]=511&cd[currency]=USD&cd[content_category]=&cd[content_name]=5012022.xyz&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1669272743328.542866936&it=1669272741999&coo=false&tm=1&rqm=GET
200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=776488579087398&ev=ViewContent&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&rl=&if=false&ts=1669272743332&cd[content_type]=product&cd[content_ids]=%5B%272104775%27%5D&cd[value]=511&cd[currency]=USD&cd[content_category]=&cd[content_name]=5012022.xyz&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1669272743328.542866936&it=1669272741999&coo=false&tm=1&rqm=GET
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=776488579087398&ev=ViewContent&dl=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&rl=&if=false&ts=1669272743332&cd[content_type]=product&cd[content_ids]=%5B%272104775%27%5D&cd[value]=511&cd[currency]=USD&cd[content_category]=&cd[content_name]=5012022.xyz&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmSimo-GTM-WebTemplate&ec=1&o=30&fbp=fb.1.1669272743328.542866936&it=1669272741999&coo=false&tm=1&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 24 Nov 2022 06:52:24 GMT
X-Firefox-Spdy: h2
trc-events.taboola.com/1344021/log/3/unip?en=pre_d_eng_tb&tos=1591&scd=18&ssd=1&est=1669272741876&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1669272743470&vi=1669272741875&ri=0a431d453b411d8ff8934dec95f219d7&ref=null&cv=20221117-23-RELEASE&item-url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd
204 No Content 0 B URL HTTP/2 trc-events.taboola.com/1344021/log/3/unip?en=pre_d_eng_tb&tos=1591&scd=18&ssd=1&est=1669272741876&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1669272743470&vi=1669272741875&ri=0a431d453b411d8ff8934dec95f219d7&ref=null&cv=20221117-23-RELEASE&item-url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd
IP
ASN #200478 Taboola.com ltd
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1344021/log/3/unip?en=pre_d_eng_tb&tos=1591&scd=18&ssd=1&est=1669272741876&ver=35&isls=true&src=i&invt=1500&rv=1&tim=1669272743470&vi=1669272741875&ri=0a431d453b411d8ff8934dec95f219d7&ref=null&cv=20221117-23-RELEASE&item-url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd HTTP/1.1
Host: trc-events.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx
date: Thu, 24 Nov 2022 06:52:24 GMT
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: https://www.squadhelp.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1669272741839&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&liSync=true
200 OK 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=34987&time=1669272741839&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&liSync=true
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=34987&time=1669272741839&url=https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squadhelp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&f27b22ec-9f8a-43b0-8a5b-fbcc3cfa8edc"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 24-Nov-2023 06:52:24 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2419:u=1:x=1:i=1669272744:t=1669359144:v=2:sig=AQFYG7gsoStnKwah7pAFcxPAq_DXXbub"; Expires=Fri, 25 Nov 2022 06:52:24 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXuMdjxFfUH2VwBAwmxKg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 8AB9446E29654A0A9CB1CA80D35862FC Ref B: OSL30EDGE0510 Ref C: 2022-11-24T06:52:23Z
date: Thu, 24 Nov 2022 06:52:23 GMT
content-length: 0
X-Firefox-Spdy: h2
b.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1587
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.squadhelp.com
access-control-allow-credentials: true
date: Thu, 24 Nov 2022 06:52:23 GMT
X-Firefox-Spdy: h2
b.clarity.ms/collect
204 No Content 0 B IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: b.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 171564
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:2f7711a9-b21e-4abe-a9d6-5b0ce5d18b64
access-control-allow-origin: https://www.squadhelp.com
access-control-allow-credentials: true
date: Thu, 24 Nov 2022 06:52:23 GMT
X-Firefox-Spdy: h2
api.fixelapp.com/api/v2/grade/FXL-1150-2383
503 Service Unavailable: Back-end server is at capacity 0 B URL HTTP/1.1 api.fixelapp.com/api/v2/grade/FXL-1150-2383
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/grade/FXL-1150-2383 HTTP/1.1
Host: api.fixelapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: text/plain
Content-Length: 187
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 503 Service Unavailable: Back-end server is at capacity
Content-Length: 0
Connection: keep-alive
www.squadhelp.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
200 OK 0 B URL HTTP/2 www.squadhelp.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/5012022.xyz?lp=d
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:18 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 13:35:09 GMT
etag: W/"637cd00d-302c"
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389a0e8bb4fd-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 26 Nov 2022 06:52:18 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/icon-search.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/html/static_images/icon-search.svg
IP
GET /html/static_images/icon-search.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/38aa56c2b82c262dcf55db8d9aba81eb.css
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:19 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:35:59 GMT
etag: W/"6343148f-456"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2686299
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389b984cb4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
script.fixel.ai/script/Fixel.min.js
200 OK 0 B URL HTTP/2 script.fixel.ai/script/Fixel.min.js
IP
GET /script/Fixel.min.js HTTP/1.1
Host: script.fixel.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Mon, 31 May 2021 09:44:32 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: qn3ku6T2KTYfiw1ZK.qbHtFFDfyG1XJc
server: AmazonS3
content-encoding: gzip
date: Thu, 24 Nov 2022 06:52:20 GMT
etag: W/"bd757ff2fd05d44091740f66680801be"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6Vj_koalJ7F3i080IHHVDlpgOdlxUbMzNrFhC9VfFTLJLpd6nHL2zA==
age: 376
X-Firefox-Spdy: h2
www.clarity.ms/tag/3xq9rdybkj
200 OK 0 B URL HTTP/2 www.clarity.ms/tag/3xq9rdybkj
IP
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /tag/3xq9rdybkj HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=488cdc3b878d4f369e10dce10225c741.20221124.20231124; expires=Fri, 24 Nov 2023 06:52:22 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:dfa4d45a-f309-4181-9ede-77e6e6c0ecf0
x-cache: CONFIG_NOCACHE
x-azure-ref: 0phR/YwAAAAAxsbC8erSwR4lhNQ2t1K2BT1NMMjMxMDUwMjA0MDExADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
date: Thu, 24 Nov 2022 06:52:21 GMT
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/facebook.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/html/static_images/facebook.svg
IP
GET /html/static_images/facebook.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/38aa56c2b82c262dcf55db8d9aba81eb.css
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:19 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:35:47 GMT
etag: W/"63431483-428"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2686298
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389c58fbb4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
trc.taboola.com/1344021/trc/3/json?tim=1669272741880&data=%7B%22id%22%3A77%2C%22ii%22%3A%22%2Fname%2F5012022.xyz%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1669272741875%2C%22cv%22%3A%2220221117-23-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Flp%3Dd%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dsquadhelp%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1669272741880%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd%22%2C%22tos%22%3A0%2C%22ssd%22%3A1%2C%22scd%22%3A18%2C%22supv%22%3Atrue%7D%7D&pubit=i
200 OK 0 B URL HTTP/2 trc.taboola.com/1344021/trc/3/json?tim=1669272741880&data=%7B%22id%22%3A77%2C%22ii%22%3A%22%2Fname%2F5012022.xyz%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1669272741875%2C%22cv%22%3A%2220221117-23-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Flp%3Dd%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dsquadhelp%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1669272741880%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd%22%2C%22tos%22%3A0%2C%22ssd%22%3A1%2C%22scd%22%3A18%2C%22supv%22%3Atrue%7D%7D&pubit=i
IP
GET /1344021/trc/3/json?tim=1669272741880&data=%7B%22id%22%3A77%2C%22ii%22%3A%22%2Fname%2F5012022.xyz%22%2C%22it%22%3A%22video%22%2C%22sd%22%3Anull%2C%22ui%22%3Anull%2C%22vi%22%3A1669272741875%2C%22cv%22%3A%2220221117-23-RELEASE%22%2C%22uiv%22%3A%22default%22%2C%22u%22%3A%22https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%22%2C%22e%22%3Anull%2C%22cb%22%3A%22TFASC.trkCallback%22%2C%22qs%22%3A%22%3Flp%3Dd%22%2C%22r%22%3A%5B%7B%22li%22%3A%22rbox-tracking%22%2C%22s%22%3A0%2C%22uim%22%3A%22rbox-tracking%3Apub%3Dsquadhelp%3Aabp%3D0%22%2C%22uip%22%3A%22rbox-tracking%22%2C%22orig_uip%22%3A%22rbox-tracking%22%7D%5D%2C%22mpv%22%3Atrue%2C%22supv%22%3Atrue%2C%22mpvd%22%3A%7B%22en%22%3A%22page_view%22%2C%22tim%22%3A1669272741880%2C%22ref%22%3Anull%2C%22item-url%22%3A%22https%3A%2F%2Fwww.squadhelp.com%2Fname%2F5012022.xyz%3Flp%3Dd%22%2C%22tos%22%3A0%2C%22ssd%22%3A1%2C%22scd%22%3A18%2C%22supv%22%3Atrue%7D%7D&pubit=i HTTP/1.1
Host: trc.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
p3p: policyref="http://trc.taboola.com/p3p.xml", CP="NOI DSP COR LAW NID CURa ADMa DEVa PSAa PSDa OUR BUS IND UNI COM NAV INT DEM"
access-control-allow-origin: *
access-control-allow-credentials: true
content-encoding: gzip
accept-ranges: bytes
date: Thu, 24 Nov 2022 06:52:23 GMT
via: 1.1 varnish
x-served-by: cache-bma1675-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1669272743.957204,VS0,VE99
vary: Accept-Encoding
x-vcl-time-ms: 99
X-Firefox-Spdy: h2
www.squadhelp.com/name/5012022.xyz?lp=d
200 OK 0 B URL HTTP/2 www.squadhelp.com/name/5012022.xyz?lp=d
IP
GET /name/5012022.xyz?lp=d HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:18 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
endpoint: sh-live-next
cf-cache-status: MISS
last-modified: Thu, 24 Nov 2022 06:52:18 GMT
set-cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=; path=/; expires=Thu, 24-Nov-22 07:22:18 GMT; domain=.squadhelp.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 76f03894e9edb4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/html/images/payment-method.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/html/images/payment-method.svg
IP
GET /html/images/payment-method.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/5012022.xyz?lp=d
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:18 GMT
content-type: image/svg+xml
last-modified: Mon, 31 Oct 2022 01:08:52 GMT
etag: W/"635f2024-b8260"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 1791591
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f03899fe7db4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/var/38aa56c2b82c262dcf55db8d9aba81eb.css
200 OK 0 B URL HTTP/2 www.squadhelp.com/var/38aa56c2b82c262dcf55db8d9aba81eb.css
IP
GET /var/38aa56c2b82c262dcf55db8d9aba81eb.css HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/5012022.xyz?lp=d
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:18 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding
last-modified: Mon, 14 Nov 2022 13:18:40 GMT
etag: W/"63724030-50c17"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 839200
server: cloudflare
cf-ray: 76f03899fe7ab4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/icon-arrow-left.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/html/static_images/icon-arrow-left.svg
IP
GET /html/static_images/icon-arrow-left.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/38aa56c2b82c262dcf55db8d9aba81eb.css
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:19 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:35:38 GMT
etag: W/"6343147a-de"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2680169
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389ba862b4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.linkedin.oribi.io/partner/34987/domain/squadhelp.com/token
200 OK 0 B URL HTTP/2 cdn.linkedin.oribi.io/partner/34987/domain/squadhelp.com/token
IP
GET /partner/34987/domain/squadhelp.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.squadhelp.com
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
date: Thu, 24 Nov 2022 06:29:32 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: iM8TsmQH51NyQjv3nIaffQxgA-1W8fJ_jyP4PtqHeYP1jqR1YL_uXQ==
age: 1370
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/icon-plus.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/html/static_images/icon-plus.svg
IP
GET /html/static_images/icon-plus.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/38aa56c2b82c262dcf55db8d9aba81eb.css
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:19 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:35:49 GMT
etag: W/"63431485-32f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2686298
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389bc87ab4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/static_images/approved.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/static_images/approved.svg
IP
GET /static_images/approved.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/5012022.xyz?lp=d
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:18 GMT
content-type: image/svg+xml
last-modified: Mon, 12 Sep 2022 15:01:00 GMT
etag: W/"631f49ac-9e1e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2686298
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f03899fe7cb4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/static_images/logo.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/static_images/logo.svg
IP
GET /static_images/logo.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/name/5012022.xyz?lp=d
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:18 GMT
content-type: image/svg+xml
last-modified: Mon, 12 Sep 2022 15:00:45 GMT
etag: W/"631f499d-1321"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2686298
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f03899fe7bb4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.calendly.com/assets/external/widget.css
200 OK 0 B URL HTTP/2 assets.calendly.com/assets/external/widget.css
IP
GET /assets/external/widget.css HTTP/1.1
Host: assets.calendly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:19 GMT
content-type: text/css
cf-ray: 76f0389a6f03fab8-OSL
age: 139
cache-control: public, max-age=300
etag: W/"397a083322efd65055fd33da0d62ee2c"
expires: Fri, 25 Nov 2022 06:52:19 GMT
last-modified: Mon, 21 Nov 2022 12:50:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
cf-bgj: minify
cf-polished: status=cannot_optimize
x-content-type-options: nosniff
set-cookie: __cf_bm=C1jY3OmhH7yA9frIGQxv_faZipDyh616jCEwuBwVRLk-1669272739-0-AQ28UFq0QPNHu+hThfzz11HyRqm30TqK5dLJ8e9tOJOkCrQX3a5RMZpgLYG1vbQcCCx4iJr3EXEOtNNdElRXMT8=; path=/; expires=Thu, 24-Nov-22 07:22:19 GMT; domain=.calendly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/icon-phone.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/html/static_images/icon-phone.svg
IP
GET /html/static_images/icon-phone.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/38aa56c2b82c262dcf55db8d9aba81eb.css
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:19 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:35:59 GMT
etag: W/"6343148f-37c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2686298
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389b9852b4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.squadhelp.com/html/static_images/icon-play.svg
200 OK 0 B URL HTTP/2 www.squadhelp.com/html/static_images/icon-play.svg
IP
GET /html/static_images/icon-play.svg HTTP/1.1
Host: www.squadhelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.squadhelp.com/var/38aa56c2b82c262dcf55db8d9aba81eb.css
Cookie: __cf_bm=IkbBwtF50BKxo7cw6PjWJjM6z2qX0veoyE1t9qoGsyY-1669272738-0-AeQNUj0wx02NOR1bEgplsLGMZs24+EjojySDRf/vnVAMu9ukAtOjf8YPdFYdPka/a2sksZBYwdpFuGtb+jTLeJk=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Thu, 24 Nov 2022 06:52:19 GMT
content-type: image/svg+xml
last-modified: Sun, 09 Oct 2022 18:35:50 GMT
etag: W/"63431486-1b2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
cf-cache-status: HIT
age: 2686298
vary: Accept-Encoding
server: cloudflare
cf-ray: 76f0389bc877b4fd-OSL
content-encoding: br
X-Firefox-Spdy: h2
104.21.5.143
142.250.74.3
104.18.32.68
151.101.85.44
141.226.228.48
93.184.220.29
157.240.200.35
23.36.77.32