getjobber.com/
104.22.27.66301 Moved Permanently 0 B IP 104.22.27.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 26 Nov 2022 08:21:51 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sat, 26 Nov 2022 09:21:51 GMT
Location: https://getjobber.com/
Server-Timing: cf-q-config;dur=6.0000020312145e-06
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770136827d7eb4ff-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15011
Expires: Sat, 26 Nov 2022 12:32:02 GMT
Date: Sat, 26 Nov 2022 08:21:51 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4945
Cache-Control: max-age=99108
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:51 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 11:53:39 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6311
Expires: Sat, 26 Nov 2022 10:07:02 GMT
Date: Sat, 26 Nov 2022 08:21:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 08:17:32 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 259
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: XrJLvLqc57NfxS2vDEe49bwZ4z0kSCUqEkXloxxJ9i2nIrlphQOA0w3okD+ajtwfsE21k7NOnHg=
x-amz-request-id: 83J00SP1ZAHCQX7V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 07:41:07 GMT
age: 2444
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 30765015149800f1242e1a0097b57be6
7ccdc8644134b5d15de27cfa754fae6ed9e528fe
637610d6ab6d6d6622e73936c3ee1586ac278d741141122f19ce1a65970a043b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=156052
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:51 GMT
Etag: "63818b33-118"
Expires: Mon, 28 Nov 2022 03:42:43 GMT
Last-Modified: Sat, 26 Nov 2022 03:42:43 GMT
Server: nginx
Content-Length: 280
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 0006b548fbd531537de0c77d02f99b1a
c6fa3623a3785bf6fd910c520e4ece72adcc87ba
6b5cf58f87641bb088d4a65c0ecba2e05c85b5098f96661b9c7981be3fb81757
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1575
Cache-Control: max-age=168424
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:51 GMT
Etag: "6381b560-118"
Expires: Mon, 28 Nov 2022 07:08:55 GMT
Last-Modified: Sat, 26 Nov 2022 06:42:40 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 30f833b25d6e5af2229d9584c6f6cf97
ee79c3fa994d53c1d0687ca61353d63cce459e25
1bc091991c4663dbc86ae735e47ddc3e887a24661050ad9f24b8d458bfd11a6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
getjobber.com/
104.22.27.66200 OK 44 kB IP 104.22.27.66:0
Hash d222d1cdb0c4ceb98665fc0f6f924fd6
add493315274e142620dab8bd931d81c14cf8a37
0071388bddaf968937d7966badc2d9e76e0fe49d4c4dd3bfd190daf1587bc526
GET / HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: text/html; charset=UTF-8
link: <https://getjobber.com/wp-json/>; rel="https://api.w.org/", <https://getjobber.com/wp-json/wp/v2/pages/4954>; rel="alternate"; type="application/json", <https://getjobber.com/>; rel=shortlink
vary: Accept-Encoding
ki-cache-type: None
ki-cf-cache-status: BYPASS
ki-edge: v=17.9
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
x-kinsta-cache: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SUNadMmXuvO1VtbadhyGNk%2BgBksLmaSYZnCO8g%2Bnu4YJkoL8ZipIxfX9Z9Cg2n0aM4Ad4CaDdLeQ6Lm67nyF4TNoer2VqHcHZVhI7JDFm3twCJH5hOCFNKFpjkfoq2Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
cache-control: max-age=14400
cf-cache-status: HIT
age: 22678
last-modified: Sat, 26 Nov 2022 02:03:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013684edb8b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LejoIIUAAAAAOTEmNZO_yjGeQhjj4jAlLDeAVfr&ver=6.0.2
142.250.74.164200 OK 582 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LejoIIUAAAAAOTEmNZO_yjGeQhjj4jAlLDeAVfr&ver=6.0.2
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 30b4b211274f6376dfb5dec11189aee7
aa1c385453b952299c346ee6398e3ca6b8b9e0d0
64b8a49343007856231a82079bbd1eaa520fff6437d6940be44a6a0383425c98
GET /recaptcha/api.js?render=6LejoIIUAAAAAOTEmNZO_yjGeQhjj4jAlLDeAVfr&ver=6.0.2 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sat, 26 Nov 2022 08:21:51 GMT
date: Sat, 26 Nov 2022 08:21:51 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 582
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-LQXS6VVFN0
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-LQXS6VVFN0
IP 142.250.74.168:0
File type ASCII text, with very long lines (19431)
Hash c2849f2f72ed9b7107de03df83fafea0
c5032533d30b9d1ee48178580ef93c6e1c3094fd
9b01c1bf361810fde6ddeb92a53c54e554902d41771faa43cc4917dce39fe8ce
GET /gtag/js?id=G-LQXS6VVFN0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 08:21:51 GMT
expires: Sat, 26 Nov 2022 08:21:51 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76106
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googleoptimize.com/optimize.js?id=OPT-ND6RK45
142.250.74.46200 OK 48 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-ND6RK45
IP 142.250.74.46:0
File type ASCII text, with very long lines (4068)
Hash 9f5e416bec57208f6812b0c36ab01a07
6538c8fe7b2b698d67a6601e328c2c9c19662ee2
95be8cd97dc7830081e4455e2d59c3aaeb37ec883081df7f8d6b939d10185393
GET /optimize.js?id=OPT-ND6RK45 HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 08:21:51 GMT
expires: Sat, 26 Nov 2022 08:21:51 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47530
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 08:11:12 GMT
cache-control: public,max-age=3600
age: 640
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
secure.getjobber.com/assets/static_link/source_tracking.js?ver=1
104.22.27.66200 OK 821 B URL HTTP/2 secure.getjobber.com/assets/static_link/source_tracking.js?ver=1
IP 104.22.27.66:0
File type C source, ASCII text, with very long lines (2018), with no line terminators
Hash b18c900fd6be23310c8979e26c04717f
45f58ef4d51ff80f60d10f4d637598451d2c1a4d
2b7971c6664e5e8f35d574b7a74beb2497c85e0b8b25b8ec8636657e52162a42
GET /assets/static_link/source_tracking.js?ver=1 HTTP/1.1
Host: secure.getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:52 GMT
content-type: application/javascript; charset=utf-8
content-length: 821
last-modified: Tue, 12 Jul 2022 20:08:44 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
vary: Accept-Encoding, Origin
strict-transport-security: max-age=2592000; includeSubDomains
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
content-security-policy: default-src *; base-uri 'self'; child-src blob: *; connect-src *; font-src data: *; form-action *; frame-ancestors 'self'; frame-src *; img-src data: *; media-src blob: *; script-src 'unsafe-inline' 'unsafe-eval' *; style-src 'unsafe-inline' *; worker-src blob:
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77013685be9fb505-OSL
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/assets/theme-defer.bundle.js?ver=1669323996
104.22.27.66200 OK 108 kB URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/assets/theme-defer.bundle.js?ver=1669323996
IP 104.22.27.66:0
Size 108 kB (107832 bytes)
Hash ff662b8719994fce9d032abf80586e9d
68218d4cac9758c73ee7943e6fbb9c978d3f4f45
863c7b674ea378fb60089131e50e4ebc60a011c993a918453f6da1dd9ef1c12b
GET /wp-content/themes/jobber-bold/assets/theme-defer.bundle.js?ver=1669323996 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
age: 22678
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=14635
etag: W/"637fdcdc-392b"
expires: Sun, 26 Nov 2023 02:03:53 GMT
ki-cf-cache-status: HIT
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:06:36 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e3oHkN51AjiKo542R09boLKO23Zo0JqrrmNOtdvF4wFZyD4B2Qz90154yPa5gC89QY4eAV3GzHN25Cr5NB2BJG45Xm54xocovOdM8fHNCIiyvj56kLYInsQuNn%2BWuvY%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,1a5f324efce9c572868563a74fa218a07c90b59a2c6a73c03e6ecafd4e78f6d5
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685ceafb505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1616
Cache-Control: max-age=90715
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:52 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 09:33:47 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/ElementQueries.js?ver=1
104.22.27.66200 OK 39 kB URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/ElementQueries.js?ver=1
IP 104.22.27.66:0
Hash 1f9a103bc0834146508654e600bebcb7
162dfd54f5e37c03670134ccc70d9891ae9f6748
58106e8f8a72f6df80e444465578578e66a3c7c766929baf53965f35aea55622
GET /wp-content/themes/jobber-bold/scripts/vendor/ElementQueries.js?ver=1 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
cf-bgj: minify
cf-polished: origSize=6759
etag: W/"637fdd30-1a67"
expires: Tue, 23 Nov 2032 02:03:53 GMT
ki-cf-cache-status: SAVING
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:08:00 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=47vDK7gv8kiYJjhAaT7UXkbW5uUMAZ8wYXi8ays%2B2yoN7BGO6xB3J7u0UppGjRWZ2QUydjm89kTK3IUkA97kkjOyWK7qk3gDrK8NLA%2FSJrkMpAngq50SNO%2Fs4Y6tUmo%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,ef801def1b67b1c0525a3cb46b3c9cd43f2dd9f7d32b69c3144dbf8ed8248df3
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
age: 22678
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685be96b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
getjobber.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
104.22.27.66200 OK 38 kB URL HTTP/2 getjobber.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 104.22.27.66:0
Hash 0f55c0ac0107f4519cd83ee90fb204ce
54fc96ce012bac2b66f5d034c4248d09015e91cc
3f870c40401a923eddb8dab492db45f0657db6792e9a895066e8d8794add27be
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/javascript
last-modified: Tue, 22 Nov 2022 13:35:09 GMT
etag: W/"637cd00d-4d7"
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685be9eb505-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Mon, 28 Nov 2022 08:21:51 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/ResizeSensor.js?ver=1
104.22.27.66200 OK 39 kB URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/ResizeSensor.js?ver=1
IP 104.22.27.66:0
Hash 20cb4ad9bc1731b7c0bab705f0f91950
0c70a29ed8cd92d0811ac17a130282679cb4aaa3
18d0cead7b16934829ed5682613ccafb85bf42bc745ce791b92d7d02f5f11a73
GET /wp-content/themes/jobber-bold/scripts/vendor/ResizeSensor.js?ver=1 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
age: 22678
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=10104
etag: W/"637be42b-2778"
expires: Sun, 26 Nov 2023 02:03:53 GMT
ki-cf-cache-status: HIT
ki-edge-o2o: yes
last-modified: Mon, 21 Nov 2022 20:48:43 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TA%2BDjkWZHNLPfVc3SxuVnel8AtnBD7KNoIHkraDUP3y2azIj8t%2F3BiDPhEJGW%2BwBgCjZOfymQDgQRwfo%2BoUV3I1BAA5CWv6043pvO27%2FEn2Bulc%2BD8YIUbiIg2c56RI%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,660fc71ee93f12bb6b214cc1f84619cc92ac132f468125212f8ba4e693354ad9
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685be93b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
getjobber.com/wp-content/plugins/jobberblocks/assets/images/home-hero-617x764.avif
104.22.27.66200 OK 152 kB URL HTTP/2 getjobber.com/wp-content/plugins/jobberblocks/assets/images/home-hero-617x764.avif
IP 104.22.27.66:0
Size 152 kB (152182 bytes)
Hash ad2c73c70cb541e22096b808333afd8d
40f97003f155694db039c9a2fe078f0a0402bd34
dd9edf24cefa7f996ec34207b8bc03406f50f30ec09989479255c2aafcfff0e0
GET /wp-content/plugins/jobberblocks/assets/images/home-hero-617x764.avif HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:52 GMT
content-type: text/html; charset=UTF-8
cache-control: public, max-age=31536000, s-maxage=31536000
last-modified: Thu, 24 Nov 2022 21:06:48 GMT
vary: Accept-Encoding
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,3710caa6cf6e35504e9a4f468404098386d6c94020ccfc6f179a139362e80376
ki-cache-type: CDN
ki-cf-cache-status: SAVING
ki-edge: v=17.9
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m5JHGeFecg7QzJvjbV6s2RMx8Kg%2BT1zB4L9XPgXx0tH3uOjZGWXoxNqGdgTYzLiXSLZ4%2Bf%2BAHkh%2BidajXnsXrSoNJLaJQRgQpGvoVvST40aFoqXlDuK0qt%2FaURBddnU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
cf-cache-status: MISS
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685ae7cb505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash a3472b02a47d0d2637af0f18a9f17461
56bdd5d54255034757cd6b66af8341c23e6a4ad3
73239f21c5d2292653bded6ff2dae727c75e3f07ee272287920e6999a290f8a9
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 08:21:52 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 21:46:09 GMT
Expires: Wed, 30 Nov 2022 21:46:08 GMT
Etag: "56bdd5d54255034757cd6b66af8341c23e6a4ad3"
Cache-Control: max-age=393255,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7701368acbfeb512-OSL
push.services.mozilla.com/
34.218.168.248101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.218.168.248:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: v4J8ODUDfiibgsVZQc+9Kw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: L4zwgboQqzvxtLx5cOtU7YTr73E=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 3a88d4276fb8f28401fe60075759ecc4
e1b4b435cb04254346702d4ac6e668e792fd0af9
46a1baa67d23be2ae003bb4acb33f7ed8ddf753297d596e6dcb6f6b7f52b99d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3135
Cache-Control: max-age=113123
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:52 GMT
Etag: "6380d744-117"
Expires: Sun, 27 Nov 2022 15:47:15 GMT
Last-Modified: Fri, 25 Nov 2022 14:55:00 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
api.ipify.org/?format=json
3.232.242.170200 OK 21 B URL HTTP/1.1 api.ipify.org/?format=json
IP 3.232.242.170:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7d69c71af0f191e9a72db6153f8018d1
f67c5f2887bc05654b47f76e9621e53a4091aed1
5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Access-Control-Allow-Origin: https://getjobber.com
Content-Type: application/json
Vary: Origin
Date: Sat, 26 Nov 2022 08:21:52 GMT
Content-Length: 21
Via: 1.1 vegur
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 325edb08fd4d565efab9f2fa430ca920
1407a15230d426ed019411b5ec8d691116456a57
5ba34410be8b0c6ae8684e7f360238ed8e86db1ca372b21a19fc532624ba5b8d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5879
Cache-Control: max-age=87767
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:52 GMT
Etag: "63806980-117"
Expires: Sun, 27 Nov 2022 08:44:39 GMT
Last-Modified: Fri, 25 Nov 2022 07:06:40 GMT
Server: ECS (amb/6B9E)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash e87d5c628a1332905189e7661b787164
b9d5398e4c3988032da4fc2e3010def9907b7808
f8d4d71b96f74664ddd70227b8462bb527a35fd57eec243549f63b4d679381af
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2577
Cache-Control: max-age=98872
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:52 GMT
Etag: "6380a1c7-139"
Expires: Sun, 27 Nov 2022 11:49:44 GMT
Last-Modified: Fri, 25 Nov 2022 11:06:47 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 313
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 7b06c0e82b29caf0f7bf22264ccde593
32bb9d4fac19bddf11c8fec79365d49da9531a3e
ebbb34e1ddd22613743faa9f92c9b6cfeeed7e6f84c2ba8139211ec295e15a89
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=118609
Date: Sat, 26 Nov 2022 08:21:52 GMT
Etag: "6380f8f1-1d7"
Expires: Sun, 27 Nov 2022 17:18:41 GMT
Last-Modified: Fri, 25 Nov 2022 17:18:41 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: wbcLwGql7adhNUCCEd8UBVt3i1scw5kdzkFKG0nnN--nEPmkT3qqew==
po.joshuarms.com/i/e99b250219e75cf8a7c0538a5f132600.js
54.230.111.30200 OK 30 kB URL HTTP/2 po.joshuarms.com/i/e99b250219e75cf8a7c0538a5f132600.js
IP 54.230.111.30:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 755baf8f50644c2a79a597803e6be2bb
8ff28a645b39f27f3ea68866a8f2c0e12a43ea1b
a5e850618ff7fb48fc18e6496dba635b125220070f74686bd127f5a031db9fab
Analyzer Verdict Alert fortinet Phishing
GET /i/e99b250219e75cf8a7c0538a5f132600.js HTTP/1.1
Host: po.joshuarms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 30240
content-encoding: gzip
server: Caddy
date: Sat, 26 Nov 2022 00:37:35 GMT
cache-control: max-age=43200
expires: Sat, 26 Nov 2022 12:16:41 GMT
etag: "1434a-+7vXbKo7+JthfuRuQSQ+WRlkfjQ"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KgpFEOK6CZKOMMpruYswZi7WPimh9ldxce_mc7SS6E_500Q09XyvRQ==
age: 29111
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/jquery-cookie.js?ver=6.0.2
104.22.27.66200 OK 31 kB URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/jquery-cookie.js?ver=6.0.2
IP 104.22.27.66:0
Hash 2b6b477d4a63aaea2defc41df9fc2edb
fe35c0c4b25de3fd668c6dec898b7fd011cf9f15
a60156ad4971aa480700084d128e476bfa0e56d29541c42bf6cb3030ae329d81
GET /wp-content/themes/jobber-bold/scripts/vendor/jquery-cookie.js?ver=6.0.2 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
cf-bgj: minify
cf-polished: origSize=3536
etag: W/"637fdd30-dd0"
expires: Tue, 23 Nov 2032 02:03:53 GMT
ki-cf-cache-status: SAVING
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:08:00 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nRhSwJ%2BiGBKP0ZsP2yjrpa%2BvtwrX0glcnRH2hEAybam3mppUvrniYO%2BoF1XeXEY%2B69c4hJ7zJy9zAYBgq7%2BQWZSNsvfBCHTzGlVfudKCoAjUNIb2DO8kP4u0jAxCHP4%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,35a35ae1c5177c3194f90e593cf21a37578e9390ae3ed48a49e4641019667cc5
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
age: 22678
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685be90b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash e0ebe0d537b8fb447890da6e4b40a163
be58013b2c6a6d6ddbe54e17dc8475db414c7621
ed51497bc9a14abfe24336341dad638227a15cabd645f13fda8f657bff59f342
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=159527
Date: Sat, 26 Nov 2022 08:21:52 GMT
Etag: "63818b32-1d7"
Expires: Mon, 28 Nov 2022 04:40:39 GMT
Last-Modified: Sat, 26 Nov 2022 03:42:42 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xkQJqDkwvyYlvs4nbEyU34DaxGDoBPZWR1Sk-EaZrenim4W8m9pybg==
Age: 3477
fast.wistia.com/assets/external/wistia-mux.js
151.101.86.110200 OK 31 kB URL HTTP/2 fast.wistia.com/assets/external/wistia-mux.js
IP 151.101.86.110:0
File type ASCII text, with very long lines (65468)
Hash 8ca4953da62f6c8a05b7f2d7333a83f7
c68e554587e7e3dc6da836b6501e926ae543f933
9d7adbd9c2243a23cf7cb8ab534ce188da6f2b78d75e52ab79fb6af490dc6279
GET /assets/external/wistia-mux.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
content-type: application/javascript
etag: "637ce334-7a30"
last-modified: Tue, 22 Nov 2022 14:56:52 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:52 GMT
age: 2740
x-served-by: cache-iad-kcgs7200128-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 10, 72
x-timer: S1669450913.936214,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 31280
X-Firefox-Spdy: h2
fast.wistia.com/embed/medias/ky8p1vttcy.json?callback=wistiajson2
151.101.86.110200 OK 1.4 kB URL HTTP/2 fast.wistia.com/embed/medias/ky8p1vttcy.json?callback=wistiajson2
IP 151.101.86.110:0
File type ASCII text, with very long lines (4506), with no line terminators
Hash d86a1461eb01722687305127c54a62fd
05f4294ecb8e8624bc01684c8923f47645d9f1aa
c2b9722f913edf7210dfcb54b47d4fc547d21a28c3909f106fd6b5b322cf5620
GET /embed/medias/ky8p1vttcy.json?callback=wistiajson2 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: W/"895475c13f18f096bbcf18d281f59b34"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 48e1869404c374b445fc7b27b61f5727
x-runtime: 0.051571
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:52 GMT
age: 62609
x-served-by: cache-iad-kiad7000167-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 43, 1
x-timer: S1669450913.974756,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 1414
X-Firefox-Spdy: h2
my.hellobar.com/modules.js
172.67.43.233200 OK 76 kB URL HTTP/2 my.hellobar.com/modules.js
IP 172.67.43.233:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 17b1978770f6fae90eeecdd29c9bc494
0af3dc2409fab966cb310b053fd925b3917bbba7
959eb07a8e060698c79a525b47e2d660d974aac1cb349c460bb4168195e5e778
GET /modules.js HTTP/1.1
Host: my.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:52 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=260007
etag: W/"27c9b022c4d05919f58888137e2283e1"
last-modified: Wed, 02 Nov 2022 18:32:06 GMT
x-amz-id-2: pkFX3slapMtw5WitUt+4RFlvwyLlLnooL5NsZOVZCCgm/ES5K6sXJoscP+7LZVSQYxB5hoKtsCI=
x-amz-request-id: SWYHQATQ98YP98Z2
cache-control: max-age=14400
cf-cache-status: HIT
age: 1348
vary: Accept-Encoding
server: cloudflare
cf-ray: 7701368dd9b7b517-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 6303a8c2444c19003c7655b76ca65b17
d63ce76d74bb0e7dd842f16a229dcd328bd3ebde
f89b6da6191a63b4640646e483b470bc8fd4b74fe01d48b2a003ad57e6a7f3cd
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 26 Nov 2022 08:21:53 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Fri, 25 Nov 2022 21:56:56 GMT
Expires: Sat, 26 Nov 2022 21:56:56 GMT
ETag: "d63ce76d74bb0e7dd842f16a229dcd328bd3ebde"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
collector-21052.us.tvsquared.com/tv2track.js
3.15.122.113200 OK 8.5 kB URL HTTP/1.1 collector-21052.us.tvsquared.com/tv2track.js
IP 3.15.122.113:0
File type ASCII text, with very long lines (1162)
Hash 0dfa43ce95b39a456eae5449442aff6e
f5a7a9573c38d97cb3c7d8d811b8b6707a7f2d88
3135834b3c8b03e052d94f9b63cf3f796ff4a3077256dd1daddc16d5c204306a
GET /tv2track.js HTTP/1.1
Host: collector-21052.us.tvsquared.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=600
Content-Encoding: gzip
Content-Type: application/javascript
Date: Sat, 26 Nov 2022 08:21:52 GMT
ETag: "6306051b-2133"
Expires: Sat, 26 Nov 2022 08:31:52 GMT
Last-Modified: Wed, 24 Aug 2022 11:01:47 GMT
Server: nginx
X-Robots-Tag: noindex
Content-Length: 8499
Connection: keep-alive
fast.wistia.com/embed/medias/414n31wdbi.json?callback=wistiajson1
151.101.86.110200 OK 1.5 kB URL HTTP/2 fast.wistia.com/embed/medias/414n31wdbi.json?callback=wistiajson1
IP 151.101.86.110:0
File type ASCII text, with very long lines (4695), with no line terminators
Hash d566c952ba66caacd0473e9f4a84cd73
7b08085650db3a2e2299f13294dead5e8bde2f27
249e6cbf952f2b3fb1a37c71d5b92a78a41072ac54380f07078415f6b100909b
GET /embed/medias/414n31wdbi.json?callback=wistiajson1 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: W/"4e1137514084179a8e32a1513803d83f"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: a2fc6915006bda7656ced72349498b4f
x-runtime: 0.054150
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 3818
x-served-by: cache-iad-kiad7000083-IAD, cache-bma1677-BMA
x-cache: HIT, MISS
x-cache-hits: 32, 0
x-timer: S1669450913.935738,VS0,VE91
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 1502
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 758
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2I4przXJSuH40tSLxoZDHC2XoLA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202211260821528417BA33DB9B0BA79394
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2f268e8c8f568866fc1f959f4b26f4f38641eca77b39ebafaf1043e1f2aa3de871aa9d4565af78a64cf388a050147152aeb82fcc67007fc351f12035c46fd60b0f
x-origin-response-time: 15,104.96.220.23
x-akamai-request-id: 20b4988c.81589225
expires: Sat, 26 Nov 2022 08:21:53 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:53 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a104-96-220-23.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=103, origin; dur=14, inner; dur=12
x-parent-response-time: 113,23.36.79.13
X-Firefox-Spdy: h2
fast.wistia.com/assets/external/engines/hls_video.js
151.101.86.110200 OK 114 kB URL HTTP/2 fast.wistia.com/assets/external/engines/hls_video.js
IP 151.101.86.110:0
File type ASCII text, with very long lines (65469)
Size 114 kB (114373 bytes)
Hash ddbf94a47f16fcd8a99d8c45572ac852
fabe447aee7408e90c4fcfc1de127d98987b8ca0
cb2cba64e3b0a0797031ca64b918bed7c1c58b6f3b40d92b4f45f93b3ea55109
GET /assets/external/engines/hls_video.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
content-type: application/javascript
etag: "637ce334-1bec5"
last-modified: Tue, 22 Nov 2022 14:56:52 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 2740
x-served-by: cache-iad-kiad7000086-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 6, 34
x-timer: S1669450913.035839,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 114373
X-Firefox-Spdy: h2
embed-ssl.wistia.com/deliveries/a77a0484b75ec11318cb39a16cbb5d15105faf5c.webp?image_crop_resized=1280x1280
151.101.86.133200 OK 14 kB URL HTTP/2 embed-ssl.wistia.com/deliveries/a77a0484b75ec11318cb39a16cbb5d15105faf5c.webp?image_crop_resized=1280x1280
IP 151.101.86.133:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1280x1280, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3100f25aa169b371770d73b668784c14
c89ae1080a666cc835bd36ce5416753bf5f82cdf
e6f796fea049709a6fd91e113194a8cadf5f653364a62c106a3382af21142df2
GET /deliveries/a77a0484b75ec11318cb39a16cbb5d15105faf5c.webp?image_crop_resized=1280x1280 HTTP/1.1
Host: embed-ssl.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: a77a0484b75ec11318cb39a16cbb5d15105faf5c
last-modified: Thu, 02 Sep 2021 16:35:28 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 1368164
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000121-IAD, cache-bma1647-BMA
x-cache: HIT, HIT
x-cache-hits: 64, 1
x-timer: S1669450913.251573,VS0,VE1
content-length: 13474
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/identify.js
23.36.79.17200 OK 32 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/identify.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 2d8631dbd772fc3b0a3374ea73a9f516
8a652a43ddc57679c93cdc78c926f3f46987db0b
3f827b708571d911a9e831e15b081f41faebfe9c1db909730c543a08ed821fd6
GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221126082152826B2F2BBAED65B6069D
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b58098d7a7e6b1920355da96b1df82f9bd588fff9065f3c6ed98ccab046983d5efbf4908a8047ce1e61327c11dc066b2e3de1ea85916fce9f4102029a40703fcea
content-encoding: gzip
x-origin-response-time: 6,23.218.220.137
x-akamai-request-id: ec9b5c6f.81589128
expires: Sat, 26 Nov 2022 08:21:52 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:52 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=100, origin; dur=6, inner; dur=3
x-parent-response-time: 106,23.36.79.13
X-Firefox-Spdy: h2
fast.wistia.com/embed/medias/yjg5lrms14.json?callback=wistiajson5
151.101.86.110200 OK 1.4 kB URL HTTP/2 fast.wistia.com/embed/medias/yjg5lrms14.json?callback=wistiajson5
IP 151.101.86.110:0
File type ASCII text, with very long lines (4484), with no line terminators
Hash b286be97a9572b15ff178f4f13f36325
972b3d2261727ab2917ec39be9d45dbc4273edf3
b92d3732ed3a7f691addd91c6cadecb0868e5603f53a6ffb07a5e69d03f3ae9a
GET /embed/medias/yjg5lrms14.json?callback=wistiajson5 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: W/"9176529d126f06d697ec202f9d0d1876"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: e405dcaa7b938c9497c2215b801595ed
x-runtime: 0.054551
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 51449
x-served-by: cache-iad-kcgs7200084-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 58, 24
x-timer: S1669450913.310582,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 1418
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-LQXS6VVFN0>m=2oeb90&_p=365984065&_gaz=1&cid=776195483.1669450912&ul=en-us&sr=1280x1024&_s=1&sid=1669450911&sct=1&seg=0&dl=https%3A%2F%2Fgetjobber.com%2F&dt=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-LQXS6VVFN0>m=2oeb90&_p=365984065&_gaz=1&cid=776195483.1669450912&ul=en-us&sr=1280x1024&_s=1&sid=1669450911&sct=1&seg=0&dl=https%3A%2F%2Fgetjobber.com%2F&dt=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-LQXS6VVFN0>m=2oeb90&_p=365984065&_gaz=1&cid=776195483.1669450912&ul=en-us&sr=1280x1024&_s=1&sid=1669450911&sct=1&seg=0&dl=https%3A%2F%2Fgetjobber.com%2F&dt=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://getjobber.com
date: Sat, 26 Nov 2022 08:21:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
collector-21052.us.tvsquared.com/tv2track.php?action_name=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&idsite=TV-7281904572-1&rec=1&r=217001&h=8&m=21&s=52&url=https%3A%2F%2Fgetjobber.com%2F&_id=86ff4cc148d4fe78&_idts=1669450912&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=20
3.15.122.113200 OK 42 B URL HTTP/1.1 collector-21052.us.tvsquared.com/tv2track.php?action_name=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&idsite=TV-7281904572-1&rec=1&r=217001&h=8&m=21&s=52&url=https%3A%2F%2Fgetjobber.com%2F&_id=86ff4cc148d4fe78&_idts=1669450912&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=20
IP 3.15.122.113:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 00657dd79637a8daf5e6196ca17f1887
3e064855d1fe7c6eac52981a646ec5840ba7efb5
f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660
GET /tv2track.php?action_name=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&idsite=TV-7281904572-1&rec=1&r=217001&h=8&m=21&s=52&url=https%3A%2F%2Fgetjobber.com%2F&_id=86ff4cc148d4fe78&_idts=1669450912&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=20 HTTP/1.1
Host: collector-21052.us.tvsquared.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Sat, 26 Nov 2022 08:21:53 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: 8f467a05-3e8e-4f81-b5e9-d0e0fec360cd
Server: nginx
Content-Length: 42
Connection: keep-alive
getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/whatwg-fetch.js?ver=1
104.22.27.66200 OK 7.0 kB URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/whatwg-fetch.js?ver=1
IP 104.22.27.66:0
Hash a9b253dba9b1602d533fbf3c3b67e42b
4fe3385e1062a128a3783067f218bcdfe31aec61
be202b8cfa54b83b64d5efe2afc06025133cf5022f93d362f6ce18ab81a3ab0a
GET /wp-content/themes/jobber-bold/scripts/vendor/whatwg-fetch.js?ver=1 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
cf-bgj: minify
cf-polished: origSize=7484
etag: W/"637fdd31-1d3c"
expires: Tue, 23 Nov 2032 02:03:53 GMT
ki-cf-cache-status: SAVING
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:08:01 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tqKy45yCgIR3KaYk14VSx4YaQ2%2BhHPs3UvVKQ0JM5BqmpVlrkdFxBBYjxWd57VI2PWwDfM%2BUDPQFatuXBZUXCjvh%2Fn1PooMENjDwwIPAQrqHSJPo3uj3mVCYl%2BzMTjg%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,ebc870536558a65b4c851f254b45fb0ff4060b87842acd56197e2dc7f1b27a94
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
age: 22678
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685ceadb505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
analytics.tiktok.com/i18n/pixel/config.js?sdkid=C7Q5I8D0NM9PPK6K6R40&hostname=getjobber.com
23.36.79.17200 OK 20 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=C7Q5I8D0NM9PPK6K6R40&hostname=getjobber.com
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
File type C source, Unicode text, UTF-8 text, with very long lines (58149)
Hash 69e230e991b4e2c7dcdd98429f72563e
0328ba437a6d217440ce7800f39f8ad106e21469
36a109529f26b639e9320088235ef7ea402425162f37a8f525d0fa31dc836539
GET /i18n/pixel/config.js?sdkid=C7Q5I8D0NM9PPK6K6R40&hostname=getjobber.com HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022112608215242AB56CAB41CD2A46536
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2fb9beb353da41ce900ffcd45c15263d8bb44c2bb6ab5a1c1eeed7610c569cbb54c0762fd3c9c29d2e9977343750cb0220900131ff8e6817b89c62be70c8ad257b
content-encoding: gzip
x-origin-response-time: 6,104.96.220.14
x-akamai-request-id: 2efcfd0e.8158913d
expires: Sat, 26 Nov 2022 08:21:52 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:52 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2I4przXJSuH40tSLxoZDHC2XoLA; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a104-96-220-14.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=100, origin; dur=6, inner; dur=3
x-parent-response-time: 106,23.36.79.13
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:52 GMT
server: Kestrel
content-length: 0
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=f4tMQV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRmV3BGUWt3b1F2VmtITGl2NFBLYnhHZEt3N21FeGQyQVppSWxlbHUlMkI2Wg; expires=Thu, 21 Dec 2023 08:21:53 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 415077
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
getjobber.com/wp-content/plugins/svg-support/vendor/DOMPurify/DOMPurify.min.js?ver=1.0.1
104.22.27.66200 OK 15 kB URL HTTP/2 getjobber.com/wp-content/plugins/svg-support/vendor/DOMPurify/DOMPurify.min.js?ver=1.0.1
IP 104.22.27.66:0
Hash 024fb15290b99b76dca2c3af00aeb572
7f12bc3b9d1370e50d87e5c09c723ffc3b3dd594
42584e5bf215d89a011b077937a62e595dc1118cb30701733374a0a243feff9f
GET /wp-content/plugins/svg-support/vendor/DOMPurify/DOMPurify.min.js?ver=1.0.1 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
content-encoding: gzip
etag: W/"6335f2d4-52b1"
expires: Tue, 23 Nov 2032 02:03:53 GMT
last-modified: Thu, 29 Sep 2022 19:32:36 GMT
vary: Accept-Encoding
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,61dbaaca4fd4e6143e0d0e5321a061b1103c887f1a1aeef17c67cfce0152d8cd
ki-cache-type: CDN
ki-cf-cache-status: SAVING
ki-edge: v=17.9
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x5M8F7XATpGhncZpF3Xwmn4H453XPPktwD8qKjBT0oHTRnm7UikRiyY3IGcJESsF%2F5HPWVjIdtRBSuTjhDW%2BMJn8zlsB0acMNHLUeNpLF4kzUEgYtOLozgi3TaxpTss%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
cf-cache-status: HIT
age: 22678
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685bea1b505-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fast.wistia.com/embed/medias/ky8p1vttcy.m3u8
151.101.86.110200 OK 742 B URL HTTP/2 fast.wistia.com/embed/medias/ky8p1vttcy.m3u8
IP 151.101.86.110:0
Hash 2bc8ffb70971e25af9d5e99d9202a233
c6473f77d552829d1aa03adbcbafb9b042f5eb11
28393e284d7cc93cb41f6b74a9a9c77e2280491e5887af6a29a876979dff2197
GET /embed/medias/ky8p1vttcy.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, no-cache
content-type: application/x-mpegURL
etag: W/"28393e284d7cc93cb41f6b74a9a9c77e"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 58d99c835d134980f7e8ebd056579980
x-runtime: 0.020018
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 0
x-served-by: cache-iad-kiad7000086-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 5153, 1
x-timer: S1669450913.378733,VS0,VE107
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 742
X-Firefox-Spdy: h2
fast.wistia.com/embed/medias/feltd9hk7x.m3u8
151.101.86.110200 OK 730 B URL HTTP/2 fast.wistia.com/embed/medias/feltd9hk7x.m3u8
IP 151.101.86.110:0
Hash 02c8392a81a447a19959e60988142cea
b5705aa562b278059a060a8a3d7f7dde6b045798
8225be968338bbdfe25ef6d7713318552463b6c7586e0506c65c8196cc7380c5
GET /embed/medias/feltd9hk7x.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, no-cache
content-type: application/x-mpegURL
etag: W/"8225be968338bbdfe25ef6d771331855"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 8172bf3dff5bff7a9642d8b55d6c3ece
x-runtime: 0.028952
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 0
x-served-by: cache-iad-kjyo7100175-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 3889, 1
x-timer: S1669450913.419034,VS0,VE91
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 730
X-Firefox-Spdy: h2
der.joshuarms.com/ct?id=28373&url=https%3A%2F%2Fgetjobber.com%2F&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1669450912032&hl=1&op=0&ag=1317291471&rand=046070205009098805782059778902129625191501051216086621860700190915850850020&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=mxDvwDBYDs&pto=1820&ver=48&gac=776195483.1669450912&mei=&ap=&duid=1.1669450912.5Sgo0iEYLtTn6D1N&suid=1.1669450912.GI4nPAgRd0loQIA9&tuid=1.1669450912.yfbFz1HZt53wZ4Np&fbc=->m=W10%3D&it=47%2C1506%2C188&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
52.45.196.192200 OK 2.1 kB URL HTTP/2 der.joshuarms.com/ct?id=28373&url=https%3A%2F%2Fgetjobber.com%2F&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1669450912032&hl=1&op=0&ag=1317291471&rand=046070205009098805782059778902129625191501051216086621860700190915850850020&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=mxDvwDBYDs&pto=1820&ver=48&gac=776195483.1669450912&mei=&ap=&duid=1.1669450912.5Sgo0iEYLtTn6D1N&suid=1.1669450912.GI4nPAgRd0loQIA9&tuid=1.1669450912.yfbFz1HZt53wZ4Np&fbc=->m=W10%3D&it=47%2C1506%2C188&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0
IP 52.45.196.192:0
File type HTML document text\012- HTML document, ASCII text, with very long lines (4881), with no line terminators
Hash 6e8c1a68abcc7f28064c0f9ede3fdbe1
14f726338fe3bc8e463266146acf01c3c31f4235
3f9c1b5e8720b10bbf01b570c742ca4e0379ed480ddc30a97ff6987dff1676d9
GET /ct?id=28373&url=https%3A%2F%2Fgetjobber.com%2F&sf=0&tpi=&ch=cheq4ppc&uvid=&tsf=0&tsfmi=&tsfu=&cb=1669450912032&hl=1&op=0&ag=1317291471&rand=046070205009098805782059778902129625191501051216086621860700190915850850020&fs=1280x939&fst=1280x939&np=linux%20x86_64&nv=&ref=&ss=1280x1024&nc=0&at=&di=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%3D&dep=0&pre=0&sdd=%7B%7D&cri=mxDvwDBYDs&pto=1820&ver=48&gac=776195483.1669450912&mei=&ap=&duid=1.1669450912.5Sgo0iEYLtTn6D1N&suid=1.1669450912.GI4nPAgRd0loQIA9&tuid=1.1669450912.yfbFz1HZt53wZ4Np&fbc=->m=W10%3D&it=47%2C1506%2C188&fbcl=-&gacl=-&gacsd=-&rtic=-&bgc=-&spa=1&urid=0 HTTP/1.1
Host: der.joshuarms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
content-type: text/javascript
date: Sat, 26 Nov 2022 08:21:53 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
set-cookie: cg_uuid=f88138868b400694f1db3ebd92c3be2c; Max-Age=29030400; Path=/; Expires=Sat, 28 Oct 2023 08:21:53 GMT; HttpOnly; Secure; SameSite=None
content-length: 2131
X-Firefox-Spdy: h2
fast.wistia.com/embed/medias/qoanorkxem.m3u8
151.101.86.110200 OK 742 B URL HTTP/2 fast.wistia.com/embed/medias/qoanorkxem.m3u8
IP 151.101.86.110:0
Hash b6a55684ff8482cfa6a40605575eeec6
0e0dcdaa86df50a2e91d14e81471d410587edc8e
a6fa27824693a32193d3e7673038097410ae54351e18ede5a98b042aaa3b0a8f
GET /embed/medias/qoanorkxem.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, no-cache
content-type: application/x-mpegURL
etag: W/"a6fa27824693a32193d3e76730380974"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 86643782d15dadea5576b71a2fe8775e
x-runtime: 0.024588
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 0
x-served-by: cache-iad-kjyo7100131-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 1269, 1
x-timer: S1669450913.434568,VS0,VE92
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 742
X-Firefox-Spdy: h2
embed-fastly.wistia.com/deliveries/ae67c70b26850f675ac8743ac1722cf75a66315c.m3u8
151.101.86.133200 OK 217 B URL HTTP/2 embed-fastly.wistia.com/deliveries/ae67c70b26850f675ac8743ac1722cf75a66315c.m3u8
IP 151.101.86.133:0
Hash b172c0ff0d0029632d6737af5d7b0d0f
43a4c3cf16e4ab19034fff6eedbe8afe08a4172c
9d99cb789241af35a00ff906e223a0d0972328c2503d9e90eb66db36b829c110
GET /deliveries/ae67c70b26850f675ac8743ac1722cf75a66315c.m3u8 HTTP/1.1
Host: embed-fastly.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
expires: Thu, 02 Nov 2023 05:05:09 GMT
cache-control: max-age=31536000
access-control-allow-headers: *
access-control-expose-headers: Server,range,Content-Length,Content-Range
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: ae67c70b26850f675ac8743ac1722cf75a66315c-hls-segment a7ec61e3e17b30009f4079021efec85f56cda9c7
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 2085404
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kiad7000044-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 1702, 1
x-timer: S1669450914.580899,VS0,VE1
vary: Accept-Encoding
content-length: 217
X-Firefox-Spdy: h2
fast.wistia.com/embed/medias/yjg5lrms14.m3u8
151.101.86.110200 OK 742 B URL HTTP/2 fast.wistia.com/embed/medias/yjg5lrms14.m3u8
IP 151.101.86.110:0
Hash 040df630d9f7f91fd97c47b0cc724577
347cea449722c0d2b68581ab7ce0eaa7cd0d2dd8
38a3bf072a8f497a94129d55c30e4698759c66f5f69bd7dddb79c595d43e1f2d
GET /embed/medias/yjg5lrms14.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, no-cache
content-type: application/x-mpegURL
etag: W/"38a3bf072a8f497a94129d55c30e4698"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 5536dab434e45e5d784c9022cbcdb3a3
x-runtime: 0.026408
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 0
x-served-by: cache-iad-kcgs7200062-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 2164, 1
x-timer: S1669450913.497021,VS0,VE92
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 742
X-Firefox-Spdy: h2
fast.wistia.com/embed/medias/414n31wdbi.m3u8
151.101.86.110200 OK 730 B URL HTTP/2 fast.wistia.com/embed/medias/414n31wdbi.m3u8
IP 151.101.86.110:0
Hash 671a82518ab39a85799ba33dcaf15a10
ad8a8e3fa72abbb0dcd735e5c1f4bb423ddf64de
550fa29e8da481d0ec4ac8acb1b37ca20fa4abd2df429689bf261eb913dc70c6
GET /embed/medias/414n31wdbi.m3u8 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, no-cache
content-type: application/x-mpegURL
etag: W/"550fa29e8da481d0ec4ac8acb1b37ca2"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 1b9af22fa6cd3ffb794c107e6e513343
x-runtime: 0.021783
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 55376
x-served-by: cache-iad-kcgs7200056-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 1101, 1
x-timer: S1669450914.627135,VS0,VE1
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 730
X-Firefox-Spdy: h2
fast.wistia.com/assets/images/blank.gif
151.101.86.110200 OK 1.2 kB URL HTTP/2 fast.wistia.com/assets/images/blank.gif
IP 151.101.86.110:0
File type GIF image data, version 89a, 100 x 100\012- data
Hash fbdc4ed9a1e2ee4917a265306927bcf1
6d177725d8230df0457e72004080f712e26fe624
a78759ea185fd0fa42ca9be1fc5bca4d3167a2836dc6c85e479a19dbf57fe2c2
GET /assets/images/blank.gif HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=315360000, public
content-type: image/gif
etag: "637e83f2-4be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Wed, 23 Nov 2022 20:34:58 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 215142
x-served-by: cache-iad-kiad7000052-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 44, 4419
x-timer: S1669450914.629638,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 1214
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 9b36651e5e390eed7b81ac3bf8c7435e
6bbe4a73ea8e20ab1a7fee2cb2c5faa51164f014
f81455f818ae8ac5394d3bfa3a42a13edaa9f1ef54a909393035a2ee227e9165
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 08:21:53 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 11:26:24 GMT
Expires: Fri, 02 Dec 2022 11:26:23 GMT
Etag: "6bbe4a73ea8e20ab1a7fee2cb2c5faa51164f014"
Cache-Control: max-age=528869,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770136921d92b512-OSL
der.joshuarms.com/tracker/tc_imp.gif?e=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&cri=mxDvwDBYDs&ts=708&cb=1669450912740
52.45.196.192200 OK 43 B URL HTTP/2 der.joshuarms.com/tracker/tc_imp.gif?e=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&cri=mxDvwDBYDs&ts=708&cb=1669450912740
IP 52.45.196.192:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash db04c7b378cb2db912c3ba8a5a774ee3
dee34bd86c3484d31002182aa2b7caa4699126b8
98b3d9d20e032f90aca49e9b116225d539ff6fbdb7e42c3c363f63896ac03d2a
GET /tracker/tc_imp.gif?e=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&cri=mxDvwDBYDs&ts=708&cb=1669450912740 HTTP/1.1
Host: der.joshuarms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: cg_uuid=f88138868b400694f1db3ebd92c3be2c
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
date: Sat, 26 Nov 2022 08:21:53 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-length: 43
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=CCFL7KBC77UE82V3NG5G&lib=ttq
23.36.79.17200 OK 284 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=CCFL7KBC77UE82V3NG5G&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Size 284 kB (283579 bytes)
Hash 33437c564e818b81b6d01f3d6f8b8912
5676c38a238d6dcfb2bbfdf64fc15a149b1fef64
8c48bda1f8e77d6027f8b3cd78962789bbe5113aa59571d6e09dd3ac40844eb9
GET /i18n/pixel/events.js?sdkid=CCFL7KBC77UE82V3NG5G&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2I4przXJSuH40tSLxoZDHC2XoLA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211260821531834BEF22A12A1B7A76A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2f7fbf0fcb58cd9921d4e4812d5a08c3c1d2269ed3ab7cadb53e7adad91ee5528c203883df2c1801eeb6bfc77578bdb37608406714bc81361f16dddbc4f8f9564e
content-encoding: gzip
x-origin-response-time: 6,104.96.220.140
x-akamai-request-id: 1ade9fc7.815895ef
expires: Sat, 26 Nov 2022 08:21:53 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:53 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a104-96-220-140.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=6, inner; dur=4
x-parent-response-time: 105,23.36.79.13
X-Firefox-Spdy: h2
bat.bing.com/bat.js
13.107.21.200200 OK 11 kB IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39007), with no line terminators
Hash 22e2e3226eb5ada04929a2e43307eeda
04615fa88f80567974bdeb0f103ca5909746ebd7
41feebdfb0b03cd7fee2eb886adef6f3f1f85d3f14215e9a388d2a50e42efb9b
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11421
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 09 Nov 2022 21:23:50 GMT
accept-ranges: bytes
etag: "077538f81f4d81:0"
vary: Accept-Encoding
set-cookie: MUID=37EE20F45F506B861C19329C5EA56AEA; domain=.bing.com; expires=Thu, 21-Dec-2023 08:21:53 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 0033C4B1AC4B48E0A2699B3C8716F3DA Ref B: OSL30EDGE0206 Ref C: 2022-11-26T08:21:53Z
date: Sat, 26 Nov 2022 08:21:52 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 075b978d5014c00a9cb96e9971337061
68c7c339233a16b5ab4c2e4814fe479b1b467ebd
8f6a792b948278a69165b1c2108c488cfd8df36b3d21e7b3964f5ca3cc879422
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4332
Cache-Control: max-age=138782
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:53 GMT
Etag: "638136d3-138"
Expires: Sun, 27 Nov 2022 22:54:55 GMT
Last-Modified: Fri, 25 Nov 2022 21:42:43 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
embedwistia-a.akamaihd.net/deliveries/4f740040028a707115edc7a3a72e812c6dcca9ff.m3u8
23.36.76.162200 OK 312 B URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/4f740040028a707115edc7a3a72e812c6dcca9ff.m3u8
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
Hash 69f9b9ee27c3e38faf49bfee022622fd
0a49511d3e364aa95cc310bcadc0a3e8ca0006a4
c4a59d18cf664fda0370db3e3bb9634b57bc9d81b64d609fd3f141e308dcdd89
GET /deliveries/4f740040028a707115edc7a3a72e812c6dcca9ff.m3u8 HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/vnd.apple.mpegurl
Content-Length: 312
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 4f740040028a707115edc7a3a72e812c6dcca9ff-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=31042887
Expires: Mon, 20 Nov 2023 15:23:20 GMT
Date: Sat, 26 Nov 2022 08:21:53 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
embedwistia-a.akamaihd.net/deliveries/5349872a65dfa46e46c1a5cba967e289d8a77cec.m3u8
23.36.76.162200 OK 400 B URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/5349872a65dfa46e46c1a5cba967e289d8a77cec.m3u8
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
Hash 22f481fbbb1fe7a7762da656e9ae7c81
77ab815ffc14006ce55c6e81ebe7c27634d86e61
d65f9dcdf3867513fd78fa803aca9c1ca1c7670a4908783324d772c599411c43
GET /deliveries/5349872a65dfa46e46c1a5cba967e289d8a77cec.m3u8 HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/vnd.apple.mpegurl
Content-Length: 400
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 5349872a65dfa46e46c1a5cba967e289d8a77cec-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=31043040
Expires: Mon, 20 Nov 2023 15:25:53 GMT
Date: Sat, 26 Nov 2022 08:21:53 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13154
Expires: Sat, 26 Nov 2022 12:01:07 GMT
Date: Sat, 26 Nov 2022 08:21:53 GMT
Connection: keep-alive
embedwistia-a.akamaihd.net/deliveries/72dd0c18ad237d7e61af9278fd9f2a4988ae550c.m3u8
23.36.76.162200 OK 312 B URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/72dd0c18ad237d7e61af9278fd9f2a4988ae550c.m3u8
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
Hash 4bd97c7ea77269f0d6472f640fafe26f
faa4f3e0edc109f4b63a8e4dcaeaaf8d2ee9fad8
7c5ae074614558cd60ed83dcff3c13a480a0f717516974640ea0e8a23e25ece1
GET /deliveries/72dd0c18ad237d7e61af9278fd9f2a4988ae550c.m3u8 HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/vnd.apple.mpegurl
Content-Length: 312
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 72dd0c18ad237d7e61af9278fd9f2a4988ae550c-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=31042981
Expires: Mon, 20 Nov 2023 15:24:54 GMT
Date: Sat, 26 Nov 2022 08:21:53 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13154
Expires: Sat, 26 Nov 2022 12:01:07 GMT
Date: Sat, 26 Nov 2022 08:21:53 GMT
Connection: keep-alive
embedwistia-a.akamaihd.net/deliveries/4f740040028a707115edc7a3a72e812c6dcca9ff.m3u8/seg-1-v1-a1.ts
23.36.76.162200 OK 238 kB URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/4f740040028a707115edc7a3a72e812c6dcca9ff.m3u8/seg-1-v1-a1.ts
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
File type MPEG transport stream data\012- data
Size 238 kB (238008 bytes)
Hash 3d05a81b26cd1539ef7864cb14b11a01
1c96616a21592231bbc8467c995221d7af013016
c7eadf34450af37f227c29631cfdc9e49e100e12851a6f0b211381b1489e869f
GET /deliveries/4f740040028a707115edc7a3a72e812c6dcca9ff.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: video/MP2T
Content-Length: 238008
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 4f740040028a707115edc7a3a72e812c6dcca9ff-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=31033472
Expires: Mon, 20 Nov 2023 12:46:25 GMT
Date: Sat, 26 Nov 2022 08:21:53 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13154
Expires: Sat, 26 Nov 2022 12:01:07 GMT
Date: Sat, 26 Nov 2022 08:21:53 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5088223f5973e3cd56f03f50a1e84b79
0b6c9b51d10762a4747286ab5b1c2354fa39c622
8159e4f7eec7bea518bb29e3fdb070bab4fb70116205577f7b7d74ad4d0dfbc7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: whO__FB0B2ywDP_p63eQ044RXbT207sX1i87I6nPAFUB85nSYc0Cuw==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:06 GMT
age: 38147
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 02:19:43 GMT
age: 21730
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SRN-oOfa8Z0mQZFYkWAv32XFiXChfGjfwZkfWz-IzHubwrKgzwoTxQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 03:55:38 GMT
age: 15975
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
embedwistia-a.akamaihd.net/deliveries/5349872a65dfa46e46c1a5cba967e289d8a77cec.m3u8/seg-1-v1-a1.ts
23.36.76.162200 OK 190 kB URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/5349872a65dfa46e46c1a5cba967e289d8a77cec.m3u8/seg-1-v1-a1.ts
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
File type MPEG transport stream data\012- data
Size 190 kB (189880 bytes)
Hash 0ad5cb740599e5fd932a1a5fe05924d6
1be63cfb8b47ad7a8bdf7c9a0f7d30b713c7aa1f
55e2bea69a5b5f8828a1180c18a8669f9dbe59eb26a45fa4dec882e9e9da8669
GET /deliveries/5349872a65dfa46e46c1a5cba967e289d8a77cec.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: video/MP2T
Content-Length: 189880
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 5349872a65dfa46e46c1a5cba967e289d8a77cec-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=31042890
Expires: Mon, 20 Nov 2023 15:23:23 GMT
Date: Sat, 26 Nov 2022 08:21:53 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
embedwistia-a.akamaihd.net/deliveries/72dd0c18ad237d7e61af9278fd9f2a4988ae550c.m3u8/seg-1-v1-a1.ts
23.36.76.162200 OK 220 kB URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/72dd0c18ad237d7e61af9278fd9f2a4988ae550c.m3u8/seg-1-v1-a1.ts
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
File type MPEG transport stream data\012- data
Size 220 kB (219960 bytes)
Hash ed1485ccac0c4dd7712bc005b8cd73b3
68e447ece3e7a99b8edde62d32c1b8322f33adeb
40fc133f06f6ff8830a50465fc8aa3b48fbae66d6aa8f06af269b5b7cac2aa20
GET /deliveries/72dd0c18ad237d7e61af9278fd9f2a4988ae550c.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: video/MP2T
Content-Length: 219960
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 72dd0c18ad237d7e61af9278fd9f2a4988ae550c-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=30838961
Expires: Sat, 18 Nov 2023 06:44:34 GMT
Date: Sat, 26 Nov 2022 08:21:53 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qKxrYxVsJWOXAbrn6IpwLycF3rknFLkQeDyKOLq5WyflvTLeUjg_Lg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:18:42 GMT
age: 36191
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7e0c5064718601e80b7bfc931120ff70
741e5e48c4fb170efee9b611be5638d999a09bd2
d0b1537f43277e7f59152e6272d4f3888ab4618fa7fe0e4b24e2f851dbf0f4cd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7025
x-amzn-requestid: 2c9cd3bc-80d4-4578-a0aa-4f1ff7f19d30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVNYGwaIAMFU8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813588-0c66a293144f894f001ae0cf;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: r2feThcq6D5u1ptiBnSuA5ZC00_W8moa4pb6xSxxeIEMbgoPtQdUyQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:51:02 GMT
age: 37851
etag: "741e5e48c4fb170efee9b611be5638d999a09bd2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/assets/theme.bundle.js?ver=1669323996
104.22.27.66200 OK 53 kB URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/assets/theme.bundle.js?ver=1669323996
IP 104.22.27.66:0
Hash ad8107635a2d140ec7c7fc5744d7eb36
8da9bf5aa13a8a6a767454323f5cd95eb97c6a28
fa39da346505e5038bb797d05c89598d71901971816143c31232e953362f62cb
GET /wp-content/themes/jobber-bold/assets/theme.bundle.js?ver=1669323996 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
age: 22678
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=140109
etag: W/"637fdcdc-2234d"
expires: Sun, 26 Nov 2023 02:03:53 GMT
ki-cf-cache-status: HIT
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:06:36 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gU4A%2BrCdatxPNlV61tr%2FIfvCg89lRfb2Zxa306dg4esOc2ydo4Jr9lOg0kyIgoZimH1v%2Bs0Yv2qRnk2FtjumZoBOmrwERKjNxJ%2BahJexcU1fYlv4nq2I69rWSrq6m7M%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,5b4c7d2377c78fdd4dd03f723f7223abecae2a36def0ff49e6a8cacf7e447323
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685cea4b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
fast.wistia.com/embed/medias/pondz2td31.json?callback=wistiajson6
151.101.86.110200 OK 1.4 kB URL HTTP/2 fast.wistia.com/embed/medias/pondz2td31.json?callback=wistiajson6
IP 151.101.86.110:0
File type ASCII text, with very long lines (4507), with no line terminators
Hash 2a10c59b631d295d87bad1cfdc83d6a0
2459ee9633babf6efa6edf5e831342a6120628ae
10ea382b510295fbf62114fdfd37430600bf8461ea36699ecd0e245989908028
GET /embed/medias/pondz2td31.json?callback=wistiajson6 HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, no-cache
content-encoding: br
content-type: text/javascript; charset=utf-8
etag: W/"046a243e3f063798c9f790817987eb47"
p3p: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
x-request-id: 601a54cd9f28b9d3b96e9f3130c22cb9
x-runtime: 0.063557
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 64028
x-served-by: cache-iad-kcgs7200043-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 55, 1
x-timer: S1669450914.849735,VS0,VE6
vary: Accept-Encoding,X-Forwarded-Proto,X-ECMA-Override
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 1426
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=142003240&Ver=2&mid=2d6b7554-cbf5-4486-90d7-ff0c013c4bdc&sid=61e29a006d6311edac5643efe8f3a629&vid=61e2bd106d6311ed9a54c5ceef12ed69&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&p=https%3A%2F%2Fgetjobber.com%2F&r=<=15&evt=pageLoad&ifm=1&sv=1&rn=721306
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=142003240&Ver=2&mid=2d6b7554-cbf5-4486-90d7-ff0c013c4bdc&sid=61e29a006d6311edac5643efe8f3a629&vid=61e2bd106d6311ed9a54c5ceef12ed69&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&p=https%3A%2F%2Fgetjobber.com%2F&r=<=15&evt=pageLoad&ifm=1&sv=1&rn=721306
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=142003240&Ver=2&mid=2d6b7554-cbf5-4486-90d7-ff0c013c4bdc&sid=61e29a006d6311edac5643efe8f3a629&vid=61e2bd106d6311ed9a54c5ceef12ed69&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&p=https%3A%2F%2Fgetjobber.com%2F&r=<=15&evt=pageLoad&ifm=1&sv=1&rn=721306 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=0A97FEA33DE76BF6214CECCB3C126AC8; domain=.bing.com; expires=Thu, 21-Dec-2023 08:21:53 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C84C17B88F984D7485110C888F4118A7 Ref B: OSL30EDGE0206 Ref C: 2022-11-26T08:21:53Z
date: Sat, 26 Nov 2022 08:21:53 GMT
X-Firefox-Spdy: h2
embed-fastly.wistia.com/deliveries/470f1f0c17797f47f8090778e0c2dcd298712cc7.m3u8
151.101.86.133200 OK 220 B URL HTTP/2 embed-fastly.wistia.com/deliveries/470f1f0c17797f47f8090778e0c2dcd298712cc7.m3u8
IP 151.101.86.133:0
Hash cee811acc0a0d57097e869193fe57f6a
8755ddf015ab3dd460473aa04c5c1aa9d77481fe
061f2760f88ad0e0dcb86fb0d80873f975c597729504dd6cb4d8834da59f3c73
GET /deliveries/470f1f0c17797f47f8090778e0c2dcd298712cc7.m3u8 HTTP/1.1
Host: embed-fastly.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/vnd.apple.mpegurl
expires: Wed, 25 Oct 2023 11:31:30 GMT
cache-control: max-age=31536000
access-control-allow-headers: *
access-control-expose-headers: Server,range,Content-Length,Content-Range
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 470f1f0c17797f47f8090778e0c2dcd298712cc7-hls-segment a227918e831bad87448fc210e029b3c9b5b84f05
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 2753423
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kjyo7100122-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 3804, 1
x-timer: S1669450914.954561,VS0,VE1
vary: Accept-Encoding
content-length: 220
X-Firefox-Spdy: h2
100.20.58.101/is
100.20.58.101200 OK 32 B IP 100.20.58.101:0
File type ASCII text, with no line terminators
Hash e07d60abdbd77e4ef0dec21fd358d260
46e6fede9520c00bbba2d66a1cd1cc1fdd504888
e1b8b1dc216bd430a5363cf96b22651ca26d248ba4c63174d5a643a637d23590
Analyzer Verdict Alert quad9 Sinkholed
GET /is HTTP/1.1
Host: 100.20.58.101
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getjobber.com/
Origin: https://getjobber.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sat, 26 Nov 2022 08:21:53 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, x-requested-with, X-Custom-Header
x-application-context: application:prod:8080
content-type: text/plain;charset=utf-8
content-length: 32
x-envoy-upstream-service-time: 2
server: istio-envoy
connection: close
embed-fastly.wistia.com/deliveries/470f1f0c17797f47f8090778e0c2dcd298712cc7.m3u8/seg-1-v1-a1.ts
151.101.86.133200 OK 184 kB URL HTTP/2 embed-fastly.wistia.com/deliveries/470f1f0c17797f47f8090778e0c2dcd298712cc7.m3u8/seg-1-v1-a1.ts
IP 151.101.86.133:0
File type MPEG transport stream data\012- data
Size 184 kB (183864 bytes)
Hash ec1c6c0d2ffc35ec45e84fac40534127
e1013285de3a2bb34b8b3cde3e0436ee1473bd0e
252bdf65f1a4b270e81382562f94b20f3acfce23d5c8bd5abebabc6734dd0ea3
GET /deliveries/470f1f0c17797f47f8090778e0c2dcd298712cc7.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embed-fastly.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: video/MP2T
expires: Thu, 12 Oct 2023 10:33:40 GMT
cache-control: max-age=31536000
access-control-allow-headers: *
access-control-expose-headers: Server,range,Content-Length,Content-Range
last-modified: Mon, 05 Nov 2018 10:11:00 GMT
edge-cache-tag: 470f1f0c17797f47f8090778e0c2dcd298712cc7-hls-segment a227918e831bad87448fc210e029b3c9b5b84f05
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:53 GMT
age: 3880093
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kcgs7200153-IAD, cache-bma1683-BMA
x-cache: HIT, HIT
x-cache-hits: 832, 1
x-timer: S1669450914.981147,VS0,VE1
content-length: 183864
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/config.js?sdkid=CCFL7KBC77UE82V3NG5G&hostname=getjobber.com
23.36.79.17200 OK 20 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=CCFL7KBC77UE82V3NG5G&hostname=getjobber.com
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 868558e031dc708ad39a761b815fedf8
fe36f1412525c22fd66e832350b575c37cbd0efd
e1b7e6c63a53cd648ed659af06d18ffb7f2d5942e27879ec6f050abac1f7833d
GET /i18n/pixel/config.js?sdkid=CCFL7KBC77UE82V3NG5G&hostname=getjobber.com HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2I4przXJSuH40tSLxoZDHC2XoLA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211260821535298F1AA9A3554A42684
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2f268e8c8f568866fc1f959f4b26f4f3867fb473c82dc09fcb48cfc6c98300770dae4f635fa7becd59a9d1a90629cc2b99bb98e84e907494beb97c70194764ba17
content-encoding: gzip
x-origin-response-time: 7,104.96.220.23
x-akamai-request-id: 20b49d1f.81589710
expires: Sat, 26 Nov 2022 08:21:53 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:53 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
set-cookie: _ttp=2I4przXJSuH40tSLxoZDHC2XoLA; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a104-96-220-23.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=7, inner; dur=4
x-parent-response-time: 106,23.36.79.13
X-Firefox-Spdy: h2
bat.bing.com/p/action/142003240.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/142003240.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/142003240.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=3627BD64E4946BE31DA9AF0CE5616A8D; domain=.bing.com; expires=Thu, 21-Dec-2023 08:21:53 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: CACDE7F70D4F42F2B3A6E4909B40069B Ref B: OSL30EDGE0206 Ref C: 2022-11-26T08:21:53Z
date: Sat, 26 Nov 2022 08:21:53 GMT
X-Firefox-Spdy: h2
embedwistia-a.akamaihd.net/deliveries/8d76fad64c9ff475f0a580d9cd7fb3074a03fa43.m3u8
23.36.76.162200 OK 312 B URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/8d76fad64c9ff475f0a580d9cd7fb3074a03fa43.m3u8
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
Hash fbf6eb470d6766ffe1610251e58645a9
9664dd8468ebc5c091cccf906b25e97331469f51
f933017d1beff917b775f057900282cdfac29470d2cc0bac338ed3ec0840a133
GET /deliveries/8d76fad64c9ff475f0a580d9cd7fb3074a03fa43.m3u8 HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/vnd.apple.mpegurl
Content-Length: 312
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 8d76fad64c9ff475f0a580d9cd7fb3074a03fa43-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=31094857
Expires: Tue, 21 Nov 2023 05:49:31 GMT
Date: Sat, 26 Nov 2022 08:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
embedwistia-a.akamaihd.net/deliveries/245a73ca2b2a95d1e6ab34720e5d0adda7efe518.m3u8
23.36.76.162200 OK 400 B URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/245a73ca2b2a95d1e6ab34720e5d0adda7efe518.m3u8
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
Hash 978500158ba7376f5b1f2432e9ca47f0
8ffe6d6693a2620f3e2ab2f394aeb42a317eb9dd
e4b808d106717598985730dbd395697451b38318374c0ee8fe690f8eddd1f5d6
GET /deliveries/245a73ca2b2a95d1e6ab34720e5d0adda7efe518.m3u8 HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/vnd.apple.mpegurl
Content-Length: 400
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 245a73ca2b2a95d1e6ab34720e5d0adda7efe518-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=31158969
Expires: Tue, 21 Nov 2023 23:38:03 GMT
Date: Sat, 26 Nov 2022 08:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 758
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2I4przXJSuH40tSLxoZDHC2XoLA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221126082153FDC4784193F995B2F1C2
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601c5f6a04a777121cde7d9af65489455e85b28326866efd84ae04897ed66abbc6e5b5e1b097a0d5766ce21ca9923667d8db61c1dea2cf845a642508f93e2b0dce
expires: Sat, 26 Nov 2022 08:21:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:54 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=23, cdn-cache; desc=MISS, edge; dur=4, origin; dur=119
x-origin-response-time: 119,23.36.79.13
x-akamai-request-id: 815897ee
X-Firefox-Spdy: h2
cdn.amplitude.com/libs/amplitude-8.18.4-min.gz.js
54.230.245.120200 OK 28 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-8.18.4-min.gz.js
IP 54.230.245.120:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d76b4e698be937f34bc26e49a5afec96
176cf9dabfb6d3661dc4116092fc793c59408237
ac67ce33d5e180e4e0de7730638764be06ecc17b651eee9b43a43abb48aa9b7e
GET /libs/amplitude-8.18.4-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 27625
date: Sat, 03 Sep 2022 00:56:39 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Tue, 31 May 2022 21:20:34 GMT
etag: "d76b4e698be937f34bc26e49a5afec96"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: G4.ApCZE8wECxdKs43_nSPjMhlx_Lj0f
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TZ7jtjs2Eqsiu0IaUDrZ6QGzcjz4NLzwXvNGcdvzGRbfp-iw4liPWQ==
age: 7284316
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 761
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2I4przXJSuH40tSLxoZDHC2XoLA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221126082153A8E4396216F88996B79A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b58098d7a7e6b1920355da96b1df82f9bd1e09f8c75f12a00b962ba3a0abe9e60ca20919b4d24cced9d214de4c3ab15ad50ad3974b61e826a108e8a81d2454ba86
x-origin-response-time: 17,23.218.220.137
x-akamai-request-id: ec9b6f0a.815897f7
expires: Sat, 26 Nov 2022 08:21:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:54 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=17, inner; dur=15
x-parent-response-time: 116,23.36.79.13
X-Firefox-Spdy: h2
embedwistia-a.akamaihd.net/deliveries/2a18c716e483c38a9e982d74bee6769844db5368.m3u8
23.36.76.162200 OK 312 B URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/2a18c716e483c38a9e982d74bee6769844db5368.m3u8
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
Hash d0fc82e81643354b5e047a693cd0d5fe
2ab48345894b7c9c3728787eebf5d20f35a52bd4
5f98cb5e5a96979a080e7e4205f82f209be32d47f821caf4f83f0ad1555e2471
GET /deliveries/2a18c716e483c38a9e982d74bee6769844db5368.m3u8 HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/vnd.apple.mpegurl
Content-Length: 312
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 2a18c716e483c38a9e982d74bee6769844db5368-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=31094084
Expires: Tue, 21 Nov 2023 05:36:38 GMT
Date: Sat, 26 Nov 2022 08:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
embedwistia-a.akamaihd.net/deliveries/5f4b1dda4ae2d8c8e45f311b2c895327c854c36c.m3u8
23.36.76.162200 OK 400 B URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/5f4b1dda4ae2d8c8e45f311b2c895327c854c36c.m3u8
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
Hash 7a12800e41b995219f23dd0a74e9a288
a7a529764a206f98baeeef085777d917a6302b3a
cb6b67b5e0f4a8b45381631bd2cb0b817fc65939cbceb0f4ea446c5f23f75b6d
GET /deliveries/5f4b1dda4ae2d8c8e45f311b2c895327c854c36c.m3u8 HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/vnd.apple.mpegurl
Content-Length: 400
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 5f4b1dda4ae2d8c8e45f311b2c895327c854c36c-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=30872903
Expires: Sat, 18 Nov 2023 16:10:17 GMT
Date: Sat, 26 Nov 2022 08:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
analytics.tiktok.com/api/v2/pixel
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 779
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2I4przXJSuH40tSLxoZDHC2XoLA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202211260821548E8C621CFF6992A9F80A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf600abfded03f52e527228925ae696ca9b534f281a7694e1dbd136fadd86c50a0e56c9aa195c55693a0b8b93dc354c529f4e086f1dd9dd11c0513261b79718ab06a0790a95b928e2ed87cac4c351425d95b
x-origin-response-time: 17,23.218.220.145
x-akamai-request-id: 7c667c81.815897fa
expires: Sat, 26 Nov 2022 08:21:54 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:54 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-cache-remote: TCP_MISS from a23-218-220-145.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=17, inner; dur=14
x-parent-response-time: 116,23.36.79.13
X-Firefox-Spdy: h2
d3ey4dbjkt2f6s.cloudfront.net/assets/shared/analytics/index-21428b86276e1e5154108e44b955a22cbae74811711dd91cae92493fffecaa9d.js
54.230.111.113200 OK 2.5 kB URL HTTP/1.1 d3ey4dbjkt2f6s.cloudfront.net/assets/shared/analytics/index-21428b86276e1e5154108e44b955a22cbae74811711dd91cae92493fffecaa9d.js
IP 54.230.111.113:0
File type ASCII text, with very long lines (6831)
Hash 970d5bab9d66f5f8924e5ac56ef5c165
e3f3eaaa36cacd95df4b9e1af7a507a1ddfca8a6
fe6442883c9c9d3cb299f1747895d5d4e0ad7c2370dfef5fbcdd2c2701716253
GET /assets/shared/analytics/index-21428b86276e1e5154108e44b955a22cbae74811711dd91cae92493fffecaa9d.js HTTP/1.1
Host: d3ey4dbjkt2f6s.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript; charset=utf-8
Content-Length: 2494
Connection: keep-alive
Date: Sat, 05 Nov 2022 04:58:07 GMT
Last-Modified: Thu, 25 Aug 2022 13:15:24 GMT
Cache-Control: public, max-age=2592000
Content-Encoding: gzip
strict-transport-security: max-age=2592000; includeSubDomains
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
content-security-policy: default-src *; base-uri 'self'; child-src blob: *; connect-src *; font-src data: *; form-action *; frame-ancestors 'self'; frame-src *; img-src data: *; media-src blob: *; script-src 'unsafe-inline' 'unsafe-eval' *; style-src 'unsafe-inline' *; worker-src blob:
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7653033009de9043-FRA
Vary: Accept-Encoding,Origin
X-Cache: Hit from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: N4n5GMkNUM-NzH4KjF-_y_0Iy60AWjk3lMe2xOJqHsa5I7ew_VRozg==
Age: 1826627
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
embedwistia-a.akamaihd.net/deliveries/245a73ca2b2a95d1e6ab34720e5d0adda7efe518.m3u8/seg-1-v1-a1.ts
23.36.76.162200 OK 244 kB URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/245a73ca2b2a95d1e6ab34720e5d0adda7efe518.m3u8/seg-1-v1-a1.ts
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
File type MPEG transport stream data\012- data
Size 244 kB (244024 bytes)
Hash dcb48dc0144594a46cad8b52221bf1ab
d3e4c2c8af4302a9d1e2410d665831d2588d4993
53e9745535861ffb830c2586e84d5718f860e4dcf091c0f6adeb201ea553b179
GET /deliveries/245a73ca2b2a95d1e6ab34720e5d0adda7efe518.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: video/MP2T
Content-Length: 244024
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 245a73ca2b2a95d1e6ab34720e5d0adda7efe518-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=30880216
Expires: Sat, 18 Nov 2023 18:12:10 GMT
Date: Sat, 26 Nov 2022 08:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 407ca8387c360d434a53812c03688310
90e74fa4928adcf8ae410f2eea7956b6ae7f687b
5690f667c20ba6c6daf71668a7c02c6d50383b585521e6f3e7a0ddcf895358d3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5078
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:54 GMT
Last-Modified: Sat, 26 Nov 2022 06:57:16 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
embedwistia-a.akamaihd.net/deliveries/8d76fad64c9ff475f0a580d9cd7fb3074a03fa43.m3u8/seg-1-v1-a1.ts
23.36.76.162200 OK 187 kB URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/8d76fad64c9ff475f0a580d9cd7fb3074a03fa43.m3u8/seg-1-v1-a1.ts
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
File type MPEG transport stream data\012- data
Size 187 kB (186872 bytes)
Hash 9c3ff47710102bef1722086b16eea046
356022155e36127644c5596faf9f2971852b8177
ef2ce33665a0c86e9bf2b81a00a3435ce29153edda2644749ad3b0ece733e9a2
GET /deliveries/8d76fad64c9ff475f0a580d9cd7fb3074a03fa43.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: video/MP2T
Content-Length: 186872
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 8d76fad64c9ff475f0a580d9cd7fb3074a03fa43-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=31513292
Expires: Sun, 26 Nov 2023 02:03:26 GMT
Date: Sat, 26 Nov 2022 08:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
googleads.g.doubleclick.net/pagead/viewthroughconversion/1021945940/?random=1669450911721&cv=11&fst=1669450911721&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=hCN9CKyV-QcQ1NCm5wM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2F&tiba=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&auid=568639239.1669450912&rfmt=3&fmt=4
172.217.21.162200 OK 962 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1021945940/?random=1669450911721&cv=11&fst=1669450911721&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=hCN9CKyV-QcQ1NCm5wM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2F&tiba=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&auid=568639239.1669450912&rfmt=3&fmt=4
IP 172.217.21.162:0
File type ASCII text, with very long lines (2034), with no line terminators
Hash 28931624b7ca48f19a4ed4d0c09ee21c
16cd6b9ac19b8fa5cebd777cad938eff38c7413b
c237754dbb3ef7081cd7a228a41e05eaa155ae89bce0bbd470356c647da0bcc5
GET /pagead/viewthroughconversion/1021945940/?random=1669450911721&cv=11&fst=1669450911721&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=hCN9CKyV-QcQ1NCm5wM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2F&tiba=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&auid=568639239.1669450912&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 08:21:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 962
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 08:36:54 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 26 Nov 2022 06:41:08 GMT
expires: Sat, 26 Nov 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 6046
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/933084093/?random=1669450911724&cv=11&fst=1669450911724&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2F&tiba=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&auid=568639239.1669450912&rfmt=3&fmt=4
172.217.21.162200 OK 910 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/933084093/?random=1669450911724&cv=11&fst=1669450911724&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2F&tiba=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&auid=568639239.1669450912&rfmt=3&fmt=4
IP 172.217.21.162:0
File type ASCII text, with very long lines (1943), with no line terminators
Hash 2222620a3cea157f37b7b50094abb281
fdec1e46cf2c4c93876e38262deee1ad5db0aaf6
17c5963e8bbd562c74184b6ffd4d8724bd724801c24bc715e9622ba32675ee19
GET /pagead/viewthroughconversion/933084093/?random=1669450911724&cv=11&fst=1669450911724&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2F&tiba=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&auid=568639239.1669450912&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 08:21:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 910
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 08:36:54 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
142.250.74.163200 OK 163 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (730)
Size 163 kB (162976 bytes)
Hash 79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 08:12:22 GMT
expires: Sat, 25 Nov 2023 08:12:22 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 86972
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: TGZrLOQubBczmbEQuNKK15T25Jf7ZoiFdq1NAEo71iNhICuvuf7FTAjYSz3784FClouunUIEs50H/POtdKpDLw==
content-length: 27340
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 08:21:54 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LQXS6VVFN0&cid=776195483.1669450912>m=2oeb90&aip=1&z=87328777
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LQXS6VVFN0&cid=776195483.1669450912>m=2oeb90&aip=1&z=87328777
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LQXS6VVFN0&cid=776195483.1669450912>m=2oeb90&aip=1&z=87328777 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 08:21:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
embedwistia-a.akamaihd.net/deliveries/5f4b1dda4ae2d8c8e45f311b2c895327c854c36c.m3u8/seg-1-v1-a1.ts
23.36.76.162200 OK 163 kB URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/5f4b1dda4ae2d8c8e45f311b2c895327c854c36c.m3u8/seg-1-v1-a1.ts
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
File type MPEG transport stream data\012- data
Size 163 kB (162808 bytes)
Hash a19d67cbbeb3524c4b702bbf88227aaa
7a14057e56691d06b1cd45d15ea037627da90421
359b5f87204e04d0adb6b9104e7af36cad7aab49d3b0bdfb249093088d565d05
GET /deliveries/5f4b1dda4ae2d8c8e45f311b2c895327c854c36c.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: video/MP2T
Content-Length: 162808
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 5f4b1dda4ae2d8c8e45f311b2c895327c854c36c-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=31191044
Expires: Wed, 22 Nov 2023 08:32:38 GMT
Date: Sat, 26 Nov 2022 08:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
ag.gbc.criteo.com/newidsd
185.235.84.18200 OK 511 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.18:0
Hash 0a9c53a8bc81592df62cd5099c0bad46
cd27b9c87f6bff6e373126f425b669bb02a60770
b54de47937650d31820ddba60856ad278d6f650a4a2304d1afc84f384dd253bb
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:53 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 65778
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
embedwistia-a.akamaihd.net/deliveries/2a18c716e483c38a9e982d74bee6769844db5368.m3u8/seg-1-v1-a1.ts
23.36.76.162200 OK 181 kB URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/2a18c716e483c38a9e982d74bee6769844db5368.m3u8/seg-1-v1-a1.ts
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
File type MPEG transport stream data\012- data
Size 181 kB (180856 bytes)
Hash 9e13d8ee2da8c5540b0d857f10af2778
7ccc9fefa87924ef1f7f763a67427d5a2612e578
e511fd77f19ac25c67c3d45f7cd4a1fd4c7c2170fc464b9759c95d6fa67b0bc8
GET /deliveries/2a18c716e483c38a9e982d74bee6769844db5368.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: video/MP2T
Content-Length: 180856
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 2a18c716e483c38a9e982d74bee6769844db5368-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=31277300
Expires: Thu, 23 Nov 2023 08:30:14 GMT
Date: Sat, 26 Nov 2022 08:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
secure.getjobber.com/website_details
104.22.27.66200 OK 137 B URL HTTP/2 secure.getjobber.com/website_details
IP 104.22.27.66:0
Hash 1df4912ac0a4e194bd35992e533fcc25
ca47956537b3b0b6f4a8c8e87aea8c98e90ab9c0
f6e39c687e91d05c4481d661ed9999341fa3da7fdb647d2b87599f4808cf3125
GET /website_details HTTP/1.1
Host: secure.getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0yNlQwODoyMTo1MS4yOTJaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vIiwidXRtX3BhcmFtcyI6InV0bWNjbj1kaXJlY3QifQ==; _gcl_au=1.1.568639239.1669450912; _ga_LQXS6VVFN0=GS1.1.1669450911.1.0.1669450911.60.0.0; _ga=GA1.1.776195483.1669450912; _cq_duid=1.1669450912.5Sgo0iEYLtTn6D1N; _cq_suid=1.1669450912.GI4nPAgRd0loQIA9; _tt_enable_cookie=1; _ttp=5b6fdd30-1a67-48c6-a6b2-34550d5fd9c4; _uetsid=61e29a006d6311edac5643efe8f3a629; _uetvid=61e2bd106d6311ed9a54c5ceef12ed69; amp_06c82b=-EqfcXPCXYNXyrTYkUCE9Z...1gipgelhb.1gipgelhb.0.0.0
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:54 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://getjobber.com
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
vary: Accept-Encoding, Origin
content-encoding: gzip
etag: W/"b65839e1102cc9b330b541012328be80"
x-request-id: 9ce63af4-1cd3-4742-9c78-05929dffb66d
x-runtime: 0.014640
strict-transport-security: max-age=2592000; includeSubDomains
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
content-security-policy: default-src *; base-uri 'self'; child-src blob: *; connect-src *; font-src data: *; form-action *; frame-ancestors 'self'; frame-src *; img-src data: *; media-src blob: *; script-src 'unsafe-inline' 'unsafe-eval' *; style-src 'unsafe-inline' *; worker-src blob:
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77013695bef9b505-OSL
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/identify.js
23.36.79.17200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/identify.js
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash e709f0ea6dca792b6be05d66077140dd
acaad29fb3ef42f5d343b64785bd233df9c75e35
4b7656fdd09494b34995ed82c0341911349834e5138c3afee403d91c586fa538
GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2I4przXJSuH40tSLxoZDHC2XoLA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211260821534ABD08654B273AAE4948
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6091d2ba70cbdaa374c438cfb528c66f2fa5b7654c13ef2d15e9edf6711f51f62c4403546d9690aafff3d88296afd3a2f47480e75d72b03e9243af08652d93f493ec58c42012551f5ba1f332f945d8b08f
content-encoding: gzip
x-origin-response-time: 6,104.96.220.21
x-akamai-request-id: 298c068b.815896f1
expires: Sat, 26 Nov 2022 08:21:53 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:53 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a104-96-220-21.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=101, origin; dur=6, inner; dur=4
x-parent-response-time: 107,23.36.79.13
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=5037612&Ver=2&mid=cee19235-effd-4358-a6df-41233eaf3a34&sid=61e29a006d6311edac5643efe8f3a629&vid=61e2bd106d6311ed9a54c5ceef12ed69&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&p=https%3A%2F%2Fgetjobber.com%2F&r=<=1339&evt=pageLoad&sv=1&rn=795438
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=5037612&Ver=2&mid=cee19235-effd-4358-a6df-41233eaf3a34&sid=61e29a006d6311edac5643efe8f3a629&vid=61e2bd106d6311ed9a54c5ceef12ed69&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&p=https%3A%2F%2Fgetjobber.com%2F&r=<=1339&evt=pageLoad&sv=1&rn=795438
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=5037612&Ver=2&mid=cee19235-effd-4358-a6df-41233eaf3a34&sid=61e29a006d6311edac5643efe8f3a629&vid=61e2bd106d6311ed9a54c5ceef12ed69&vids=0&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&tl=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&p=https%3A%2F%2Fgetjobber.com%2F&r=<=1339&evt=pageLoad&sv=1&rn=795438 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=296322683E32669D3E3630003FC767FB; domain=.bing.com; expires=Thu, 21-Dec-2023 08:21:54 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 63F0B453440147DEB870A6EC4FC977A6 Ref B: OSL30EDGE0206 Ref C: 2022-11-26T08:21:54Z
date: Sat, 26 Nov 2022 08:21:53 GMT
X-Firefox-Spdy: h2
embedwistia-a.akamaihd.net/deliveries/8d6f4980320988befa8fc436282cf2a1a4811171.m3u8
23.36.76.162200 OK 400 B URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/8d6f4980320988befa8fc436282cf2a1a4811171.m3u8
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
Hash 7a557445ee938888fd11efaf8c123450
408fa8c77e5b813d31d7432d38edb813746cfd37
fca1ec8117f9d69d62a7e6a0bfe241cba7e9b34e0d30c873044df880dc645766
GET /deliveries/8d6f4980320988befa8fc436282cf2a1a4811171.m3u8 HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/vnd.apple.mpegurl
Content-Length: 400
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 8d6f4980320988befa8fc436282cf2a1a4811171-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=31033689
Expires: Mon, 20 Nov 2023 12:50:03 GMT
Date: Sat, 26 Nov 2022 08:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
bat.bing.com/p/action/5037612.js
13.107.21.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/5037612.js
IP 13.107.21.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/5037612.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=1E517A44AF2767A803E1682CAED266F8; domain=.bing.com; expires=Thu, 21-Dec-2023 08:21:54 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4DBB81AA6561492AA310D65B32957F2F Ref B: OSL30EDGE0206 Ref C: 2022-11-26T08:21:54Z
date: Sat, 26 Nov 2022 08:21:53 GMT
X-Firefox-Spdy: h2
embedwistia-a.akamaihd.net/deliveries/8d6f4980320988befa8fc436282cf2a1a4811171.m3u8/seg-1-v1-a1.ts
23.36.76.162200 OK 184 kB URL HTTP/1.1 embedwistia-a.akamaihd.net/deliveries/8d6f4980320988befa8fc436282cf2a1a4811171.m3u8/seg-1-v1-a1.ts
IP 23.36.76.162:0
ASN #20940 Akamai International B.V.
File type MPEG transport stream data\012- data
Size 184 kB (183864 bytes)
Hash c834604fdb7b5a22a88bb9db970e2663
16a43bdcd1c6c573a00a1f1f3345ab948b2273ca
bbd1a95c57304205b9cf12c06f7d7991f7f34138b27542d07ed48ca2b3619d0b
GET /deliveries/8d6f4980320988befa8fc436282cf2a1a4811171.m3u8/seg-1-v1-a1.ts HTTP/1.1
Host: embedwistia-a.akamaihd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: video/MP2T
Content-Length: 183864
Access-Control-Allow-Headers: *
Access-Control-Expose-Headers: Server,range,Content-Length,Content-Range
Last-Modified: Mon, 05 Nov 2018 10:11:00 GMT
surrogate-key: 8d6f4980320988befa8fc436282cf2a1a4811171-hls-segment ab51b76fc394d237632caa3a1319ee3b724983dc
Accept-Ranges: bytes
Cache-Control: max-age=31471380
Expires: Sat, 25 Nov 2023 14:24:54 GMT
Date: Sat, 26 Nov 2022 08:21:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Request-Method: *
Access-Control-Allow-Origin: *
der.joshuarms.com/mon
52.45.196.192200 OK 0 B IP 52.45.196.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
POST /mon HTTP/1.1
Host: der.joshuarms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1336
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: cg_uuid=f88138868b400694f1db3ebd92c3be2c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://getjobber.com
content-type: application/json
date: Sat, 26 Nov 2022 08:21:54 GMT
content-length: 0
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=953815214693708&ev=PageView&dl=https%3A%2F%2Fgetjobber.com%2F&rl=&if=false&ts=1669450913818&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669450913816.489769961&it=1669450913442&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=953815214693708&ev=PageView&dl=https%3A%2F%2Fgetjobber.com%2F&rl=&if=false&ts=1669450913818&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669450913816.489769961&it=1669450913442&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=953815214693708&ev=PageView&dl=https%3A%2F%2Fgetjobber.com%2F&rl=&if=false&ts=1669450913818&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669450913816.489769961&it=1669450913442&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 26 Nov 2022 08:21:54 GMT
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=953815214693708&ev=CHEQ&dl=https%3A%2F%2Fgetjobber.com%2F&rl=&if=false&ts=1669450913822&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=30&fbp=fb.1.1669450913816.489769961&it=1669450913442&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=953815214693708&ev=CHEQ&dl=https%3A%2F%2Fgetjobber.com%2F&rl=&if=false&ts=1669450913822&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=30&fbp=fb.1.1669450913816.489769961&it=1669450913442&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=953815214693708&ev=CHEQ&dl=https%3A%2F%2Fgetjobber.com%2F&rl=&if=false&ts=1669450913822&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=30&fbp=fb.1.1669450913816.489769961&it=1669450913442&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 26 Nov 2022 08:21:54 GMT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 12:31:58 GMT
expires: Sun, 19 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 589796
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:46:16 GMT
expires: Fri, 24 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 124538
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fast.wistia.com/assets/external/playPauseLoadingControl.js
151.101.86.110200 OK 16 kB URL HTTP/2 fast.wistia.com/assets/external/playPauseLoadingControl.js
IP 151.101.86.110:0
File type ASCII text, with very long lines (60125), with no line terminators
Hash 7264d7b49eb6dc6eef062a9511cfd32e
d6724f77d675d740c895a283e4b8e3dbdd1719d5
6cca15bd7bbece1644b8b31db564da9659fa85f73ea22b814cb831cf0113a4e3
GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
content-type: application/javascript
etag: "637ce334-3e59"
last-modified: Tue, 22 Nov 2022 14:56:52 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:54 GMT
age: 2741
x-served-by: cache-iad-kcgs7200113-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 17, 71
x-timer: S1669450915.980576,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 15961
X-Firefox-Spdy: h2
getjobber.com/cdn-cgi/rum?
104.22.27.66204 No Content 0 B URL HTTP/2 getjobber.com/cdn-cgi/rum?
IP 104.22.27.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 47223
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0yNlQwODoyMTo1MS4yOTJaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vIiwidXRtX3BhcmFtcyI6InV0bWNjbj1kaXJlY3QifQ==; _gcl_au=1.1.568639239.1669450912; _ga_LQXS6VVFN0=GS1.1.1669450911.1.0.1669450911.60.0.0; _ga=GA1.2.776195483.1669450912; _cq_duid=1.1669450912.5Sgo0iEYLtTn6D1N; _cq_suid=1.1669450912.GI4nPAgRd0loQIA9; _tt_enable_cookie=1; _ttp=5b6fdd30-1a67-48c6-a6b2-34550d5fd9c4; _tq_id.TV-7281904572-1.6f05=86ff4cc148d4fe78.1669450912.0.1669450912..; _uetsid=61e29a006d6311edac5643efe8f3a629; _uetvid=61e2bd106d6311ed9a54c5ceef12ed69; amp_06c82b=-EqfcXPCXYNXyrTYkUCE9Z...1gipgelhb.1gipgemce.1.0.1; amplitude_session_id=1669450913323; _gid=GA1.2.1232565711.1669450913; _gat=1; _fbp=fb.1.1669450913816.489769961
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 08:21:55 GMT
access-control-allow-origin: https://getjobber.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7701369b9d3cb505-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
der.joshuarms.com/mon
52.45.196.192200 OK 0 B IP 52.45.196.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
POST /mon HTTP/1.1
Host: der.joshuarms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1371
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: cg_uuid=f88138868b400694f1db3ebd92c3be2c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://getjobber.com
content-type: application/json
date: Sat, 26 Nov 2022 08:21:55 GMT
content-length: 0
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 600 B IP 178.250.0.157:0
Hash 1653a1ac9c505339931a4717115e764d
ae5b51c8a96b0c3324b764149f90b17f8f65f453
6cb83c90c003c686213ce89c6d1bded656f50c336513f5fd6e5c4816c3a00137
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=VMpSU180M0RITmhlJTJCZkMwOUJGQlhaMUN2czRmV3BGUWt3b1F2VmtITGl2NFBLYnpEc2IyVHVYRWxGa1R1M3l5eWw5Vkk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:54 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=rMuy4V80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRmV3BGUWt3b1F2VmtITGl2NFBLYnpDZ1NWZzdXNkQlMkJWMGl0TlhrTHhLSQ; expires=Thu, 21 Dec 2023 08:21:55 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 375443
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 9b028c7ee0bd9af8093c8b5ede6650d3
cb51fd5f79c6fc870dc82ac4697762a964b493b4
7dfcf8d31a9d77b9be471aafcbf696d4345e2a01e9ab63fbbb92f236e16737f4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=90905
Date: Sat, 26 Nov 2022 08:21:55 GMT
Etag: "63807fff-1d7"
Expires: Sun, 27 Nov 2022 09:37:00 GMT
Last-Modified: Fri, 25 Nov 2022 08:42:39 GMT
Server: ECS (dcb/7EED)
X-Cache: Miss from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9tWYD8aYkvy5P61i2k5GVG1RZs0iMs_Be6UAITdtp62ev6p10SZkhg==
Age: 3261
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 9b028c7ee0bd9af8093c8b5ede6650d3
cb51fd5f79c6fc870dc82ac4697762a964b493b4
7dfcf8d31a9d77b9be471aafcbf696d4345e2a01e9ab63fbbb92f236e16737f4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=88984
Date: Sat, 26 Nov 2022 08:21:55 GMT
Etag: "63807fff-1d7"
Expires: Sun, 27 Nov 2022 09:04:59 GMT
Last-Modified: Fri, 25 Nov 2022 08:42:39 GMT
Server: ECS (dcb/7F5E)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 438rAAmFDAuzDI1SS-o08LmQzAvqp-yr63B563DRzmSqZNUlDxNmCg==
Age: 1340
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 9b028c7ee0bd9af8093c8b5ede6650d3
cb51fd5f79c6fc870dc82ac4697762a964b493b4
7dfcf8d31a9d77b9be471aafcbf696d4345e2a01e9ab63fbbb92f236e16737f4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=92936
Date: Sat, 26 Nov 2022 08:21:55 GMT
Etag: "63807fff-1d7"
Expires: Sun, 27 Nov 2022 10:10:51 GMT
Last-Modified: Fri, 25 Nov 2022 08:42:39 GMT
Server: ECS (dcb/7EEE)
X-Cache: Miss from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: IPB5nKl1EAKFpAg07UE41rLMz9VrT_dR2Lq7Vbcsi2fBuCqR4Zy1yw==
Age: 5292
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 9b028c7ee0bd9af8093c8b5ede6650d3
cb51fd5f79c6fc870dc82ac4697762a964b493b4
7dfcf8d31a9d77b9be471aafcbf696d4345e2a01e9ab63fbbb92f236e16737f4
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=88504
Date: Sat, 26 Nov 2022 08:21:55 GMT
Etag: "63807fff-1d7"
Expires: Sun, 27 Nov 2022 08:56:59 GMT
Last-Modified: Fri, 25 Nov 2022 08:42:39 GMT
Server: ECS (dcb/7F39)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DI6yC-c534zDPGQ3V_ebTEzI5L4XsPfd9tr76DukfMh24m5UzIY5-g==
Age: 860
sslwidget.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd%26ui_traffic%3D1&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=gcgqPl9KNHNmNmRISFBzdHlLWk1DSU1zdmJ0Q1FtYXh6RklFbUFqRlgzMHZZWFdBeWNJRmozNFRtTE9TUTJmdFVxOGxXeE9OZzFGZDB5UWhCNW1EaGpUJTJGT3pGSmNKa20yb0xTNTRBZzZBblNpVmp0eUE1b0p2azZBNm1VJTJCNlZOY2ZMQk1Jc1ZwR09FMm5SQ0Q0Q0k2SGFMMk5BJTNEJTNE&tld=getjobber.com&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=98507
178.250.2.151302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd%26ui_traffic%3D1&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=gcgqPl9KNHNmNmRISFBzdHlLWk1DSU1zdmJ0Q1FtYXh6RklFbUFqRlgzMHZZWFdBeWNJRmozNFRtTE9TUTJmdFVxOGxXeE9OZzFGZDB5UWhCNW1EaGpUJTJGT3pGSmNKa20yb0xTNTRBZzZBblNpVmp0eUE1b0p2azZBNm1VJTJCNlZOY2ZMQk1Jc1ZwR09FMm5SQ0Q0Q0k2SGFMMk5BJTNEJTNE&tld=getjobber.com&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=98507
IP 178.250.2.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd%26ui_traffic%3D1&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=gcgqPl9KNHNmNmRISFBzdHlLWk1DSU1zdmJ0Q1FtYXh6RklFbUFqRlgzMHZZWFdBeWNJRmozNFRtTE9TUTJmdFVxOGxXeE9OZzFGZDB5UWhCNW1EaGpUJTJGT3pGSmNKa20yb0xTNTRBZzZBblNpVmp0eUE1b0p2azZBNm1VJTJCNlZOY2ZMQk1Jc1ZwR09FMm5SQ0Q0Q0k2SGFMMk5BJTNEJTNE&tld=getjobber.com&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=98507 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:55 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd%26ui_traffic%3D1&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=gcgqPl9KNHNmNmRISFBzdHlLWk1DSU1zdmJ0Q1FtYXh6RklFbUFqRlgzMHZZWFdBeWNJRmozNFRtTE9TUTJmdFVxOGxXeE9OZzFGZDB5UWhCNW1EaGpUJTJGT3pGSmNKa20yb0xTNTRBZzZBblNpVmp0eUE1b0p2azZBNm1VJTJCNlZOY2ZMQk1Jc1ZwR09FMm5SQ0Q0Q0k2SGFMMk5BJTNEJTNE&tld=getjobber.com&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=98507
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 13527217
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash f7118ea86b34fd606ed7b05e292c9104
d4a5885bf35e31862cab93355595996ab4bbf7d5
2c2cd591d9bb26f7b192a1c3cafb15f98a78d91c7af4972b28904f04916c01fb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2620
Cache-Control: max-age=155464
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:55 GMT
Etag: "63817eaf-117"
Expires: Mon, 28 Nov 2022 03:32:59 GMT
Last-Modified: Sat, 26 Nov 2022 02:49:19 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
distillery.wistia.com/x
3.208.35.2204 No Content 0 B IP 3.208.35.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1420
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 08:21:55 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 83cd94ec0579ea37bc7a36e4eadbb091
ddacc7864a773c7440f6235c7aee70ded6579ce1
8f9e3d4fbc26686175f4c560ed23aa3d5a6a14ed01139f6f7cdaf9d542307b3b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5096
Cache-Control: max-age=171618
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:55 GMT
Etag: "6381b41d-117"
Expires: Mon, 28 Nov 2022 08:02:13 GMT
Last-Modified: Sat, 26 Nov 2022 06:37:17 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
getjobber.com/wp-content/plugins/jobberblocks/blocks/video-timeline/video-timeline.frontend.bundle.js?ver=1669324052
104.22.27.66200 OK 9.4 kB URL HTTP/2 getjobber.com/wp-content/plugins/jobberblocks/blocks/video-timeline/video-timeline.frontend.bundle.js?ver=1669324052
IP 104.22.27.66:0
File type Unicode text, UTF-8 text, with very long lines (27555), with no line terminators
Hash 129a4cb0949004cbd669defba6482179
1b09b99633eb8df6e1560d24b0cd39a5318fa9c3
8e84c94bc43ff98131497e0c32f878d0699c681d9107dffe02b89a6a6124f68d
GET /wp-content/plugins/jobberblocks/blocks/video-timeline/video-timeline.frontend.bundle.js?ver=1669324052 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
cf-bgj: minify
cf-polished: origSize=27583
etag: W/"637fdd14-6bbf"
expires: Tue, 23 Nov 2032 02:03:53 GMT
ki-cf-cache-status: SAVING
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:07:32 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rCZa%2F4YKUyfbNbsFZXcONkQcYG9xWOUb4j4GRHOz4rPfc2wuds3MBM6PR9jMdXhuO66WINhXHcUgdPnJxzQTuPr3VXTbaa8QMhcz5LISrQxUG7y3j8V%2BgCXK6PNzvCE%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,0db91c9c84633075a83cb85bdcdf5f19009bf39a21f04162349c5c9522edf2af
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
age: 22678
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685cea9b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
distillery.wistia.com/x
3.208.35.2204 No Content 0 B IP 3.208.35.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1418
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 08:21:55 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
X-Firefox-Spdy: h2
distillery.wistia.com/x
3.208.35.2204 No Content 0 B IP 3.208.35.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1418
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 08:21:55 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
X-Firefox-Spdy: h2
distillery.wistia.com/x
3.208.35.2204 No Content 0 B IP 3.208.35.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1420
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 08:21:55 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
X-Firefox-Spdy: h2
distillery.wistia.com/x
3.208.35.2204 No Content 0 B IP 3.208.35.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1418
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 08:21:55 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash af46f4a3fc316cdcf361ae67c3fe6c19
24f288814f2a032d8a3ff465e49c9260b4e9f388
315a882e0ae274af34b726da5e5a7060081ae18b447fdbdb0b38db7413c88ad1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4668
Cache-Control: max-age=160716
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:55 GMT
Etag: "63818b33-138"
Expires: Mon, 28 Nov 2022 05:00:31 GMT
Last-Modified: Sat, 26 Nov 2022 03:42:43 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 312
pipedream.wistia.com/mput?topic=metrics
34.231.199.151200 OK 2 B URL HTTP/2 pipedream.wistia.com/mput?topic=metrics
IP 34.231.199.151:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/x-www-form-urlencoded
Content-Length: 33767
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:55 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-methods: POST, OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2
widget.us.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd%26ui_traffic%3D1&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=gcgqPl9KNHNmNmRISFBzdHlLWk1DSU1zdmJ0Q1FtYXh6RklFbUFqRlgzMHZZWFdBeWNJRmozNFRtTE9TUTJmdFVxOGxXeE9OZzFGZDB5UWhCNW1EaGpUJTJGT3pGSmNKa20yb0xTNTRBZzZBblNpVmp0eUE1b0p2azZBNm1VJTJCNlZOY2ZMQk1Jc1ZwR09FMm5SQ0Q0Q0k2SGFMMk5BJTNEJTNE&tld=getjobber.com&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=98507
74.119.119.150200 OK 3.7 kB URL HTTP/2 widget.us.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd%26ui_traffic%3D1&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=gcgqPl9KNHNmNmRISFBzdHlLWk1DSU1zdmJ0Q1FtYXh6RklFbUFqRlgzMHZZWFdBeWNJRmozNFRtTE9TUTJmdFVxOGxXeE9OZzFGZDB5UWhCNW1EaGpUJTJGT3pGSmNKa20yb0xTNTRBZzZBblNpVmp0eUE1b0p2azZBNm1VJTJCNlZOY2ZMQk1Jc1ZwR09FMm5SQ0Q0Q0k2SGFMMk5BJTNEJTNE&tld=getjobber.com&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=98507
IP 74.119.119.150:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (5810)
Hash fa45ea5ae8c3bb7249b33416d8c636f0
079ed1b88e0edb360cf327fae9fd7e210ec20d33
b09bb4293259042cc628cdb72ec3c073131093b637714c360c155fa1d2bba1a4
GET /event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd%26ui_traffic%3D1&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=gcgqPl9KNHNmNmRISFBzdHlLWk1DSU1zdmJ0Q1FtYXh6RklFbUFqRlgzMHZZWFdBeWNJRmozNFRtTE9TUTJmdFVxOGxXeE9OZzFGZDB5UWhCNW1EaGpUJTJGT3pGSmNKa20yb0xTNTRBZzZBblNpVmp0eUE1b0p2azZBNm1VJTJCNlZOY2ZMQk1Jc1ZwR09FMm5SQ0Q0Q0k2SGFMMk5BJTNEJTNE&tld=getjobber.com&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=98507 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getjobber.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:55 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 15974699
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 60258dcaa6d9afc4bfb6d21a63a592db
76d29d03caffd13932dc90bcda32c7955ef6a411
ec5c9a0eafdf97b91c622ef8faf15158fb10fee1bc4db145833feefbfdd81b2c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC5C9A0EAFDF97B91C622EF8FAF15158FB10FEE1BC4DB145833FEEFBFDD81B2C"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10709
Expires: Sat, 26 Nov 2022 11:20:24 GMT
Date: Sat, 26 Nov 2022 08:21:55 GMT
Connection: keep-alive
fast.wistia.com/assets/external/allIntegrations.js
151.101.86.110200 OK 5.6 kB URL HTTP/2 fast.wistia.com/assets/external/allIntegrations.js
IP 151.101.86.110:0
File type ASCII text, with very long lines (21637), with no line terminators
Hash 98d8f1350f159ef9d630464f2677623c
ee33382759ec18abebe452fb065599627d729114
0bcc59bc6540d08234fceefb99483c915ced9406d7b30173817cb18553c462b3
GET /assets/external/allIntegrations.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: br
content-type: application/javascript
etag: "637ce334-15f7"
last-modified: Tue, 22 Nov 2022 14:56:52 GMT
timing-allow-origin: *
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 08:21:55 GMT
age: 2742
x-served-by: cache-iad-kiad7000146-IAD, cache-bma1677-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 33
x-timer: S1669450916.997966,VS0,VE0
vary: Accept-Encoding
strict-transport-security: max-age=0
x-ecma-v: modern
x-browser: firefox
x-browser-version: 105
content-length: 5623
X-Firefox-Spdy: h2
matching.ivitrack.com/sync?realm=criteo&uid=k-QumgYrpESpnFlpU9NRt-ooL3SxsZS73pDPwmEQ
34.117.157.22200 OK 42 B URL HTTP/2 matching.ivitrack.com/sync?realm=criteo&uid=k-QumgYrpESpnFlpU9NRt-ooL3SxsZS73pDPwmEQ
IP 34.117.157.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?realm=criteo&uid=k-QumgYrpESpnFlpU9NRt-ooL3SxsZS73pDPwmEQ HTTP/1.1
Host: matching.ivitrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Sat, 26 Nov 2022 08:21:55 GMT
content-type: image/gif
content-length: 42
cache-control: public, max-age=86400
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: tag-manager.programmatic.svc.cluster.local:3000/*
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 60258dcaa6d9afc4bfb6d21a63a592db
76d29d03caffd13932dc90bcda32c7955ef6a411
ec5c9a0eafdf97b91c622ef8faf15158fb10fee1bc4db145833feefbfdd81b2c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EC5C9A0EAFDF97B91C622EF8FAF15158FB10FEE1BC4DB145833FEEFBFDD81B2C"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10708
Expires: Sat, 26 Nov 2022 11:20:24 GMT
Date: Sat, 26 Nov 2022 08:21:56 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 7e9dc592aba1346b475dd38695b75abf
408e89fc62d168abadd3370d878dd38c469c0565
9c5ec32ccaad1467bc839a688f81e1308bf93535a9c02e8d3918be6b90f09dca
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163650
Date: Sat, 26 Nov 2022 08:21:56 GMT
Etag: "6381a1a3-1d7"
Expires: Mon, 28 Nov 2022 05:49:26 GMT
Last-Modified: Sat, 26 Nov 2022 05:18:27 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6cLk61A8TBXyEaLTtcEiy-5OMuPuuzQj3lrDYpdM5d0PlC9ez4-RyA==
Age: 1859
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:55 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 1022884
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a3608c7c38d0749d554708b2268d3a0a
b1ee77bcb5a88c3af3248768ea0c2c03fe9fe063
72d5970ce0bbf7abdc8dac8186b5bdf58e80d2fb968590086d9f18c21fd0eeeb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4957
Cache-Control: max-age=136191
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:56 GMT
Etag: "63812a46-117"
Expires: Sun, 27 Nov 2022 22:11:47 GMT
Last-Modified: Fri, 25 Nov 2022 20:49:10 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_cm&google_hm=ay1pR3dnUmJwRVNwbkZscFU5TlJ0LW9vTDNTeHZ1TTd3RHhwajNLZw
216.58.211.2302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_cm&google_hm=ay1pR3dnUmJwRVNwbkZscFU5TlJ0LW9vTDNTeHZ1TTd3RHhwajNLZw
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash e70e47c581a63790ac823a6f7142a946
77ba9e4d5f7b37571b8e2e6de509c0d16cf8ef62
07409b1a499a04f4fee2c48f2dbe719790a9c7a318c6f9d041fec5d14a26c429
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_cm&google_hm=ay1pR3dnUmJwRVNwbkZscFU5TlJ0LW9vTDNTeHZ1TTd3RHhwajNLZw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_cm=&google_hm=ay1pR3dnUmJwRVNwbkZscFU5TlJ0LW9vTDNTeHZ1TTd3RHhwajNLZw&google_tc=
date: Sat, 26 Nov 2022 08:21:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 08:36:56 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
criteo-sync.teads.tv/um?eid=80&uid=k-2S67CLpESpnFlpU9NRt-ooL3SxshmcRzOI3ixg
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-2S67CLpESpnFlpU9NRt-ooL3SxshmcRzOI3ixg
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-2S67CLpESpnFlpU9NRt-ooL3SxshmcRzOI3ixg HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Sat, 26 Nov 2022 08:21:56 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:56 GMT
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a01ea4b2c4fbc74e37cf85a5c8d0edd5
c3ab62121f7320f1f90a986143a0bcffe7123329
bc4a105f5fa68a51c7e8491c57887903856055727cc5b6fc64afb6c686b84775
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BC4A105F5FA68A51C7E8491C57887903856055727CC5B6FC64AFB6C686B84775"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11135
Expires: Sat, 26 Nov 2022 11:27:31 GMT
Date: Sat, 26 Nov 2022 08:21:56 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b0c217b1666dcd4822e5c64ad74f3035
13588c3ea23c48a45a3c47c10599173b785e464e
088e98051700d409704a0d4b30257ab01ef27db839a8e1413e2f78ebe300dc4a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5477
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:56 GMT
Last-Modified: Sat, 26 Nov 2022 06:50:39 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-5MRCVrpESpnFlpU9NRt-ooL3SxsyC0WrBwGc_g
23.38.200.22200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-5MRCVrpESpnFlpU9NRt-ooL3SxsyC0WrBwGc_g
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=crt&ovsid=k-5MRCVrpESpnFlpU9NRt-ooL3SxsyC0WrBwGc_g HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3124525163580271000V10; Expires=Sun, 26 Nov 2023 08:21:56 GMT; domain=.media.net; Path=/;
data-c-ts=1669450916;Expires=Mon, 26 Dec 2022 08:21:56 GMT;path=/;domain=.media.net;
data-c=k-5MRCVrpESpnFlpU9NRt-ooL3SxsyC0WrBwGc_g~~3;Expires=Mon, 26 Dec 2022 08:21:56 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Sat, 26 Nov 2022 08:21:56 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:56 GMT
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_cm=&google_hm=ay1pR3dnUmJwRVNwbkZscFU5TlJ0LW9vTDNTeHZ1TTd3RHhwajNLZw&google_tc=
216.58.211.2302 Found 332 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_cm=&google_hm=ay1pR3dnUmJwRVNwbkZscFU5TlJ0LW9vTDNTeHZ1TTd3RHhwajNLZw&google_tc=
IP 216.58.211.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash a5434042987acdd1a66c423ec8762c57
eb96b4b7b422209d85f971a2c7256252963cbfae
7d26d343116c216adb55da8c1a689c102c26d9c8178801c575c57377f4d89f36
GET /pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_cm=&google_hm=ay1pR3dnUmJwRVNwbkZscFU5TlJ0LW9vTDNTeHZ1TTd3RHhwajNLZw&google_tc= HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
location: https://dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_error=3
date: Sat, 26 Nov 2022 08:21:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 332
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
37.252.171.53307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 37.252.171.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 26 Nov 2022 08:21:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: 27baa4b1-3b41-4c0f-8af3-f06b93b6c6ab
Set-Cookie: uuid2=7767435923602356966; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 24-Feb-2023 08:21:56 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash aeb988bac72da6e2a2506d5f766a3056
40990f178cd4f75913b8ff5396af457ac9b561f1
18d43a14dece260c7071f7c854ff096c9531dfdfc03d2e8941d762681cde72bf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2593
Cache-Control: max-age=112548
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:56 GMT
Etag: "6380d727-1d7"
Expires: Sun, 27 Nov 2022 15:37:44 GMT
Last-Modified: Fri, 25 Nov 2022 14:54:31 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-xVyY47pESpnFlpU9NRt-ooL3SxvD0PA52NtmRQ
104.18.33.19302 Found 0 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-xVyY47pESpnFlpU9NRt-ooL3SxvD0PA52NtmRQ
IP 104.18.33.19:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rum?cm_dsp_id=20&external_user_id=k-xVyY47pESpnFlpU9NRt-ooL3SxvD0PA52NtmRQ HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:56 GMT
content-length: 0
location: /rum?cm_dsp_id=20&external_user_id=k-xVyY47pESpnFlpU9NRt-ooL3SxvD0PA52NtmRQ&C=1
cf-ray: 770136a35bccb518-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR DEVa TAIa OUR BUS UNI"
pragma: no-cache
set-cookie: CMID=Y4HMpB.woN8HKiDv8YAOpwAA; Path=/; Domain=casalemedia.com; Expires=Sun, 26 Nov 2023 08:21:56 GMT; Max-Age=31536000; Secure; SameSite=None
CMPS=666; Path=/; Domain=casalemedia.com; Expires=Fri, 24 Feb 2023 08:21:56 GMT; Max-Age=7776000; Secure; SameSite=None
CMPRO=666; Path=/; Domain=casalemedia.com; Expires=Fri, 24 Feb 2023 08:21:56 GMT; Max-Age=7776000; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O5NXHQUOGd6xLGEjlaenvkCoim28wBeUSIjQkZbcMBDNhMb5B4Fu7MiSFLI7RPn8vyGiWUhUXlW9Jjb6uzxJ51mJIoCczXuxroG60Ju962mblDmPc57biAPL0ig2VSS5468e"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=onetag&domain=getjobber.com&sn=FirefoxSyncframe&so=0&topUrl=getjobber.com&info=VMpSU180M0RITmhlJTJCZkMwOUJGQlhaMUN2czRmV3BGUWt3b1F2VmtITGl2NFBLYnpEc2IyVHVYRWxGa1R1M3l5eWw5Vkk&idsd=-1446119637,-198099438&cw=1&lsw=1
178.250.2.146200 OK 354 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=getjobber.com&sn=FirefoxSyncframe&so=0&topUrl=getjobber.com&info=VMpSU180M0RITmhlJTJCZkMwOUJGQlhaMUN2czRmV3BGUWt3b1F2VmtITGl2NFBLYnpEc2IyVHVYRWxGa1R1M3l5eWw5Vkk&idsd=-1446119637,-198099438&cw=1&lsw=1
IP 178.250.2.146:0
Hash a740f19daa73dc4b54997a15537a479b
7ddd74194191dfb46be3b214f91b6c12ef6dd1c5
125e6299f0311208ede157c15bdf12f44d2b13579ff7b4086d03bd3104c96273
GET /sid/json?origin=onetag&domain=getjobber.com&sn=FirefoxSyncframe&so=0&topUrl=getjobber.com&info=VMpSU180M0RITmhlJTJCZkMwOUJGQlhaMUN2czRmV3BGUWt3b1F2VmtITGl2NFBLYnpEc2IyVHVYRWxGa1R1M3l5eWw5Vkk&idsd=-1446119637,-198099438&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=getjobber.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:55 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1272654
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
getjobber.com/wp-json/api/ipstack/?bypass_cache=true&ip=91.90.42.154
104.22.27.66200 OK 563 B URL HTTP/2 getjobber.com/wp-json/api/ipstack/?bypass_cache=true&ip=91.90.42.154
IP 104.22.27.66:0
Hash 09af6e9245d0f99d38e105c23d039183
0758710ca58b275a09e4c62c6852b65b9a8e842c
e7d9bb40915294071e4bae6b97f664ff6fbb34a80d059a601fc8b4bee6b660e7
GET /wp-json/api/ipstack/?bypass_cache=true&ip=91.90.42.154 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0yNlQwODoyMTo1MS4yOTJaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vIiwidXRtX3BhcmFtcyI6InV0bWNjbj1kaXJlY3QifQ==; _gcl_au=1.1.568639239.1669450912; _ga_LQXS6VVFN0=GS1.1.1669450911.1.0.1669450911.60.0.0; _ga=GA1.2.776195483.1669450912; _cq_duid=1.1669450912.5Sgo0iEYLtTn6D1N; _cq_suid=1.1669450912.GI4nPAgRd0loQIA9; _tt_enable_cookie=1; _ttp=5b6fdd30-1a67-48c6-a6b2-34550d5fd9c4; _tq_id.TV-7281904572-1.6f05=86ff4cc148d4fe78.1669450912.0.1669450912..; _uetsid=61e29a006d6311edac5643efe8f3a629; _uetvid=61e2bd106d6311ed9a54c5ceef12ed69; amp_06c82b=-EqfcXPCXYNXyrTYkUCE9Z...1gipgelhb.1gipgemce.1.0.1; amplitude_session_id=1669450913323; _gid=GA1.2.1232565711.1669450913; _gat=1; _fbp=fb.1.1669450913816.489769961
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:55 GMT
content-type: application/json; charset=UTF-8
allow: GET
content-encoding: gzip
link: <https://getjobber.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding, Origin
cf-cache-status: DYNAMIC
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
ki-cache-type: None
ki-cf-cache-status: BYPASS
ki-edge: v=17.9
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
x-kinsta-cache: BYPASS
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lVkhU4Qs0SVIpwu7U5XjRW2ue6fu0X1roF5WMD5XSg%2FHNHlf1djHzSsxRd5RO0vdbuIK2AmqHsmiygpdb4TWf399XcqEpVL9prDLj5Uv1w4VVqsxV3Vw%2Fh4yIJhBuzs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 7701369aec68b505-OSL
X-Firefox-Spdy: h2
cm.adform.net/pixel?adform_pid=15&adform_pc=k-tpuhKLpESpnFlpU9NRt-ooL3SxtXiUIjcKkTMA
37.157.3.20200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-tpuhKLpESpnFlpU9NRt-ooL3SxtXiUIjcKkTMA
IP 37.157.3.20:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-tpuhKLpESpnFlpU9NRt-ooL3SxtXiUIjcKkTMA HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 08:21:56 GMT
content-type: image/gif
content-length: 43
last-modified: Fri, 18 Nov 2022 14:41:46 GMT
etag: "637799aa-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
37.252.171.53302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 37.252.171.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sat, 26 Nov 2022 08:21:56 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: a5470e07-6904-49ce-9515-03a65b9abf1c
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 3c49e689c34b9390c24cb4d29c134c88
092b6bc08745ae4842dc56d81e4dc1f5b5b5835c
814bb5c1e2e8579e861849ec6b2889eac79a87da651c433b0773862460fc6f4b
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 26 Nov 2022 08:21:56 GMT
Last-Modified: Sat, 26 Nov 2022 07:42:27 GMT
Server: ECS (bsa/EB1C)
X-Cache: Miss from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LzSh1aQbFuK6VJ8pOXKD406OqgoiDwmp_hX6cADTRNcyiS7Pxae7Qw==
Age: 2369
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-xVyY47pESpnFlpU9NRt-ooL3SxvD0PA52NtmRQ&C=1
104.18.33.19200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-xVyY47pESpnFlpU9NRt-ooL3SxvD0PA52NtmRQ&C=1
IP 104.18.33.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-xVyY47pESpnFlpU9NRt-ooL3SxvD0PA52NtmRQ&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:56 GMT
content-type: image/gif
content-length: 43
cf-ray: 770136a3ac09b518-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6zotsqtpBq31SAUbuHwIsZzeI9iAC5zX%2BHMgILMBZ9%2Fx92OQZAUL5b7lhBhgdWPeL4eBy6mS22b%2FOQcJYPIiBsLzLX%2F%2BT%2F27ZlFhxFFPrcK7AuCDOOYLkX4ezVwd%2B31PUmI6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 03396c0dbbf7ff9934dd718fe7a5b6e4
b79cf64dbda945ab0e6640137421c22f55bc0283
80e3553db296aca10867ff19855d80bee6268a3da21253515716b1b0f6cda51f
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 26 Nov 2022 08:21:56 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 26 Nov 2022 06:34:17 GMT
Expires: Sun, 27 Nov 2022 06:34:17 GMT
ETag: "b79cf64dbda945ab0e6640137421c22f55bc0283"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
e2ab129449a2437ba6962334de724de8.js.ubembed.com/
151.101.85.131200 OK 481 B URL HTTP/2 e2ab129449a2437ba6962334de724de8.js.ubembed.com/
IP 151.101.85.131:0
File type ASCII text, with very long lines (477), with no line terminators
Hash 31db8c141443c90a9cd187d6957a8949
26e55bcd467d288cdbf4555a197b80072dc2872f
50eed9115ec815d7ec9e7e70229dce0aacc3f31d3e40f300d61e55b10468f043
GET / HTTP/1.1
Host: e2ab129449a2437ba6962334de724de8.js.ubembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
x-amz-apigw-id: cMokyHUajoEF28Q=
x-amz-cf-pop: ARN54-C1
x-backend-region: eu_west_1
date: Sat, 26 Nov 2022 08:21:55 GMT
age: 4536
x-cache: Miss from cloudfront, HIT
access-control-allow-origin: *
cache-control: max-age=0, must-revalidate
vary: Accept-Encoding, Referer
etag: W/9dc5144c311648fe71b3e353b0de442a-v0.179.2
content-encoding: br
accept-ranges: none
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash ea9198799ad10f0dedd8f6f7498b06f2
8e0b73e7d284b808ab7e5df1b7538b70f678cf30
4986205c7725b8fc1b6b1dd7fa0f7df5cf98e44bea67374fca9ad8bbb2747748
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=103256
Date: Sat, 26 Nov 2022 08:21:56 GMT
Etag: "6380ae85-1d7"
Expires: Sun, 27 Nov 2022 13:02:52 GMT
Last-Modified: Fri, 25 Nov 2022 12:01:09 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hxtxNkX4SPS1DH2K0K-u3M5JA_8O8MNLuCj8OxfzQ0AHilqdu8XRCg==
Age: 3703
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash caa4af10eea9c1cc9e4bd81803697fd1
a27d5ec90d031d7a5aad439939be3fcb0b3e23c4
d448510b3df08d4d877f7a7def8e8334a58d861e603737cac3faa162ac4b52ec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6272
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:56 GMT
Last-Modified: Sat, 26 Nov 2022 06:37:25 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
eb2.3lift.com/xuid?mid=2711&xuid=k-AKv7TLpESpnFlpU9NRt-ooL3SxtE8YDdRnMS_A&dongle=013b
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-AKv7TLpESpnFlpU9NRt-ooL3SxtE8YDdRnMS_A&dongle=013b
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-AKv7TLpESpnFlpU9NRt-ooL3SxtE8YDdRnMS_A&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:56 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.2.151200 OK 357 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.2.151:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 2f3dc9f60e892ae7dc2ed1aedc2ed372
cd30380d621567f13d3a18f50f757e8b78870980
0fa7f4dac2d4bcc5c9240e4712fa6f0b22fa0ead72d63cbbff98e6af9cee684e
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:55 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 503650
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
e1.emxdgt.com/put?d=d53&uid=k-bT8Pa7pESpnFlpU9NRt-ooL3SxtbrR5Copu2Sc4zJuefNx_1
18.158.8.202204 No Content 0 B URL HTTP/2 e1.emxdgt.com/put?d=d53&uid=k-bT8Pa7pESpnFlpU9NRt-ooL3SxtbrR5Copu2Sc4zJuefNx_1
IP 18.158.8.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /put?d=d53&uid=k-bT8Pa7pESpnFlpU9NRt-ooL3SxtbrR5Copu2Sc4zJuefNx_1 HTTP/1.1
Host: e1.emxdgt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-type: text/html
date: Sat, 26 Nov 2022 08:21:56 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9833a8d06446deb9b455938cf04fcdfa
6c561e1d1d6ae7d2ff2cdef2026d35136c501f0a
2b911aef88711257cbc14e3bb63f6a749c0b2a0f24cc5ac8e7e23095bed2bf1d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4828
Cache-Control: max-age=151530
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:56 GMT
Etag: "638166b2-1d7"
Expires: Mon, 28 Nov 2022 02:27:26 GMT
Last-Modified: Sat, 26 Nov 2022 01:06:58 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
sync-criteo.ads.yieldmo.com/sync?id=k-bFikh7pESpnFlpU9NRt-ooL3SxusKHj00UQi6g&pn_id=criteo&ext=1
52.17.209.100200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-bFikh7pESpnFlpU9NRt-ooL3SxusKHj00UQi6g&pn_id=criteo&ext=1
IP 52.17.209.100:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-bFikh7pESpnFlpU9NRt-ooL3SxusKHj00UQi6g&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:56 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=g4821b53422e9127e9fe%7C1669450916508%7C0%7C; Domain=.yieldmo.com; Expires=Sun, 26-Nov-2023 08:21:56 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-bFikh7pESpnFlpU9NRt-ooL3SxusKHj00UQi6g; Domain=ads.yieldmo.com; Expires=Sun, 26-Nov-2023 08:21:56 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:56 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKTMgWMCELJU88bICNouKFf3_U65nGsFEgEBAQEeg2OLYwAAAAAA_eMAAA&S=AQAAAlhPEKj1WgF9Z1VV2Nkm7C8; Expires=Sun, 26 Nov 2023 14:21:56 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 9a3f99fb17ddf19a6b4cd4a7faac0d36
66ac086d7f48d2fc41ca40d1460f998b7980db7b
bc24880cb3aad5b5ca5be54e9b7c5b869c0c6ce85969942a3966dc084e3c8d3f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4873
Cache-Control: max-age=122745
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:56 GMT
Etag: "6380f614-116"
Expires: Sun, 27 Nov 2022 18:27:41 GMT
Last-Modified: Fri, 25 Nov 2022 17:06:28 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 278
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-KBj-CrpESpnFlpU9NRt-ooL3Sxs7ZPttUYF9Pw&expires=30
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-KBj-CrpESpnFlpU9NRt-ooL3Sxs7ZPttUYF9Pw&expires=30
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-KBj-CrpESpnFlpU9NRt-ooL3Sxs7ZPttUYF9Pw&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 49049ff336235ad60cb44abcb1cec1d6
Content-Type: image/gif
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-bn5CnrpESpnFlpU9NRt-ooL3SxsHOQrjXexGdQ
185.86.137.131200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-bn5CnrpESpnFlpU9NRt-ooL3SxsHOQrjXexGdQ
IP 185.86.137.131:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-bn5CnrpESpnFlpU9NRt-ooL3SxsHOQrjXexGdQ HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Sat, 26 Nov 2022 08:21:56 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=4601434735041607087; expires=Tue, 26 Dec 2023 08:21:56 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Tue, 26 Dec 2023 08:21:56 GMT; domain=smartadserver.com; path=/
csync=79:k-bn5CnrpESpnFlpU9NRt-ooL3SxsHOQrjXexGdQ; expires=Sun, 26 Nov 2023 08:21:56 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash 5c8551591e515d9029e8c9a29804eecb
1298f0c1b78880a93b57d06eeecddc8f668208b9
87bd2ac1ed0fcd041651ce64766499da60cc349352b42f5bf28ace8ef647a72a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 08:21:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 26 Nov 2022 01:56:51 GMT
Expires: Sat, 03 Dec 2022 01:56:50 GMT
Etag: "1298f0c1b78880a93b57d06eeecddc8f668208b9"
Cache-Control: max-age=581093,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770136a34ba5b512-OSL
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a3608c7c38d0749d554708b2268d3a0a
b1ee77bcb5a88c3af3248768ea0c2c03fe9fe063
72d5970ce0bbf7abdc8dac8186b5bdf58e80d2fb968590086d9f18c21fd0eeeb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4957
Cache-Control: max-age=136191
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:56 GMT
Etag: "63812a46-117"
Expires: Sun, 27 Nov 2022 22:11:47 GMT
Last-Modified: Fri, 25 Nov 2022 20:49:10 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1d9982c4a878719ddada7e301fb40eca
b088389e7b4dca42ef7391324d6ebc7fc7d8e796
64dbc2a8bcfd6e778293004e63430dc61138124ce7a82e564d9bde62e90b5a60
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3984
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:56 GMT
Last-Modified: Sat, 26 Nov 2022 07:15:32 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
x.bidswitch.net/sync?dsp_id=46&user_id=k-ClCRI7pESpnFlpU9NRt-ooL3SxtJk1KSNGGcoA&expires=30
3.75.15.124302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-ClCRI7pESpnFlpU9NRt-ooL3SxtJk1KSNGGcoA&expires=30
IP 3.75.15.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-ClCRI7pESpnFlpU9NRt-ooL3SxtJk1KSNGGcoA&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:56 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-ClCRI7pESpnFlpU9NRt-ooL3SxtJk1KSNGGcoA&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=1a41457d-13bd-4ad5-a712-9d80708370c2; path=/; expires=Sun, 26-Nov-2023 08:21:56 GMT; domain=.bidswitch.net; samesite=none; secure
c=1669450916; path=/; expires=Sun, 26-Nov-2023 08:21:56 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1669450916; path=/; expires=Sun, 26-Nov-2023 08:21:56 GMT; domain=.bidswitch.net; samesite=none; secure
c=1669450916; path=/; expires=Sun, 26-Nov-2023 08:21:56 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw&verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw&verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 08:21:56 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKTMgWMCEAyRoNe3wMAsESCFIPPUN34FEgEBAQEeg2OLYwAAAAAA_eMAAA&S=AQAAAk4IJRxOoVir9TMDC_gCQLk; Expires=Sun, 26 Nov 2023 14:21:56 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash a748f881d7773ad5eba59aabe2151f4c
d65cde092f45ba249f083d9f89d88e2449268b2d
8984dd5bd1a179f29b57ec4f72388c17b24e670e91189d5d70ccd0f3c12875f5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=167244
Date: Sat, 26 Nov 2022 08:21:56 GMT
Etag: "63819d7d-1d7"
Expires: Mon, 28 Nov 2022 06:49:20 GMT
Last-Modified: Sat, 26 Nov 2022 05:00:45 GMT
Server: ECS (bsa/EB11)
X-Cache: Miss from cloudfront
Via: 1.1 1ca0323262515c9240c58fe69a9ac826.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZxDzwt7zhpfwb-Lk9a366UjbJ9-BA-KGDWJ6DjMIDtevLwUmJ2Jxqw==
Age: 6515
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 03196688ecacd6edc6139519890852b0
73d8fdb58a4df90b5858c3c338f1ac40befc06e0
6a8c70040024563bfdafbd076537d58762414d32d1714b3adb4d2d5e2990a6de
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=150461
Date: Sat, 26 Nov 2022 08:21:56 GMT
Etag: "63815fbf-1d7"
Expires: Mon, 28 Nov 2022 02:09:37 GMT
Last-Modified: Sat, 26 Nov 2022 00:37:19 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: acxbDfLzYARYBK1-3O9lvrZT3AM61a3U-asLjpfBEaDxHjH6Ww763A==
Age: 5538
x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-ClCRI7pESpnFlpU9NRt-ooL3SxtJk1KSNGGcoA&expires=30
3.75.15.124200 OK 43 B URL HTTP/2 x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-ClCRI7pESpnFlpU9NRt-ooL3SxtJk1KSNGGcoA&expires=30
IP 3.75.15.124:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/sync?dsp_id=46&user_id=k-ClCRI7pESpnFlpU9NRt-ooL3SxtJk1KSNGGcoA&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:56 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-ZfpZ0rpESpnFlpU9NRt-ooL3SxuAm3bRqOuuLUyVy7inHaPp
18.197.215.45200 OK 20 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-ZfpZ0rpESpnFlpU9NRt-ooL3SxuAm3bRqOuuLUyVy7inHaPp
IP 18.197.215.45:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /usersync/push?partner=criteo&partnerId=k-ZfpZ0rpESpnFlpU9NRt-ooL3SxuAm3bRqOuuLUyVy7inHaPp HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:56 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%2263c35910-6d63-11ed-b2dd-37d25a4ae6ff%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sat, 10 Dec 2022 08:21:56 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%2263c35910-6d63-11ed-b2dd-37d25a4ae6ff%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sat, 10 Dec 2022 08:21:56 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%2263c35910-6d63-11ed-b2dd-37d25a4ae6ff%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sat, 10 Dec 2022 08:21:56 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%2263c35910-6d63-11ed-b2dd-37d25a4ae6ff%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sat, 10 Dec 2022 08:21:56 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-ZfpZ0rpESpnFlpU9NRt-ooL3SxuAm3bRqOuuLUyVy7inHaPp%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Sat, 10 Dec 2022 08:21:56 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-vwtC9bpESpnFlpU9NRt-ooL3SxsmQ-0eedK0xw
3.127.228.236204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-vwtC9bpESpnFlpU9NRt-ooL3SxsmQ-0eedK0xw
IP 3.127.228.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-vwtC9bpESpnFlpU9NRt-ooL3SxsmQ-0eedK0xw HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 08:21:56 GMT
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-jc4qVrpESpnFlpU9NRt-ooL3SxspPrIqXaj-hA
141.226.228.48200 OK 471 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-jc4qVrpESpnFlpU9NRt-ooL3SxspPrIqXaj-hA
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash d105310171fc11d10c09db8518895e69
93b6ff8db5f654a191bca5e15803cb8d5809069a
d2e5c335bd17f55a22bae5c36c642484342314f4a7c1d52eb7bb14be83c83285
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-jc4qVrpESpnFlpU9NRt-ooL3SxspPrIqXaj-hA HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 08:21:56 GMT
x-fastly-to-nlb-rtt: 27466
access-control-allow-credentials: true
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
3.248.12.166200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 3.248.12.166:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-017ef7714.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: bh+4w8FoTeo=
Content-Length: 59
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 9a3f99fb17ddf19a6b4cd4a7faac0d36
66ac086d7f48d2fc41ca40d1460f998b7980db7b
bc24880cb3aad5b5ca5be54e9b7c5b869c0c6ce85969942a3966dc084e3c8d3f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4873
Cache-Control: max-age=122745
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:56 GMT
Etag: "6380f614-116"
Expires: Sun, 27 Nov 2022 18:27:41 GMT
Last-Modified: Fri, 25 Nov 2022 17:06:28 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 278
sync.outbrain.com/cookie-sync?p=criteo&uid=k-5Jmmo7pESpnFlpU9NRt-ooL3Sxt6RtqEcrTB5A
64.202.112.255200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-5Jmmo7pESpnFlpU9NRt-ooL3Sxt6RtqEcrTB5A
IP 64.202.112.255:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-5Jmmo7pESpnFlpU9NRt-ooL3Sxt6RtqEcrTB5A HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 08:21:56 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: 59950151bb75bbe84aa2835a1d01f91b
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:56 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 375646
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sectigo.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash fef181349a0dd9c4320c1fe7bbdce92b
338f720af51516010986d28d5b450f5fee08ad39
bb671ecb45dbfcd9216e90c5fa89ab966468b5979d091f62f4299185b314108d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 08:21:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 03:11:52 GMT
Expires: Wed, 30 Nov 2022 03:11:51 GMT
Etag: "338f720af51516010986d28d5b450f5fee08ad39"
Cache-Control: max-age=326394,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 770136a379181c12-OSL
px.mountain.com/st?ga_tracking_id=UA-19381044-3&ga_client_id=776195483.1669450912&shpt=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-19381044-3%22%2C%22ga_client_id%22%3A%22776195483.1669450912%22%2C%22shpt%22%3A%22Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free%22%2C%22dcm_cid%22%3A%221669450911.1%22%2C%22dcm_gid%22%3A%221232565711.1669450913%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A4%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1669450911.1&dcm_gid=1232565711.1669450913&dxver=4.0.0&shaid=32677&plh=https%3A%2F%2Fgetjobber.com%2F&cb=58654739248765110term%3Dvalue&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue
52.42.124.195200 OK 1.3 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-19381044-3&ga_client_id=776195483.1669450912&shpt=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-19381044-3%22%2C%22ga_client_id%22%3A%22776195483.1669450912%22%2C%22shpt%22%3A%22Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free%22%2C%22dcm_cid%22%3A%221669450911.1%22%2C%22dcm_gid%22%3A%221232565711.1669450913%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A4%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1669450911.1&dcm_gid=1232565711.1669450913&dxver=4.0.0&shaid=32677&plh=https%3A%2F%2Fgetjobber.com%2F&cb=58654739248765110term%3Dvalue&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue
IP 52.42.124.195:0
Hash d1443e4fbacb2b2d052d21b0d2e5e077
571ed367735a078e28baa8cb18e749cbd1a86278
18b31b54d09f6945bfaa2268ea545fdc6e49dfa35a7744b7b7ae9aa3e399237e
GET /st?ga_tracking_id=UA-19381044-3&ga_client_id=776195483.1669450912&shpt=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-19381044-3%22%2C%22ga_client_id%22%3A%22776195483.1669450912%22%2C%22shpt%22%3A%22Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free%22%2C%22dcm_cid%22%3A%221669450911.1%22%2C%22dcm_gid%22%3A%221232565711.1669450913%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A4%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1669450911.1&dcm_gid=1232565711.1669450913&dxver=4.0.0&shaid=32677&plh=https%3A%2F%2Fgetjobber.com%2F&cb=58654739248765110term%3Dvalue&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sat, 26 Nov 2022 08:21:55 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=639ac28e-6d63-11ed-8715-1b8aa0c40510;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA
18.194.84.147302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA
IP 18.194.84.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:56 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA
set-cookie: tuuid=995734a6-f34c-4b27-bf5f-863b752e1072; Expires=Fri, 24 Feb 2023 08:21:56 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1669450916; Expires=Fri, 24 Feb 2023 08:21:56 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-x0q5JbpESpnFlpU9NRt-ooL3SxtydEJ-2uwLQw
185.255.84.153200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-x0q5JbpESpnFlpU9NRt-ooL3SxtydEJ-2uwLQw
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-x0q5JbpESpnFlpU9NRt-ooL3SxtydEJ-2uwLQw HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=dd74c804241a92ddf2815ccac43128ab; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Sat, 26 Nov 2022 08:21:56 GMT
content-length: 49
x-envoy-upstream-service-time: 11
server: ayl-lb-fra02
X-Firefox-Spdy: h2
der.joshuarms.com/mon
52.45.196.192200 OK 0 B IP 52.45.196.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
POST /mon HTTP/1.1
Host: der.joshuarms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1394
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: cg_uuid=f88138868b400694f1db3ebd92c3be2c
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://getjobber.com
content-type: application/json
date: Sat, 26 Nov 2022 08:21:56 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 91cb3b84a550abfc9a8db3131cb6840d
f9e7decdcc40b3c03e9a4cd18b6b9426c1a1fa7f
6b5aff27c1f9f0c1299180b666fc8bd00a0f4a9fa68386fa6c885ba3f15b9ffb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5583
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:56 GMT
Last-Modified: Sat, 26 Nov 2022 06:48:53 GMT
Server: ECS (amb/6B9E)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
52.214.172.145204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 52.214.172.145:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 08:21:56 GMT
set-cookie: _kuid_=POLeaNRX; Expires=Thu, 25-May-23 08:21:56 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n022-dub-prod.krxd.net
x-request-time: D=31 t=1669450916
X-Firefox-Spdy: h2
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA
18.194.84.147200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA
IP 18.194.84.147:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:56 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:56 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 457782
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
sslwidget.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=cBf9Pl83TW1VQUF1dFFqUGoxeGtDeWQwTlVhYzVWb1lERjRmdTIwMlFZakVpY0xNb1BjMnVjU0s3QUJkZlFDYnByQXRUbDNqa21ud0ROcUVXMkp1blYwaSUyQjZpJTJGNkxNVFBPJTJGQ1ZLODFBQ3NJbGJ6Z0RIViUyRnZQeWFCN2lNdnR6MmZzbzJYT2RRUXdibkpSYllRa2JrR09OczdoUSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=79992
178.250.2.151302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=cBf9Pl83TW1VQUF1dFFqUGoxeGtDeWQwTlVhYzVWb1lERjRmdTIwMlFZakVpY0xNb1BjMnVjU0s3QUJkZlFDYnByQXRUbDNqa21ud0ROcUVXMkp1blYwaSUyQjZpJTJGNkxNVFBPJTJGQ1ZLODFBQ3NJbGJ6Z0RIViUyRnZQeWFCN2lNdnR6MmZzbzJYT2RRUXdibkpSYllRa2JrR09OczdoUSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=79992
IP 178.250.2.151:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=cBf9Pl83TW1VQUF1dFFqUGoxeGtDeWQwTlVhYzVWb1lERjRmdTIwMlFZakVpY0xNb1BjMnVjU0s3QUJkZlFDYnByQXRUbDNqa21ud0ROcUVXMkp1blYwaSUyQjZpJTJGNkxNVFBPJTJGQ1ZLODFBQ3NJbGJ6Z0RIViUyRnZQeWFCN2lNdnR6MmZzbzJYT2RRUXdibkpSYllRa2JrR09OczdoUSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=79992 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:56 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=cBf9Pl83TW1VQUF1dFFqUGoxeGtDeWQwTlVhYzVWb1lERjRmdTIwMlFZakVpY0xNb1BjMnVjU0s3QUJkZlFDYnByQXRUbDNqa21ud0ROcUVXMkp1blYwaSUyQjZpJTJGNkxNVFBPJTJGQ1ZLODFBQ3NJbGJ6Z0RIViUyRnZQeWFCN2lNdnR6MmZzbzJYT2RRUXdibkpSYllRa2JrR09OczdoUSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=79992
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 6095463
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash ac6452f009715eb978c610b5ba9008f3
0fc409035389297e3c5c92152da355909866d13b
d74884be9be9d4b4800f6f191a81dda76093ab0cef7d2262544981480e832f0c
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "D74884BE9BE9D4B4800F6F191A81DDA76093AB0CEF7D2262544981480E832F0C"
Last-Modified: Fri, 25 Nov 2022 20:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=1952
Expires: Sat, 26 Nov 2022 08:54:29 GMT
Date: Sat, 26 Nov 2022 08:21:57 GMT
Connection: keep-alive
ocsp.comodoca.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash abb7f0ef0fddd6ccc5f53b18f0b4dc2f
168c2806f629b09697b3481e05006cbdf18e493c
16a6585e8eda3f993a8547aa50452d000ff1820a3ccde6b162c476b454145069
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 08:21:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 03:38:21 GMT
Expires: Wed, 30 Nov 2022 03:38:20 GMT
Etag: "168c2806f629b09697b3481e05006cbdf18e493c"
Cache-Control: max-age=603250,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1638
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770136a94d7e1c12-OSL
ocsp.comodoca.com/
172.64.155.188200 OK 471 B IP 172.64.155.188:0
Hash abb7f0ef0fddd6ccc5f53b18f0b4dc2f
168c2806f629b09697b3481e05006cbdf18e493c
16a6585e8eda3f993a8547aa50452d000ff1820a3ccde6b162c476b454145069
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 08:21:57 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 03:38:21 GMT
Expires: Wed, 30 Nov 2022 03:38:20 GMT
Etag: "168c2806f629b09697b3481e05006cbdf18e493c"
Cache-Control: max-age=603250,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1638
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770136a94ceb0b55-OSL
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
3.18.143.248200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP 3.18.143.248:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: 647ff250-6d63-11ed-a6bb-0000ac1700ab
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=46&user_id=k-ClCRI7pESpnFlpU9NRt-ooL3SxtJk1KSNGGcoA&expires=30
3.75.15.124302 Found 0 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-ClCRI7pESpnFlpU9NRt-ooL3SxtJk1KSNGGcoA&expires=30
IP 3.75.15.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?dsp_id=46&user_id=k-ClCRI7pESpnFlpU9NRt-ooL3SxtJk1KSNGGcoA&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:57 GMT
content-length: 0
location: https://x.bidswitch.net/ul_cb/sync?dsp_id=46&user_id=k-ClCRI7pESpnFlpU9NRt-ooL3SxtJk1KSNGGcoA&expires=30
cache-control: no-cache, no-store, must-revalidate
set-cookie: tuuid=0c3111d2-1cfc-41f1-a75a-0de125cccf02; path=/; expires=Sun, 26-Nov-2023 08:21:57 GMT; domain=.bidswitch.net; samesite=none; secure
c=1669450917; path=/; expires=Sun, 26-Nov-2023 08:21:57 GMT; domain=.bidswitch.net; samesite=none; secure
tuuid_lu=1669450917; path=/; expires=Sun, 26-Nov-2023 08:21:57 GMT; domain=.bidswitch.net; samesite=none; secure
c=1669450917; path=/; expires=Sun, 26-Nov-2023 08:21:57 GMT; domain=.bidswitch.net; samesite=none; secure
X-Firefox-Spdy: h2
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
37.252.171.53307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 37.252.171.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 26 Nov 2022 08:21:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: 3e4239b8-16f5-48f3-a37a-5a04c03b2bb9
Set-Cookie: uuid2=2015914635224371899; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 24-Feb-2023 08:21:57 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:57 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 682038
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
eb2.3lift.com/xuid?mid=2711&xuid=k-AKv7TLpESpnFlpU9NRt-ooL3SxtE8YDdRnMS_A&dongle=013b
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-AKv7TLpESpnFlpU9NRt-ooL3SxtE8YDdRnMS_A&dongle=013b
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-AKv7TLpESpnFlpU9NRt-ooL3SxtE8YDdRnMS_A&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-KBj-CrpESpnFlpU9NRt-ooL3Sxs7ZPttUYF9Pw&expires=30
213.19.162.80204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-KBj-CrpESpnFlpU9NRt-ooL3Sxs7ZPttUYF9Pw&expires=30
IP 213.19.162.80:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-KBj-CrpESpnFlpU9NRt-ooL3Sxs7ZPttUYF9Pw&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 49049ff336235ad60cb44abcb1cec1d6
Content-Type: image/gif
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-XSMzf7pESpnFlpU9NRt-ooL3SxszeaC-jt8Amw
185.64.189.110200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-XSMzf7pESpnFlpU9NRt-ooL3SxszeaC-jt8Amw
IP 185.64.189.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-XSMzf7pESpnFlpU9NRt-ooL3SxszeaC-jt8Amw HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 08:21:56 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-XSMzf7pESpnFlpU9NRt-ooL3SxszeaC-jt8Amw&KRTB&23144-uid:k-XSMzf7pESpnFlpU9NRt-ooL3SxszeaC-jt8Amw&KRTB&23286-uid:k-XSMzf7pESpnFlpU9NRt-ooL3SxszeaC-jt8Amw&KRTB&23287-uid:k-XSMzf7pESpnFlpU9NRt-ooL3SxszeaC-jt8Amw; domain=pubmatic.com; secure; expires=Mon, 26-Dec-2022 08:21:56 GMT; path=/
PugT=1669450916; domain=pubmatic.com; secure; expires=Mon, 26-Dec-2022 08:21:56 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
js.hs-scripts.com/14530168.js
104.17.210.204200 OK 608 B URL HTTP/2 js.hs-scripts.com/14530168.js
IP 104.17.210.204:0
File type ASCII text, with very long lines (495)
Hash 32be88c203b69d2006f95a2a815b117d
764728c55a4a2eb59cbf375cb71f4f55084ec6fc
00fc40b9ea07b51084a8dad0c9c8bb1d14f6c10292574486f343d0048132a730
GET /14530168.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:55 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2BFBC65012097FC7345C8E902AC11F987FE6CDD3E6000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: 213beb18-a84f-4430-b2b8-d846b3bc9c7b
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://getjobber.com
last-modified: Sat, 26 Nov 2022 08:10:43 GMT
cf-cache-status: EXPIRED
expires: Sat, 26 Nov 2022 08:22:55 GMT
server: cloudflare
cf-ray: 7701369b1be20af6-OSL
content-encoding: br
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-9gGZL7pESpnFlpU9NRt-ooL3Sxu3iLDSPyQa_Q
54.224.7.6200 OK 43 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-9gGZL7pESpnFlpU9NRt-ooL3Sxu3iLDSPyQa_Q
IP 54.224.7.6:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /sync?UICR=k-9gGZL7pESpnFlpU9NRt-ooL3Sxu3iLDSPyQa_Q HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:56 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-vwtC9bpESpnFlpU9NRt-ooL3SxsmQ-0eedK0xw
3.127.228.236204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-vwtC9bpESpnFlpU9NRt-ooL3SxsmQ-0eedK0xw
IP 3.127.228.236:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-vwtC9bpESpnFlpU9NRt-ooL3SxsmQ-0eedK0xw HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 08:21:57 GMT
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-5MRCVrpESpnFlpU9NRt-ooL3SxsyC0WrBwGc_g
23.38.200.22200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-5MRCVrpESpnFlpU9NRt-ooL3SxsyC0WrBwGc_g
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=crt&ovsid=k-5MRCVrpESpnFlpU9NRt-ooL3SxsyC0WrBwGc_g HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3124525173580202000V10; Expires=Sun, 26 Nov 2023 08:21:57 GMT; domain=.media.net; Path=/;
data-c-ts=1669450917;Expires=Mon, 26 Dec 2022 08:21:57 GMT;path=/;domain=.media.net;
data-c=k-5MRCVrpESpnFlpU9NRt-ooL3SxsyC0WrBwGc_g~~3;Expires=Mon, 26 Dec 2022 08:21:57 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
x-mnet-hl2: E
expires: Sat, 26 Nov 2022 08:21:57 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:57 GMT
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-19381044-3&ga_client_id=776195483.1669450912&shpt=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-19381044-3%22%2C%22ga_client_id%22%3A%22776195483.1669450912%22%2C%22shpt%22%3A%22Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free%22%2C%22dcm_cid%22%3A%221669450911.1%22%2C%22dcm_gid%22%3A%221232565711.1669450913%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A4%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1669450911.1&dcm_gid=1232565711.1669450913&dxver=4.0.0&shaid=32677&plh=https%3A%2F%2Fgetjobber.com%2F&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=166945091586359&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1669450916647
52.42.124.195200 OK 1.3 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-19381044-3&ga_client_id=776195483.1669450912&shpt=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-19381044-3%22%2C%22ga_client_id%22%3A%22776195483.1669450912%22%2C%22shpt%22%3A%22Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free%22%2C%22dcm_cid%22%3A%221669450911.1%22%2C%22dcm_gid%22%3A%221232565711.1669450913%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A4%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1669450911.1&dcm_gid=1232565711.1669450913&dxver=4.0.0&shaid=32677&plh=https%3A%2F%2Fgetjobber.com%2F&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=166945091586359&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1669450916647
IP 52.42.124.195:0
Hash 8320ba27067f2c31d2f3f5fa6f1e5778
f32e55cb6639d684ce5b08a21f9e4a48451c607a
c25ef5d777c6c6fb66ad379457eff8ca65a79358690e35070423527d1a25a177
GET /st?ga_tracking_id=UA-19381044-3&ga_client_id=776195483.1669450912&shpt=Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-19381044-3%22%2C%22ga_client_id%22%3A%22776195483.1669450912%22%2C%22shpt%22%3A%22Jobber%3A%20The%20%231%20Service%20Scheduling%20Software%20%26%20App%20in%202022%20%7C%20Try%20for%20Free%22%2C%22dcm_cid%22%3A%221669450911.1%22%2C%22dcm_gid%22%3A%221232565711.1669450913%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A4%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1669450911.1&dcm_gid=1232565711.1669450913&dxver=4.0.0&shaid=32677&plh=https%3A%2F%2Fgetjobber.com%2F&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=166945091586359&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1669450916647 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: guid=639ac28e-6d63-11ed-8715-1b8aa0c40510
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt="H4sIAAAAAAAAAKtWMjYyMzePN7IwtlCyMjQzszQxNbA0NDc2N9JR8guKh8qaWxorWRnoKJUpWaGIg3UZ1AIABj49ckYAAAA=";Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
rt="MzI2Nzc6MTY2OTQ1MDkxNw==";Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=639ac28e-6d63-11ed-8715-1b8aa0c40510;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw
18.156.0.31302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:57 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKXMgWMCEFVUS8WaoJIR2VKP5U23nKYFEgEBAQEeg2OLYwAAAAAA_eMAAA&S=AQAAAsch2K7R_SQzMnhYM7cUfSw; Expires=Sun, 26 Nov 2023 14:21:57 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
sync-criteo.ads.yieldmo.com/sync?id=k-bFikh7pESpnFlpU9NRt-ooL3SxusKHj00UQi6g&pn_id=criteo&ext=1
52.17.209.100200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-bFikh7pESpnFlpU9NRt-ooL3SxusKHj00UQi6g&pn_id=criteo&ext=1
IP 52.17.209.100:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-bFikh7pESpnFlpU9NRt-ooL3SxusKHj00UQi6g&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=gc0af989be068c933752%7C1669450917497%7C0%7C; Domain=.yieldmo.com; Expires=Sun, 26-Nov-2023 08:21:57 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-bFikh7pESpnFlpU9NRt-ooL3SxusKHj00UQi6g; Domain=ads.yieldmo.com; Expires=Sun, 26-Nov-2023 08:21:57 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-bn5CnrpESpnFlpU9NRt-ooL3SxsHOQrjXexGdQ
185.86.137.131200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-bn5CnrpESpnFlpU9NRt-ooL3SxsHOQrjXexGdQ
IP 185.86.137.131:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-bn5CnrpESpnFlpU9NRt-ooL3SxsHOQrjXexGdQ HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Sat, 26 Nov 2022 08:21:57 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=3525112898417096145; expires=Tue, 26 Dec 2023 08:21:57 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Tue, 26 Dec 2023 08:21:57 GMT; domain=smartadserver.com; path=/
csync=79:k-bn5CnrpESpnFlpU9NRt-ooL3SxsHOQrjXexGdQ; expires=Sun, 26 Nov 2023 08:21:57 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
criteo-sync.teads.tv/um?eid=80&uid=k-2S67CLpESpnFlpU9NRt-ooL3SxshmcRzOI3ixg
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-2S67CLpESpnFlpU9NRt-ooL3SxshmcRzOI3ixg
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-2S67CLpESpnFlpU9NRt-ooL3SxshmcRzOI3ixg HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Sat, 26 Nov 2022 08:21:57 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:57 GMT
X-Firefox-Spdy: h2
ad.yieldlab.net/m?dt_id=8664&ext_id=k--UibibpESpnFlpU9NRt-ooL3SxvS7MWsb_lZOg
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k--UibibpESpnFlpU9NRt-ooL3SxvS7MWsb_lZOg
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k--UibibpESpnFlpU9NRt-ooL3SxvS7MWsb_lZOg HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Fri, 25 Nov 2022 08:21:57 GMT
Date: Sat, 26 Nov 2022 08:21:57 GMT
Connection: keep-alive
Set-Cookie: id=763c546c-66d6-4092-a6a1-79bbd61fa4e8; Path=/; Domain=yieldlab.net; Expires=Sun, 26-Nov-2023 08:21:57 GMT; Max-Age=31536000; Secure; SameSite=None
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-x0q5JbpESpnFlpU9NRt-ooL3SxtydEJ-2uwLQw
185.255.84.153200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-x0q5JbpESpnFlpU9NRt-ooL3SxtydEJ-2uwLQw
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-x0q5JbpESpnFlpU9NRt-ooL3SxtydEJ-2uwLQw HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=96243e678a2ae32dde1861d9a6264853; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Sat, 26 Nov 2022 08:21:57 GMT
content-length: 49
x-envoy-upstream-service-time: 52
server: ayl-lb-fra02
X-Firefox-Spdy: h2
sync.outbrain.com/cookie-sync?p=criteo&uid=k-5Jmmo7pESpnFlpU9NRt-ooL3Sxt6RtqEcrTB5A
64.202.112.255200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-5Jmmo7pESpnFlpU9NRt-ooL3Sxt6RtqEcrTB5A
IP 64.202.112.255:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-5Jmmo7pESpnFlpU9NRt-ooL3Sxt6RtqEcrTB5A HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 08:21:57 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: 67ea657fd5fa48ef39e678b8560de8cd
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
37.252.171.53302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 37.252.171.53:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Sat, 26 Nov 2022 08:21:57 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: 009adf07-3971-4c1d-8c2c-c78ba35312c1
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1003.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
dpm.demdex.net/ibs:dpid=28645&dpuuid=
3.248.12.166302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 3.248.12.166:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v045-0480615af.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=65056888441705140983599702260907604820; Max-Age=15552000; Expires=Thu, 25 May 2023 08:21:57 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: 9cChPlEGREU=
Content-Length: 0
Connection: keep-alive
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw&verify=true
18.156.0.31204 No Content 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw&verify=true
IP 18.156.0.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-1TT_ULpESpnFlpU9NRt-ooL3SxsrAlL5NOZ_Bw&verify=true HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 08:21:57 GMT
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
strict-transport-security: max-age=31536000
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBKXMgWMCEABeKwxcgtHcRxI_1JyAtD4FEgEBAQEeg2OLYwAAAAAA_eMAAA&S=AQAAArYMlcghLjDkDu2RKBFYDk4; Expires=Sun, 26 Nov 2023 14:21:57 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA
18.194.84.147302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA
IP 18.194.84.147:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA
set-cookie: tuuid=6da7a1d9-ddb1-43a2-a96f-f6b84fb1b69f; Expires=Fri, 24 Feb 2023 08:21:57 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1669450917; Expires=Fri, 24 Feb 2023 08:21:57 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
api.amplitude.com/
34.216.61.235200 OK 0 B IP 34.216.61.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: api.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cross-origin-resource-policy
Referer: https://getjobber.com/
Origin: https://getjobber.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: cross-origin-resource-policy
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 537295b5c53dc28f543646edc80ee864
2332c81e46f50b3b3c8d2d4c9b150925d60e884a
a0e75c4d23385b6b689acbcb8fa379659530d7988caab6893706fd4a1a31ef1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2169
Cache-Control: max-age=122614
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:57 GMT
Etag: "63810022-117"
Expires: Sun, 27 Nov 2022 18:25:31 GMT
Last-Modified: Fri, 25 Nov 2022 17:49:22 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
3.248.12.166200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 3.248.12.166:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v045-02fbabcd7.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: PfzhTwDZRzM=
Content-Length: 59
Connection: keep-alive
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-jc4qVrpESpnFlpU9NRt-ooL3SxspPrIqXaj-hA
141.226.228.48200 OK 1.4 kB URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-jc4qVrpESpnFlpU9NRt-ooL3SxspPrIqXaj-hA
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
Hash e78dc07a0aa0d48eb501cfa81f1fe76b
2417e0ec756185461f1c01d5a005cd45d8e74c04
1515285ce89f00365dd73810c33e464ca1b0746c1d3e2a2256d5e1f7503aea27
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-jc4qVrpESpnFlpU9NRt-ooL3SxspPrIqXaj-hA HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 08:21:57 GMT
x-fastly-to-nlb-rtt: 26176
access-control-allow-credentials: true
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_error=3
178.250.2.151200 OK 1.5 kB URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_error=3
IP 178.250.2.151:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 314bab7b32fa80834bc4d9376f8b83f2
1767897b70a62b8fa0c83af200a0e5101ef6e588
d8b341ef5fe9c65601950766dcffefa6ed76cb48cf6656376e51abc341915eea
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 282247
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA
18.194.84.147200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA
IP 18.194.84.147:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-zNj6D7pESpnFlpU9NRt-ooL3Sxvf2rt8fF7tkA HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=14530168&ct=standard-page&rcu=https%3A%2F%2Fgetjobber.com%2F&pu=https%3A%2F%2Fgetjobber.com%2F&t=Jobber%3A+The+%231+Service+Scheduling+Software+%26+App+in+2022+%7C+Try+for+Free&cts=1669450916519&vi=64fb414df5426f4943dc247e8bc7751a&nc=true&u=257010644.64fb414df5426f4943dc247e8bc7751a.1669450916517.1669450916517.1669450916517.1&b=257010644.1.1669450916517&cc=15
104.19.154.83200 OK 45 B URL HTTP/2 track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=14530168&ct=standard-page&rcu=https%3A%2F%2Fgetjobber.com%2F&pu=https%3A%2F%2Fgetjobber.com%2F&t=Jobber%3A+The+%231+Service+Scheduling+Software+%26+App+in+2022+%7C+Try+for+Free&cts=1669450916519&vi=64fb414df5426f4943dc247e8bc7751a&nc=true&u=257010644.64fb414df5426f4943dc247e8bc7751a.1669450916517.1669450916517.1669450916517.1&b=257010644.1.1669450916517&cc=15
IP 104.19.154.83:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c8817d472077ebfc04593c1fa019d32d
e1e86f41c86c7b9cd2e8b76c6a925a1a3e7e3247
dc111a70984a9eda00752b06277113029ef288f1125c31eff2477413e15e8aa4
GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-us&bfp=504767505&v=1.1&a=14530168&ct=standard-page&rcu=https%3A%2F%2Fgetjobber.com%2F&pu=https%3A%2F%2Fgetjobber.com%2F&t=Jobber%3A+The+%231+Service+Scheduling+Software+%26+App+in+2022+%7C+Try+for+Free&cts=1669450916519&vi=64fb414df5426f4943dc247e8bc7751a&nc=true&u=257010644.64fb414df5426f4943dc247e8bc7751a.1669450916517.1669450916517.1669450916517.1&b=257010644.1.1669450916517&cc=15 HTTP/1.1
Host: track.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: image/gif
content-length: 45
cf-ray: 770136ab8f241c12-OSL
cache-control: no-cache, no-store, no-transform
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
p3p: CP="NOI CUR ADM OUR NOR STA NID"
x-hubspot-correlation-id: 42391be8-7978-4a1f-bb73-f1c4eaa17e4d
x-robots-tag: none
set-cookie: __cf_bm=NdosE9O794zTHHH2G77bOFR19fzQNG6pWu5emDOkNOI-1669450917-0-AdPcDYU+ANkEtaGNV2+FK7rhQPzmdf7c0zSQA6EjhUiwgcT+pWSex0QFbWi+Kgou/U6acWfSTVuv9a1aV11qLtA=; path=/; expires=Sat, 26-Nov-22 08:51:57 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rzJ3Blnd08udw3iKdL0gxM1M72ca%2FWm%2BgKwgToFtWAI15i90pIU9hyNxBL04CfdcHL1VhtpJBGx16dNRLwdfY0lrErbTkOqraWILctFky4eooeJN3WZdun5FI9zuXOVNAy9C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
api.amplitude.com/
34.216.61.235200 OK 7 B IP 34.216.61.235:0
File type ASCII text, with no line terminators
Hash 260ca9dd8a4577fc00b7bd5810298076
53a5687cb26dc41f2ab4033e97e13adefd3740d6
aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27
POST / HTTP/1.1
Host: api.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Cross-Origin-Resource-Policy: cross-origin
Content-Length: 1124
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: text/html;charset=utf-8
content-length: 7
access-control-allow-origin: *
access-control-allow-methods: GET, POST
trace-id: Root=1-6381cca5-53299dc549bd43e409668bb6
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=639ac28e-6d63-11ed-8715-1b8aa0c40510&gdpr=&gdpr_consent=
15.197.193.217200 OK 70 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=639ac28e-6d63-11ed-8715-1b8aa0c40510&gdpr=&gdpr_consent=
IP 15.197.193.217:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=639ac28e-6d63-11ed-8715-1b8aa0c40510&gdpr=&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: image/gif
content-length: 70
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:57 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 753622
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 537295b5c53dc28f543646edc80ee864
2332c81e46f50b3b3c8d2d4c9b150925d60e884a
a0e75c4d23385b6b689acbcb8fa379659530d7988caab6893706fd4a1a31ef1a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2169
Cache-Control: max-age=122614
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:21:57 GMT
Etag: "63810022-117"
Expires: Sun, 27 Nov 2022 18:25:31 GMT
Last-Modified: Fri, 25 Nov 2022 17:49:22 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
52.214.172.145204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 52.214.172.145:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Sat, 26 Nov 2022 08:21:57 GMT
set-cookie: _kuid_=POLeal-i; Expires=Thu, 25-May-23 08:21:57 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n020-dub-prod.krxd.net
x-request-time: D=29 t=1669450917
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Sat, 26 Nov 2022 08:21:57 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 373588
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
3.18.143.248200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP 3.18.143.248:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:58 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: 64e0fe10-6d63-11ed-89da-0000ac1702bb
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
insight.adsrvr.org/track/evnt/?adv=j66p0o5&ct=0:m3slopv&fmt=3
15.197.193.217200 OK 70 B URL HTTP/2 insight.adsrvr.org/track/evnt/?adv=j66p0o5&ct=0:m3slopv&fmt=3
IP 15.197.193.217:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 58a7930cd4577fc33c35828c271eab8f
406e57f86dc101e10f3a57be1e2f7b93c4580474
8d70b3e6badb6973663b398d297bb32eaedd08826a1af98d0a1cfce5324ffce0
GET /track/evnt/?adv=j66p0o5&ct=0:m3slopv&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
getjobber.com/favicon.ico
104.22.27.66200 OK 0 B URL HTTP/2 getjobber.com/favicon.ico
IP 104.22.27.66:0
GET /favicon.ico HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0yNlQwODoyMTo1MS4yOTJaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vIiwidXRtX3BhcmFtcyI6InV0bWNjbj1kaXJlY3QifQ==; _gcl_au=1.1.568639239.1669450912; _ga_LQXS6VVFN0=GS1.1.1669450911.1.0.1669450911.60.0.0; _ga=GA1.1.776195483.1669450912; _cq_duid=1.1669450912.5Sgo0iEYLtTn6D1N; _cq_suid=1.1669450912.GI4nPAgRd0loQIA9; _tt_enable_cookie=1; _ttp=5b6fdd30-1a67-48c6-a6b2-34550d5fd9c4; _tq_id.TV-7281904572-1.6f05=86ff4cc148d4fe78.1669450912.0.1669450912..; _uetsid=61e29a006d6311edac5643efe8f3a629; _uetvid=61e2bd106d6311ed9a54c5ceef12ed69
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:54 GMT
content-type: image/x-icon
access-control-allow-origin: *
age: 22676
cache-control: public, max-age=31536000
etag: W/"58adc683-4ce"
expires: Sun, 26 Nov 2023 02:03:58 GMT
last-modified: Wed, 22 Feb 2017 17:12:35 GMT
vary: Accept-Encoding
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,f07c145e3679034196b34239da9c7003786dd6655e5c882df6bbada7df5a1fc5
ki-cache-type: CDN
ki-cf-cache-status: HIT
ki-edge: v=17.9
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R%2Fstcffi3SFXtW2iKMdcxfs8D9x%2B0ns8lW5FMcLo%2BGC2Y%2BHPhMR65LRri8NuZPnw8sREnReBzr6dfCHs2TEKIvwQhldUpgXfV9IVaTtDOmQUt6FZJJ9%2BqRrAYIRTpoE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013694adc7b505-OSL
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.71200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.71:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:53 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 93940
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
getjobber.com/wp-content/plugins/jobberblocks/blocks/resource-grid/resource-grid.bundle.css?v=1669324035
104.22.27.66200 OK 0 B URL HTTP/2 getjobber.com/wp-content/plugins/jobberblocks/blocks/resource-grid/resource-grid.bundle.css?v=1669324035
IP 104.22.27.66:0
GET /wp-content/plugins/jobberblocks/blocks/resource-grid/resource-grid.bundle.css?v=1669324035 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: text/css; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
cf-bgj: minify
cf-polished: origSize=5130
etag: W/"637fdd03-140a"
expires: Tue, 23 Nov 2032 02:03:54 GMT
ki-cf-cache-status: SAVING
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:07:15 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MH2%2FvK%2FLyCwGO%2FGkAi1VTK9st1ksSRMoCdjVUPkrInlVk7hEMFDeesRcsWec3obeRvU6GL3k6jLKYBzZyV%2FspqCz%2FtxBPKyGnC1qiKBou0DxPR7Bw33a1cCe1%2FroVu4%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,f69e085d26f6f29799a59780a285be0450bcc1f942c48972a0db8a4f8d93ceb4
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
age: 22677
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685ae85b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.hs-analytics.net/analytics/1669450800000/14530168.js
104.17.69.176200 OK 0 B URL HTTP/2 js.hs-analytics.net/analytics/1669450800000/14530168.js
IP 104.17.69.176:0
GET /analytics/1669450800000/14530168.js HTTP/1.1
Host: js.hs-analytics.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: text/javascript
x-amz-id-2: 7oS2EmLuGs84a+OULbo9eZoZ/6m0AEmqSHYncOIqGoa4vFUAgLH9+hntxGUFspqqHaW0XMGbnFA=
x-amz-request-id: ZBPMQ11EVHKAQPPX
last-modified: Mon, 14 Nov 2022 22:25:52 GMT
etag: W/"aec379f9c9484c13d02314c10354abcc"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: null
access-control-allow-credentials: false
vary: origin, Accept-Encoding
expires: Sat, 26 Nov 2022 08:26:57 GMT
cf-cache-status: MISS
server: cloudflare
cf-ray: 770136a72813b518-OSL
content-encoding: br
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=onetag&domain=getjobber.com&sn=FirefoxSyncframe&so=0&topUrl=getjobber.com&info=rMuy4V80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRmV3BGUWt3b1F2VmtITGl2NFBLYnpDZ1NWZzdXNkQlMkJWMGl0TlhrTHhLSQ&idsd=-1446119637,-198099438&cw=1&lsw=1
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=getjobber.com&sn=FirefoxSyncframe&so=0&topUrl=getjobber.com&info=rMuy4V80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRmV3BGUWt3b1F2VmtITGl2NFBLYnpDZ1NWZzdXNkQlMkJWMGl0TlhrTHhLSQ&idsd=-1446119637,-198099438&cw=1&lsw=1
IP 178.250.2.146:0
GET /sid/json?origin=onetag&domain=getjobber.com&sn=FirefoxSyncframe&so=0&topUrl=getjobber.com&info=rMuy4V80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRmV3BGUWt3b1F2VmtITGl2NFBLYnpDZ1NWZzdXNkQlMkJWMGl0TlhrTHhLSQ&idsd=-1446119637,-198099438&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=getjobber.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:55 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 956376
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.57.101200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.57.101:0
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 770136865e050b69-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js-na1.hs-scripts.com/14530168.js
104.17.210.204200 OK 0 B URL HTTP/2 js-na1.hs-scripts.com/14530168.js
IP 104.17.210.204:0
GET /14530168.js HTTP/1.1
Host: js-na1.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B444C892716B37709FDE65BCF4465F33A776B5C94000000000000000000
cache-control: public, max-age=30
vary: origin, Accept-Encoding
x-hubspot-correlation-id: 42cc9f38-fa8a-4f8e-a3f1-8a7618e14bfe
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://getjobber.com
last-modified: Sat, 26 Nov 2022 08:10:45 GMT
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 770136a97f600af6-OSL
content-encoding: br
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C7Q5I8D0NM9PPK6K6R40&lib=ttq
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C7Q5I8D0NM9PPK6K6R40&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/events.js?sdkid=C7Q5I8D0NM9PPK6K6R40&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211260821526B38E2DB32C32EA1FC81
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601c5f6a04a777121cde7d9af65489455e7cd722fe58456d11c8ab1ac716c9fd4b2f8e38d997bfb54e97835a09f41aef9fcacc4890055e1c8a1f05b43d04be4d0c
content-encoding: gzip
expires: Sat, 26 Nov 2022 08:21:52 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:52 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=0, origin; dur=98
x-origin-response-time: 98,23.36.79.13
x-akamai-request-id: 8158902e
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/assets/theme.bundle.css?ver=1669323996
104.22.27.66200 OK 0 B URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/assets/theme.bundle.css?ver=1669323996
IP 104.22.27.66:0
GET /wp-content/themes/jobber-bold/assets/theme.bundle.css?ver=1669323996 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: text/css; charset=UTF-8
access-control-allow-origin: *
age: 22678
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=113027
etag: W/"637fdcdc-1b983"
expires: Sun, 26 Nov 2023 02:03:53 GMT
ki-cf-cache-status: HIT
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:06:36 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LxLhNcZ4VVydk6yh1ZXC97b%2FqxG6%2Bwisx65wTQYRRVyoWOyKN8tvIhsvqP7JIxbsAANBXWYkIKCOOQ8uCZlb%2FLZU5ELnowDY7iq8U2PDeeDTI8rDxzvo5e5bCiBMhdI%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,ccbcf4d50b5d3b9c2c2095d2ab40eb5447c9d6a6dbf77a01069fdcf062ca12a3
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685be8bb505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ag.gbc.criteo.com/newidsd
185.235.84.18200 OK 0 B URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 185.235.84.18:0
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:53 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 106473
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
getjobber.com/wp-content/plugins/jobberblocks/blocks/card-grid/card-grid.bundle.css?v=1669324017
104.22.27.66200 OK 0 B URL HTTP/2 getjobber.com/wp-content/plugins/jobberblocks/blocks/card-grid/card-grid.bundle.css?v=1669324017
IP 104.22.27.66:0
GET /wp-content/plugins/jobberblocks/blocks/card-grid/card-grid.bundle.css?v=1669324017 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: text/css; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
cf-bgj: minify
cf-polished: origSize=1216
etag: W/"637fdcf1-4c0"
expires: Tue, 23 Nov 2032 02:03:54 GMT
ki-cf-cache-status: SAVING
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:06:57 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XRnQvi2Lg5wMKzCFIJI%2FSYVqN%2FZ7Y3B2B3HM8PVeyS%2BwF6gJa1lddLud6DO431dzmetcZt1MUFnvmppAultQkS4UbIcxAD4M%2F%2FDJNmbGtyz3ghzClo5uENkZ2ha7Lvc%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,0f75d019d089009aebe07dceb9923a9c888259b3759449e629e40fd9491693df
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
age: 22677
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685ae81b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 0 B IP 178.250.0.157:0
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=f4tMQV80M0RITmhlJTJCZkMwOUJGQlhaMUN2czRmV3BGUWt3b1F2VmtITGl2NFBLYnhHZEt3N21FeGQyQVppSWxlbHUlMkI2Wg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:53 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=VMpSU180M0RITmhlJTJCZkMwOUJGQlhaMUN2czRmV3BGUWt3b1F2VmtITGl2NFBLYnpEc2IyVHVYRWxGa1R1M3l5eWw5Vkk; expires=Thu, 21 Dec 2023 08:21:54 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 391362
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
getjobber.com/wp-content/plugins/jobberblocks/blocks/t3-testimonials/t3-testimonials.bundle.css?v=1669324046
104.22.27.66200 OK 0 B URL HTTP/2 getjobber.com/wp-content/plugins/jobberblocks/blocks/t3-testimonials/t3-testimonials.bundle.css?v=1669324046
IP 104.22.27.66:0
GET /wp-content/plugins/jobberblocks/blocks/t3-testimonials/t3-testimonials.bundle.css?v=1669324046 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: text/css; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
cf-bgj: minify
cf-polished: origSize=3044
etag: W/"637fdd0e-be4"
expires: Tue, 23 Nov 2032 02:03:53 GMT
ki-cf-cache-status: SAVING
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:07:26 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HcH04k3yYMromcKqYOx15Nz%2FP2ZIFGSgCFa5Smb3vn7x%2FMq%2BqzTacOQwYzdIMl42zKC0SF025WXKB9xrWtYEXlIzuyITpPtFTWkj%2BvKf4twVOBdFwb73L4HLgnHz9w0%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,6028c8be5f54840148b2314c4d203ea646f98b15fe1153749f61145ef46a6410
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
age: 22678
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685be89b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
getjobber.com/wp-content/plugins/jobberblocks/blocks/jobber-signup-form-cta/jobber-signup-form-cta.bundle.css?v=1669324029
104.22.27.66200 OK 0 B URL HTTP/2 getjobber.com/wp-content/plugins/jobberblocks/blocks/jobber-signup-form-cta/jobber-signup-form-cta.bundle.css?v=1669324029
IP 104.22.27.66:0
GET /wp-content/plugins/jobberblocks/blocks/jobber-signup-form-cta/jobber-signup-form-cta.bundle.css?v=1669324029 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: text/css; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
cf-bgj: minify
cf-polished: origSize=4056
etag: W/"637fdcfd-fd8"
expires: Tue, 23 Nov 2032 02:03:53 GMT
ki-cf-cache-status: SAVING
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:07:09 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TQMnWlGmhAYd4AzdbU2lJGIpZDnHVmAo8CL6CmwszvJ7pMmccx52p3KYSWtNRf5P29Y7ImOq%2BTGZn9ht03EiVsEZeLlDIYxuR%2FjshHXDUMppk4DWngnjchIdVaWlNN4%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,8cfeb2be9c865f349853d5a36d60a48aa18557ae01e9d3b08ad572f44b9e304c
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
age: 22678
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685ae83b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/jquery.min.js?ver=6.0.2
104.22.27.66200 OK 0 B URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/jquery.min.js?ver=6.0.2
IP 104.22.27.66:0
GET /wp-content/themes/jobber-bold/scripts/vendor/jquery.min.js?ver=6.0.2 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
content-encoding: gzip
etag: W/"637fdd30-152f7"
expires: Tue, 23 Nov 2032 02:03:53 GMT
last-modified: Thu, 24 Nov 2022 21:08:00 GMT
vary: Accept-Encoding
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,431ab57ccc590bb3b0703485874638d6007f00fb807751d2203f6b12db06964c
ki-cache-type: CDN
ki-cf-cache-status: SAVING
ki-edge: v=17.9
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O7lmUPjIinY9DEl%2F0Tc%2B1aRwFxDRgFTxwzXgVyo%2FIM5AJiDplg%2BQV14qTlD58paKj2OJwDZPp0W29dVG4EHCg83rSb4mmPkhjgDoh9S0gqtfZWdGAj4eiDQpD8Ei%2FSU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
cf-cache-status: HIT
age: 22678
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685be8cb505-OSL
X-Firefox-Spdy: h2
assets.ubembed.com/universalscript/releases/v0.179.2/bundle.js
143.204.55.114200 OK 0 B URL HTTP/2 assets.ubembed.com/universalscript/releases/v0.179.2/bundle.js
IP 143.204.55.114:0
GET /universalscript/releases/v0.179.2/bundle.js HTTP/1.1
Host: assets.ubembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 03 Sep 2022 23:09:05 GMT
last-modified: Tue, 05 Apr 2022 16:31:05 GMT
etag: W/"359008fe01078c59c66e034866170bd2"
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: SSpSh9obNBNw6el1-QFocolqZfRYziX4ws87_nTXBdkIU8SFiJvtOA==
age: 7204370
X-Firefox-Spdy: h2
getjobber.com/wp-content/plugins/jobberblocks/blocks/video-timeline/video-timeline.bundle.css?v=1669324052
104.22.27.66200 OK 0 B URL HTTP/2 getjobber.com/wp-content/plugins/jobberblocks/blocks/video-timeline/video-timeline.bundle.css?v=1669324052
IP 104.22.27.66:0
GET /wp-content/plugins/jobberblocks/blocks/video-timeline/video-timeline.bundle.css?v=1669324052 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: text/css; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
cf-bgj: minify
cf-polished: origSize=11056
etag: W/"637fdd14-2b30"
expires: Tue, 23 Nov 2032 02:03:53 GMT
ki-cf-cache-status: SAVING
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:07:32 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6cZeGIxshT5OC23SxYNjXivbWoLo5yEHsKyjaRchPii0aUxSZdPzUT0TAzTjlzyte9Y5iX7laf%2BkGD%2Fhnqzv1eedxVkM0mlUkggRHXWsNaYPihF5K%2Bv%2F52KsVJgHsx0%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,a6016b02f27a9893581da164f9bfbf775106d18950e84da4a39f0d6375b3f484
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
age: 22678
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685be8ab505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/skip-link-focus-fix.js?ver=20151215
104.22.27.66200 OK 0 B URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/skip-link-focus-fix.js?ver=20151215
IP 104.22.27.66:0
GET /wp-content/themes/jobber-bold/scripts/vendor/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
cf-bgj: minify
cf-polished: origSize=685
etag: W/"637fdd30-2ad"
expires: Tue, 23 Nov 2032 02:03:53 GMT
ki-cf-cache-status: SAVING
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:08:00 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pbh6tC6PTSuEwcP%2FH2txakKEyCgdobj8oACIzD0l4Iat6q%2BdIHzqmSfLrdewd4P%2BXWvVozNMH2nVFFXNF1%2Brek5Qb9g2F4H8Ak8ymCY9a4pa0BvSsJuu%2BBV9BEoUkOM%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,2490ab76b6018fa95f1c7b761137a6d5a894a1263a19f9f002a547e1de4fadd2
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
age: 22678
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685ceacb505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
secure.getjobber.com/website_js.js?skip_cookie_check=true&ver=6.0.2
104.22.27.66200 OK 0 B URL HTTP/2 secure.getjobber.com/website_js.js?skip_cookie_check=true&ver=6.0.2
IP 104.22.27.66:0
GET /website_js.js?skip_cookie_check=true&ver=6.0.2 HTTP/1.1
Host: secure.getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:52 GMT
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
etag: W/"4dc527b1e9a053863c25a1c03fac2a61"
x-request-id: cefbecdb-ba66-44c6-90b4-3073b21e4a88
x-runtime: 0.019050
strict-transport-security: max-age=2592000; includeSubDomains
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
content-security-policy: default-src *; base-uri 'self'; child-src blob: *; connect-src *; font-src data: *; form-action *; frame-ancestors 'self'; frame-src *; img-src data: *; media-src blob: *; script-src 'unsafe-inline' 'unsafe-eval' *; style-src 'unsafe-inline' *; worker-src blob:
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 77013685ceb8b505-OSL
X-Firefox-Spdy: h2
js.hs-banner.com/14530168.js
172.64.154.85200 OK 0 B URL HTTP/2 js.hs-banner.com/14530168.js
IP 172.64.154.85:0
GET /14530168.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:56 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: d02lIVWXSdd0G78UnDkpsZhsxSH5FXlZBeyu6V3IkNsl4+Q0SPaMKFMi3tMLXeF8cYRFi5skFts=
x-amz-request-id: R0P37TTYX1W0HWJP
last-modified: Mon, 14 Nov 2022 22:25:50 GMT
etag: W/"7eb523679bf323763245706270e50a6c"
x-amz-server-side-encryption: AES256
cache-control: max-age=300, public
x-amz-version-id: 50yPKEu4IS2T6neBFdgTcypIKdbUKQ97
access-control-allow-origin: https://secure.getjobber.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Sat, 26 Nov 2022 08:26:56 GMT
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 7701369d9f04b4f4-OSL
content-encoding: br
X-Firefox-Spdy: h2
widget.us.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=cBf9Pl83TW1VQUF1dFFqUGoxeGtDeWQwTlVhYzVWb1lERjRmdTIwMlFZakVpY0xNb1BjMnVjU0s3QUJkZlFDYnByQXRUbDNqa21ud0ROcUVXMkp1blYwaSUyQjZpJTJGNkxNVFBPJTJGQ1ZLODFBQ3NJbGJ6Z0RIViUyRnZQeWFCN2lNdnR6MmZzbzJYT2RRUXdibkpSYllRa2JrR09OczdoUSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=79992
74.119.119.150200 OK 0 B URL HTTP/2 widget.us.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=cBf9Pl83TW1VQUF1dFFqUGoxeGtDeWQwTlVhYzVWb1lERjRmdTIwMlFZakVpY0xNb1BjMnVjU0s3QUJkZlFDYnByQXRUbDNqa21ud0ROcUVXMkp1blYwaSUyQjZpJTJGNkxNVFBPJTJGQ1ZLODFBQ3NJbGJ6Z0RIViUyRnZQeWFCN2lNdnR6MmZzbzJYT2RRUXdibkpSYllRa2JrR09OczdoUSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=79992
IP 74.119.119.150:0
GET /event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=cBf9Pl83TW1VQUF1dFFqUGoxeGtDeWQwTlVhYzVWb1lERjRmdTIwMlFZakVpY0xNb1BjMnVjU0s3QUJkZlFDYnByQXRUbDNqa21ud0ROcUVXMkp1blYwaSUyQjZpJTJGNkxNVFBPJTJGQ1ZLODFBQ3NJbGJ6Z0RIViUyRnZQeWFCN2lNdnR6MmZzbzJYT2RRUXdibkpSYllRa2JrR09OczdoUSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252F&dtycbr=79992 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getjobber.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:56 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 10882797
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-ZfpZ0rpESpnFlpU9NRt-ooL3SxuAm3bRqOuuLUyVy7inHaPp
18.197.215.45200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-ZfpZ0rpESpnFlpU9NRt-ooL3SxuAm3bRqOuuLUyVy7inHaPp
IP 18.197.215.45:0
GET /usersync/push?partner=criteo&partnerId=k-ZfpZ0rpESpnFlpU9NRt-ooL3SxuAm3bRqOuuLUyVy7inHaPp HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: mv_tokens=%7B%22mv_uuid%22%3A%2263c35910-6d63-11ed-b2dd-37d25a4ae6ff%22%2C%22version%22%3A%22eu-v1%22%7D; mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%2263c35910-6d63-11ed-b2dd-37d25a4ae6ff%22%2C%22version%22%3A%22eu-v1%22%7D; am_tokens=%7B%22mv_uuid%22%3A%2263c35910-6d63-11ed-b2dd-37d25a4ae6ff%22%2C%22version%22%3A%22eu-v1%22%7D; am_tokens_eu-v1=%7B%22mv_uuid%22%3A%2263c35910-6d63-11ed-b2dd-37d25a4ae6ff%22%2C%22version%22%3A%22eu-v1%22%7D; criteo=%7B%22id%22%3A%22k-ZfpZ0rpESpnFlpU9NRt-ooL3SxuAm3bRqOuuLUyVy7inHaPp%22%2C%22version%22%3A%22criteo%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%2263c35910-6d63-11ed-b2dd-37d25a4ae6ff%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sat, 10 Dec 2022 08:21:57 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%2263c35910-6d63-11ed-b2dd-37d25a4ae6ff%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sat, 10 Dec 2022 08:21:57 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%2263c35910-6d63-11ed-b2dd-37d25a4ae6ff%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sat, 10 Dec 2022 08:21:57 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%2263c35910-6d63-11ed-b2dd-37d25a4ae6ff%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Sat, 10 Dec 2022 08:21:57 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-ZfpZ0rpESpnFlpU9NRt-ooL3SxuAm3bRqOuuLUyVy7inHaPp%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Sat, 10 Dec 2022 08:21:57 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-9gGZL7pESpnFlpU9NRt-ooL3Sxu3iLDSPyQa_Q
54.224.7.6200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-9gGZL7pESpnFlpU9NRt-ooL3Sxu3iLDSPyQa_Q
IP 54.224.7.6:0
GET /sync?UICR=k-9gGZL7pESpnFlpU9NRt-ooL3Sxu3iLDSPyQa_Q HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
static.criteo.net/js/ld/ld.js
178.250.0.130200 OK 0 B URL HTTP/2 static.criteo.net/js/ld/ld.js
IP 178.250.0.130:0
GET /js/ld/ld.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 08:21:53 GMT
content-type: text/javascript
last-modified: Tue, 08 Nov 2022 15:05:46 GMT
etag: W/"636a704a-a8d9"
expires: Sun, 27 Nov 2022 08:21:53 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
getjobber.com/wp-content/plugins/jobberblocks/blocks/signup-and-image/signup-and-image.bundle.css?v=1669324037
104.22.27.66200 OK 0 B URL HTTP/2 getjobber.com/wp-content/plugins/jobberblocks/blocks/signup-and-image/signup-and-image.bundle.css?v=1669324037
IP 104.22.27.66:0
GET /wp-content/plugins/jobberblocks/blocks/signup-and-image/signup-and-image.bundle.css?v=1669324037 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: text/css; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
cf-bgj: minify
cf-polished: origSize=5888
etag: W/"637fdd05-1700"
expires: Tue, 23 Nov 2032 02:03:53 GMT
ki-cf-cache-status: SAVING
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:07:17 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XkSI%2F%2BAoWaR9aWe%2BNxlNtaAnJf0RWgfe5C0NFaw1rDukBeTRORjbLfAGSnvHA0ZZ71ro7G%2F7D%2BA4MH3dl3GDeuZKjL5EFSrloZVeK6ZxVha6vDqEA1vvKTGIsEMV7A4%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,a6f179576a1ea1ab747916f4c426d261cbb462cc18d546eedb29a5a0c3d7094b
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
age: 22678
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685be87b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
gum.criteo.com/syncframe?topUrl=getjobber.com&origin=onetag
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/syncframe?topUrl=getjobber.com&origin=onetag
IP 178.250.2.146:0
GET /syncframe?topUrl=getjobber.com&origin=onetag HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:52 GMT
content-type: text/html; charset=utf-8
server: Kestrel
cache-control: private, max-age=3600
set-cookie: uid=35729662-44de-40cf-ae7e-d352975566cc; expires=Thu, 21 Dec 2023 08:21:52 GMT; domain=.criteo.com; path=/; secure; samesite=none
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
server-processing-duration-in-ticks: 554445
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C7Q5I8D0NM9PPK6K6R40&lib=ttq
23.36.79.17200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C7Q5I8D0NM9PPK6K6R40&lib=ttq
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/events.js?sdkid=C7Q5I8D0NM9PPK6K6R40&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2I4przXJSuH40tSLxoZDHC2XoLA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022112608215529726E1FB374E29BBF47
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf601c5f6a04a777121cde7d9af65489455eb98b6890edb3007054f636d3df125944e4f4c0c53e9f6daf6ad97640e9fec2236aa34578cee3846f7be0d2809e3c0e48
content-encoding: gzip
expires: Sat, 26 Nov 2022 08:21:55 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Sat, 26 Nov 2022 08:21:55 GMT
x-cache: TCP_MISS from a23-36-79-13.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=2, cdn-cache; desc=MISS, edge; dur=0, origin; dur=98
x-origin-response-time: 98,23.36.79.13
x-akamai-request-id: 8158a2aa
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_error=3
178.250.2.151200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_error=3
IP 178.250.2.151:0
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-iGwgRbpESpnFlpU9NRt-ooL3SxvuM7wDxpj3Kg&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:55 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 127680
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
unpkg.com/web-vitals@3.1.0/dist/web-vitals.iife.js
104.16.122.175200 OK 0 B URL HTTP/2 unpkg.com/web-vitals@3.1.0/dist/web-vitals.iife.js
IP 104.16.122.175:0
GET /web-vitals@3.1.0/dist/web-vitals.iife.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getjobber.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:52 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1b9c-Ooy//WAzbji1e0z3xvTKf9F/+q0"
via: 1.1 fly.io
fly-request-id: 01GHZ0FXD1NMAT010FK6S64REE-fra
cf-cache-status: HIT
age: 889148
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7701368c3f40fab8-OSL
content-encoding: br
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.71200 OK 0 B URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.71:0
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:53 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 104609
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.2.151200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.2.151:0
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:57 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 640611
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
getjobber.com/wp-content/plugins/jobberblocks/blocks/image-video/image-video.frontend.bundle.js?ver=1669324024
104.22.27.66200 OK 0 B URL HTTP/2 getjobber.com/wp-content/plugins/jobberblocks/blocks/image-video/image-video.frontend.bundle.js?ver=1669324024
IP 104.22.27.66:0
GET /wp-content/plugins/jobberblocks/blocks/image-video/image-video.frontend.bundle.js?ver=1669324024 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
age: 22678
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=3645
etag: W/"637fdcf8-e3d"
expires: Sun, 26 Nov 2023 02:03:53 GMT
ki-cf-cache-status: HIT
ki-edge-o2o: yes
last-modified: Thu, 24 Nov 2022 21:07:04 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qv53FzJRkHcb5968kHrt1wwkb7vx5%2Bgu%2FLSEgJnOfubSB5c2SwplktVnms1PbwoRIezcRfedQrW86PHLAfJI34iG50Mo%2FjohRw5pscpdV5Zlmm2VpI1vF8pfLPkuJXY%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,87b0483fde2ab9c07195a7452be073236e8fa796ad8080938daddafe046f5453
ki-cache-type: CDN
ki-edge: v=17.9
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685cea6b505-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.hsadspixel.net/fb.js
104.17.115.176200 OK 0 B IP 104.17.115.176:0
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:55 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 14 Nov 2022 03:38:56 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: aoUPWE.Bu9NRjxDy7F1Soox3yNWe2Us6
etag: W/"c32a10854f4ff995fc7198ba0324bcc6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76e55a2361219fb19722e949475d1844.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: smhvQzjcFZrUF_W80GOlXD1DdtGd0AC68U0HlvjmUpwB5gIHEEOtRA==
age: 116
cache-control: max-age=600
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=adsscriptloaderstatic/static-1.302/bundles/pixels-release.js&cfRay=76d6427b4847b506-IAD
x-hs-target-asset: adsscriptloaderstatic/static-1.302/bundles/pixels-release.js
x-hs-cache-status: HIT
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 7701369d7cc8b4ff-OSL
content-encoding: br
X-Firefox-Spdy: h2
getjobber.com/wp-content/plugins/svg-support/js/min/svgs-inline-min.js?ver=1.0.1
104.22.27.66200 OK 0 B URL HTTP/2 getjobber.com/wp-content/plugins/svg-support/js/min/svgs-inline-min.js?ver=1.0.1
IP 104.22.27.66:0
GET /wp-content/plugins/svg-support/js/min/svgs-inline-min.js?ver=1.0.1 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:21:51 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
age: 22678
cache-control: public, max-age=31536000
etag: W/"6335f2d4-601"
expires: Sun, 26 Nov 2023 02:03:53 GMT
last-modified: Thu, 29 Sep 2022 19:32:36 GMT
vary: Accept-Encoding
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,4372811da1da10855b2dc1e552a7ea0ce4c7bfb726052f2d895f999a53f02544
ki-cache-type: CDN
ki-cf-cache-status: HIT
ki-edge: v=17.9
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tx3x6EbcJfgtHjMuVzbik3voDoA0FuGvwmMnhr1zmhCrZG886F4%2Bq7KtK%2FASkv1nY1RrfkNuKTcIP6teskl10zW901KqxXRRgRa1vIzcodUQL7uHeWQ0oc9Wmj3O9xs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 77013685ceaab505-OSL
X-Firefox-Spdy: h2