trail.upshift-workers.com/api/t/c/usr_MBhiawJaCdYMfNJGZ/tsk_cMPJJoKLcghiQqWLA/enc_U2FsdGVkX1_wMv1puOybujwRqelbyHgvqkAjuSMdIEbE0uu6Gqup_KBcWhu0x6TL
496 B URL trail.upshift-workers.com/api/t/c/usr_MBhiawJaCdYMfNJGZ/tsk_cMPJJoKLcghiQqWLA/enc_U2FsdGVkX1_wMv1puOybujwRqelbyHgvqkAjuSMdIEbE0uu6Gqup_KBcWhu0x6TL
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a707d1827b430be3e44c3fda9730054c
d9d5e7acc5ebbea171e9828d1fe3f582f4b57f26
2eae8158d14d26dceb21cc872cc58723f376bf03a8c85918898132918fbbf226
GET /api/t/c/usr_MBhiawJaCdYMfNJGZ/tsk_cMPJJoKLcghiQqWLA/enc_U2FsdGVkX1_wMv1puOybujwRqelbyHgvqkAjuSMdIEbE0uu6Gqup_KBcWhu0x6TL HTTP/1.1
Host: trail.upshift-workers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
alt-svc: h3=":443"; ma=2592000
content-type: text/html
date: Tue, 05 Dec 2023 15:52:33 GMT
server:
x-cache-debug: custom.track
content-length: 496
X-Firefox-Spdy: h2
trail.upshift-workers.com/favicon.ico
0 B URL trail.upshift-workers.com/favicon.ico
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: trail.upshift-workers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trail.upshift-workers.com/api/t/c/usr_MBhiawJaCdYMfNJGZ/tsk_cMPJJoKLcghiQqWLA/enc_U2FsdGVkX1_wMv1puOybujwRqelbyHgvqkAjuSMdIEbE0uu6Gqup_KBcWhu0x6TL
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
alt-svc: h3=":443"; ma=2592000
cache-control: max-age=86400
server:
strict-transport-security: max-age=31536000;
x-cache-debug: custom.cache
content-length: 0
date: Tue, 05 Dec 2023 15:52:34 GMT
X-Firefox-Spdy: h2
301 Moved Permanently 162 B URL User Request GET HTTP/2 IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: www.upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://trail.upshift-workers.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 05 Dec 2023 15:52:34 GMT
content-type: text/html
content-length: 162
location: https://upshift.work/
strict-transport-security: max-age=31536000
x-ac: 3.arn BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/themes/uncode/style.css
200 OK 375 B URL GET HTTP/2 upshift.work/wp-content/themes/uncode/style.css
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
Hash e0eab226c7bd1ae721440c5b4579c004
6f6742c002358c35e57278d7c1ac740cbac6bc7f
a0ebbb18eb9add27351b82c2bb8ebe8f4552c71ddaeeacdfc53e22c770179994
GET /wp-content/themes/uncode/style.css HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: text/css
content-length: 375
strict-transport-security: max-age=31536000
last-modified: Thu, 09 Nov 2023 00:13:49 GMT
etag: "654c243d-177"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
accept-ranges: bytes
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/uploads/2017/03/upshift_mono_white.png
200 OK 5.6 kB URL GET HTTP/2 upshift.work/wp-content/uploads/2017/03/upshift_mono_white.png
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type PNG image data, 594 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 779053017f52fcbc7769722d8fd1bb34
9064261e506346cff34af960b4b066f9127a1f5a
f6c9e760a9f1650f5df5b9867ed81e68740b56cbdf3e713b3666e5765c61d5ab
GET /wp-content/uploads/2017/03/upshift_mono_white.png HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: image/png
content-length: 5586
strict-transport-security: max-age=31536000
last-modified: Thu, 06 Jun 2019 13:30:16 GMT
etag: "5cf91568-15d2"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
accept-ranges: bytes
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/uploads/2021/04/Upshift-logo.png
200 OK 8.6 kB URL GET HTTP/2 upshift.work/wp-content/uploads/2021/04/Upshift-logo.png
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type PNG image data, 314 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash ada3bba34e61d2b920ad65d3a6cc2e11
d88cb758dc32f2fea41aaae6f95dbf72badf1b11
c14ef347fb613d720d417a6d3b860048a94bd4ba45421df273a3ac025cde06ee
GET /wp-content/uploads/2021/04/Upshift-logo.png HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: image/png
content-length: 8571
strict-transport-security: max-age=31536000
last-modified: Tue, 06 Apr 2021 05:43:01 GMT
etag: "606bf4e5-217b"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
accept-ranges: bytes
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/themes/uncode/library/fonts/uncode-icons.woff2
200 OK 149 kB URL GET HTTP/2 upshift.work/wp-content/themes/uncode/library/fonts/uncode-icons.woff2
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type Web Open Font Format (Version 2), TrueType, length 149272, version 1.0\012- data
Size 149 kB (149272 bytes)
Hash d9b6112903b2ebb907482b186c436ae7
d02aeaa564bc40d8766fad96fe902d9c121ad820
e42e625e975aeb9468c9916874c51a821639d9714ad8886f8dc7579a3996ed40
GET /wp-content/themes/uncode/library/fonts/uncode-icons.woff2 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/font-woff2
content-length: 149272
strict-transport-security: max-age=31536000
last-modified: Thu, 09 Nov 2023 00:13:49 GMT
etag: "654c243d-24718"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
accept-ranges: bytes
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/uploads/2023/05/Group-2602-2.png
200 OK 59 kB URL GET HTTP/2 upshift.work/wp-content/uploads/2023/05/Group-2602-2.png
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type PNG image data, 588 x 698, 8-bit colormap, non-interlaced\012- data
Hash 46f8860f6c4507165d8298fd74d7999f
f3d366752bc8cab61caccaa78dd92da52fa1206e
76b75cd8aca8e7e419127c54b17f4bbfc9e3188001cfdc7d034831c1304005af
GET /wp-content/uploads/2023/05/Group-2602-2.png HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: image/png
content-length: 59106
strict-transport-security: max-age=31536000
last-modified: Mon, 15 May 2023 16:02:55 GMT
etag: "646257af-e6e2"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
accept-ranges: bytes
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/plugins/segment-integration/assets/js/events.js?ver=1701785520
200 OK 3.3 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/plugins/segment-integration/assets/js/events.js?ver=1701785520
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (626)
Hash 05a62a5add08b54b9539f1a133e493c0
f600d798481eb4fece6b18286e6a5a78ce69cc25
96235955b9a40739d42c24406f0036313df95482d75e01899e1b876ba99abf3a
GET /wp-content/cache/min/1/wp-content/plugins/segment-integration/assets/js/events.js?ver=1701785520 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:12:00 GMT
vary: Accept-Encoding
etag: W/"656f2fb0-168e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/uploads/2023/05/Frame-1328-3.png
200 OK 86 kB URL GET HTTP/2 upshift.work/wp-content/uploads/2023/05/Frame-1328-3.png
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type PNG image data, 692 x 756, 8-bit colormap, non-interlaced\012- data
Hash 1d76bc5e723915ba4a378479bebb375a
cad9ba44d3a67e3088b6ccece3bbf0cb2a61ccd2
d44920afd8bec756d90aa2ebecc01b3f9aa944323ff7bb2c5fc79b0686f4c74d
GET /wp-content/uploads/2023/05/Frame-1328-3.png HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: image/png
content-length: 85627
strict-transport-security: max-age=31536000
last-modified: Wed, 10 May 2023 11:45:54 GMT
etag: "645b83f2-14e7b"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
accept-ranges: bytes
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
fonts-api.wp.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=devanagari%2Clatin%2Clatin-ext
200 OK 1.6 kB URL GET HTTP/2 fonts-api.wp.com/css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=devanagari%2Clatin%2Clatin-ext
IP
Certificate IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash ed37cb3e30dab9e25950b7494e182d31
a2a532db66ce98737ca22fc85b7c28ae583e8901
549b99d3c9dd87908c02757bb70f8ad4717e4f86da6c0c490b45aa9b638943df
GET /css?family=Poppins%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2Cregular%2Citalic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&subset=devanagari%2Clatin%2Clatin-ext HTTP/1.1
Host: fonts-api.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
vary: Accept-Encoding, Accept-Encoding
alt-svc: h3=":443"; ma=86400
x-nc: BYPASS arn 2
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-5Z99TX7
200 OK 111 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5Z99TX7
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type Unicode text, UTF-8 text, with very long lines (53703)
Size 111 kB (111405 bytes)
Hash 9d51d960c1744cff90afe107233b4e77
3d720e036f20af564b136b45bfd1fad5e227ce8d
67b1f2a5d0801393b03842f1a3018e1380478d1856af177950792e2b027ae6e2
GET /gtm.js?id=GTM-5Z99TX7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 15:52:35 GMT
expires: Tue, 05 Dec 2023 15:52:35 GMT
cache-control: private, max-age=900
last-modified: Tue, 05 Dec 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 111405
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
upshift.work/wp-includes/js/jquery/jquery.min.js
200 OK 113 kB URL GET HTTP/2 upshift.work/wp-includes/js/jquery/jquery.min.js
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (65447)
Size 113 kB (112712 bytes)
Hash 826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Mon, 28 Aug 2023 17:14:23 GMT
vary: Accept-Encoding
etag: W/"64ecd5ef-15601"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/plugins/uncode-privacy/assets/css/uncode-privacy-public.css?ver=1701785519
200 OK 77 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/plugins/uncode-privacy/assets/css/uncode-privacy-public.css?ver=1701785519
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (16586), with no line terminators
Hash 3edab43f40fe47bd564917a622b7d3c6
25f5db289a73971c48ee2ace0f992375d59bf8ed
2c22e7c92961302fadff87be286ad962b1383e7bc035642d8191980ba3c76f7c
GET /wp-content/cache/min/1/wp-content/plugins/uncode-privacy/assets/css/uncode-privacy-public.css?ver=1701785519 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: text/css
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:11:59 GMT
vary: Accept-Encoding
etag: W/"656f2faf-40ca"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/themes/uncode/library/js/init.js
200 OK 123 kB URL GET HTTP/2 upshift.work/wp-content/themes/uncode/library/js/init.js
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type Unicode text, UTF-8 text, with very long lines (442)
Size 123 kB (122884 bytes)
Hash d404d5793c016b546988a3dd3e2ad7b8
36b38e82f14cfc2a52b05c60598e04e0447cd482
30cd1bac905e0f36ae48f1748d60d84140fb0d19af8085338265ff2a3345f9d1
GET /wp-content/themes/uncode/library/js/init.js HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Thu, 09 Nov 2023 00:13:49 GMT
vary: Accept-Encoding
etag: W/"654c243d-280e4"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
pixel.wp.com/g.gif?v=ext&blog=213599931&post=278432&tz=0&srv=upshift.work&hp=atomic&ac=2&=0&j=1%3A12.9-beta&host=upshift.work&ref=https%3A%2F%2Ftrail.upshift-workers.com%2F&fcp=1937&rand=0.803687992978866
200 OK 50 B URL GET HTTP/2 pixel.wp.com/g.gif?v=ext&blog=213599931&post=278432&tz=0&srv=upshift.work&hp=atomic&ac=2&=0&j=1%3A12.9-beta&host=upshift.work&ref=https%3A%2F%2Ftrail.upshift-workers.com%2F&fcp=1937&rand=0.803687992978866
IP
Certificate IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&blog=213599931&post=278432&tz=0&srv=upshift.work&hp=atomic&ac=2&=0&j=1%3A12.9-beta&host=upshift.work&ref=https%3A%2F%2Ftrail.upshift-workers.com%2F&fcp=1937&rand=0.803687992978866 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:36 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
fonts.wp.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
200 OK 7.9 kB URL GET HTTP/2 fonts.wp.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
Certificate IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:36 GMT
content-type: font/woff2
content-length: 7884
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 458319
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2
upshift.work/wp-includes/css/dist/block-library/style.min.css
200 OK 23 kB URL GET HTTP/2 upshift.work/wp-includes/css/dist/block-library/style.min.css
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (57084)
Hash 99ab466e0866c823ae5db517d59cebd1
5595a586cbd42b31377681b9d35293278d75d336
698b89c0da3d319754d6a837b5e6d4e6a42dc402d9ffd7559b8c4cb29c644340
GET /wp-includes/css/dist/block-library/style.min.css HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: text/css
strict-transport-security: max-age=31536000
last-modified: Sun, 05 Nov 2023 19:40:32 GMT
vary: Accept-Encoding
etag: W/"6547efb0-1add3"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/themes/uncodechildtheme/ipmb-style.css?ver=1701785519
200 OK 24 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/themes/uncodechildtheme/ipmb-style.css?ver=1701785519
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (46135), with no line terminators
Hash 5d69fa2a6a2b8e9b0976c453862df369
d43ebb4a81844bc69211fe262614457403916083
9d99c3c5db69bd5523a69afdbaf4af5a9177a062eb5fe528c074ff35983fce72
GET /wp-content/cache/min/1/wp-content/themes/uncodechildtheme/ipmb-style.css?ver=1701785519 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: text/css
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:11:59 GMT
vary: Accept-Encoding
etag: W/"656f2faf-b437"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
js.hs-scripts.com/9034923.js
200 OK 1.1 kB URL GET HTTP/2 js.hs-scripts.com/9034923.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5A:DE:00:16:F4:3C:EB:0D:2A:0C:6E:27:59:94:38:E3:D9:B1:20:3E
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (539)
Hash e8a16546fd86b2218653190dc32d64b1
e2a92e7f65fde27882231fc70793956718b54582
e380cda8659c1a16d3626aeb6405bf0ed1327989d3e96af6fb762c31b491cab3
GET /9034923.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:36 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2BE5D9BC4ED0011D6CFDB2C7194CEAF3F8C1439324000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
access-control-allow-credentials: true
x-content-type-options: nosniff
access-control-max-age: 3600
access-control-allow-origin: https://upshift.work
x-envoy-upstream-service-time: 6
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-6ffdd984b9-pwmqs
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: d27b34f6-1b35-4e5b-93df-9ae3ee49cfab
x-request-id: d27b34f6-1b35-4e5b-93df-9ae3ee49cfab
last-modified: Tue, 05 Dec 2023 10:43:16 GMT
cf-cache-status: EXPIRED
expires: Tue, 05 Dec 2023 15:53:36 GMT
server: cloudflare
cf-ray: 830d750d1e150b4d-OSL
content-encoding: br
X-Firefox-Spdy: h2
upshift.work/wp-content/plugins/revslider/public/assets/js/rs6.min.js
200 OK 194 kB URL GET HTTP/2 upshift.work/wp-content/plugins/revslider/public/assets/js/rs6.min.js
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 194 kB (194161 bytes)
Hash 0e4ee1e57cfb5ed34b74d82e847ce797
a9358089dd645dfb6fb3e060bdf50c26c160d5fa
44350f3c434ddd70b17e6b0f49398c24efa091ab58e1ab12700acd15962f4374
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Thu, 09 Nov 2023 00:13:29 GMT
vary: Accept-Encoding
etag: W/"654c2429-64229"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/plugins/revslider/public/assets/js/rbtools.min.js
200 OK 154 kB URL GET HTTP/2 upshift.work/wp-content/plugins/revslider/public/assets/js/rbtools.min.js
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (45047)
Size 154 kB (153694 bytes)
Hash 0a7176e860c4303f557950b75fb8a898
c292eb1b902ed06fccd65a684d6b311e1290caa9
c4596b16b126326b0d8fc2fb8bf91389ad3dc4671a269187913c19a8f2ad1094
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Thu, 09 Nov 2023 00:13:29 GMT
vary: Accept-Encoding
etag: W/"654c2429-285db"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=1701785520
200 OK 28 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=1701785520
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (11116), with no line terminators
Hash 37accc3f2e84420e3a1ce1ceea21e48c
d7fef53274588c71aa48b38a247d033833ce0025
9d163e248cdeb7a0c5fb814d9ad2a4dcc647e5da102daa7c24dae60d7e03f6fc
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=1701785520 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:12:00 GMT
vary: Accept-Encoding
etag: W/"656f2fb0-2b6c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-B8JGRCVHB8>m=45je3bt0v888942889z8812841439&_p=1701791560980&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1070852392.1701791562&ul=en-us&sr=1280x1024&_s=1&sid=1701791562&sct=1&seg=0&dl=https%3A%2F%2Fupshift.work%2F&dr=https%3A%2F%2Ftrail.upshift-workers.com%2F&dt=We%20Make%20Work%20Better-%20for%20People%20and%20Businesses%20%7C%20Staffing%20Redefined%20%7C%20Upshift&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2440
204 No Content 0 B URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-B8JGRCVHB8>m=45je3bt0v888942889z8812841439&_p=1701791560980&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1070852392.1701791562&ul=en-us&sr=1280x1024&_s=1&sid=1701791562&sct=1&seg=0&dl=https%3A%2F%2Fupshift.work%2F&dr=https%3A%2F%2Ftrail.upshift-workers.com%2F&dt=We%20Make%20Work%20Better-%20for%20People%20and%20Businesses%20%7C%20Staffing%20Redefined%20%7C%20Upshift&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2440
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B8JGRCVHB8>m=45je3bt0v888942889z8812841439&_p=1701791560980&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1070852392.1701791562&ul=en-us&sr=1280x1024&_s=1&sid=1701791562&sct=1&seg=0&dl=https%3A%2F%2Fupshift.work%2F&dr=https%3A%2F%2Ftrail.upshift-workers.com%2F&dt=We%20Make%20Work%20Better-%20for%20People%20and%20Businesses%20%7C%20Staffing%20Redefined%20%7C%20Upshift&en=page_view&_fv=1&_nsi=1&_ss=1&tfd=2440 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://upshift.work
date: Tue, 05 Dec 2023 15:52:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/themes/uncodechildtheme/ipmb-style-2.css?ver=1701785519
200 OK 4.6 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/themes/uncodechildtheme/ipmb-style-2.css?ver=1701785519
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (2891), with no line terminators
Hash 1fc67cdfd4d23529c361cd69b837bca6
c04aaa4753cd449919f527561c60c112b0ab6bd6
ce5d92725903416a0e24ac3e5fef0597f82e465bb08a871da0b4e6c77f4d66af
GET /wp-content/cache/min/1/wp-content/themes/uncodechildtheme/ipmb-style-2.css?ver=1701785519 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: text/css
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:11:59 GMT
vary: Accept-Encoding
etag: W/"656f2faf-b4b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
app.truconversion.com/ti-js/14448/bde2b.js
200 OK 267 B URL GET HTTP/2 app.truconversion.com/ti-js/14448/bde2b.js
IP
Certificate IssuerSectigo Limited
Subjectwww.truconversion.com
Fingerprint45:FF:0C:48:E9:90:81:90:C0:3B:E5:55:A6:3E:CE:86:D6:D4:FB:6C
ValiditySun, 15 Oct 2023 00:00:00 GMT - Wed, 13 Nov 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 15bc6fc752293f78b89de696adfd2cd8
6c101c46a24fab67a45e3a9bf4e81f0beb42610f
3ea0ae12147c76e3b4e6ad26bfb580121295c8aa91480dee7b7e579dd00eb23d
GET /ti-js/14448/bde2b.js HTTP/1.1
Host: app.truconversion.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:37 GMT
content-type: application/javascript
content-length: 267
last-modified: Tue, 05 Dec 2023 15:50:17 GMT
etag: "656f46b9-10b"
expires: Tue, 05 Dec 2023 15:55:37 GMT
pragma: public
cache-control: max-age=180, public, stale-while-revalidate=10, stale-if-error=10
accept-ranges: bytes
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
content-security-policy: default-src 'self'; frame-src 'self' *.truconversion.com http: https:; script-src 'self' 'unsafe-inline' 'unsafe-eval' http: https: data: blob:; style-src 'self' 'unsafe-inline' http: https:; style-src-elem 'self' 'unsafe-inline' http: https: data:; img-src http: https: data: blob:; connect-src wss://*.truconversion.com wss://*.intercom.io wss://*.appcues.net wss://*.wistia.com wss://*.crisp.chat http: https: data: blob:; font-src http: https: data: blob:; object-src http: https:; media-src http: https: data: blob:; form-action 'self' http://*.truconversion.com https://*.truconversion.com;
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With
X-Firefox-Spdy: h2
ocsp.r2m03.amazontrust.com/
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash d6f976d1c6ac6a2de3a4f4c4de0d2bab
c0cfd68a885be8b1a67ce07b07356f5826fb6132
2fce93c92885b3a746d928b369c5cd4411df4d8ae1d88fa43ec6472c68bee8e5
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Tue, 05 Dec 2023 15:52:38 GMT
Server: ECAcc (amb/6AFD)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: g0Wf6MD2wI12Fq9Gtlk9oDGmjNMYwMdtuS6lozzB9DhjTQqh33G2UA==
snid.snitcher.com/verify
200 OK 0 B IP
Certificate IssuerAmazon
Subjectsnid.snitcher.com
Fingerprint1F:83:3D:13:A5:28:88:86:D3:EC:65:D5:B0:84:E8:1C:F5:76:DD:A6
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 14 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /verify HTTP/1.1
Host: snid.snitcher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://upshift.work/
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Tue, 05 Dec 2023 15:52:38 GMT
access-control-allow-methods: POST
access-control-allow-headers: content-type
access-control-max-age: 0
cache-control: no-cache, private
access-control-allow-origin: *
vary: Access-Control-Request-Method, Access-Control-Request-Headers
apigw-requestid: PegTEhqFliAEPzA=
X-Firefox-Spdy: h2
dashboard.heatmap.com/sttracker.php?_req=_cip
200 OK 492 B URL GET HTTP/2 dashboard.heatmap.com/sttracker.php?_req=_cip
IP
Certificate IssuerAmazon
Subjectdashboard.heatmap.com
Fingerprint3E:81:DA:EF:27:8F:CD:68:1E:60:FE:7A:63:F1:18:AE:86:48:1D:41
ValidityMon, 06 Feb 2023 00:00:00 GMT - Wed, 06 Mar 2024 23:59:59 GMT
Hash da929582846369be46696a0ebce6ed84
d2a8abbea6953874edd2c48374006bf4d007563e
256c4c58ea6ba9057ecb8e91cd4fbe1431dff594314c7961a18ea048753f26f6
GET /sttracker.php?_req=_cip HTTP/1.1
Host: dashboard.heatmap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
date: Tue, 05 Dec 2023 15:52:38 GMT
server: nginx/1.22.1
access-control-allow-headers: Content-Type
access-control-allow-origin: *
access-control-allow-methods: GET,POST
access-control-max-age: 3600
referrer-policy: origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MgtFWP8kyIatzyuRoYSFvsbbMawD1_ld6wXakDul_sEYXOGG7HEyNw==
X-Firefox-Spdy: h2
dashboard.heatmap.com/pako.md5.js
200 OK 11 kB URL GET HTTP/2 dashboard.heatmap.com/pako.md5.js
IP
Certificate IssuerAmazon
Subjectdashboard.heatmap.com
Fingerprint3E:81:DA:EF:27:8F:CD:68:1E:60:FE:7A:63:F1:18:AE:86:48:1D:41
ValidityMon, 06 Feb 2023 00:00:00 GMT - Wed, 06 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (27802)
Hash b913440b6f4b35f60f35fb69c02589e7
eabe0c90381acf84e3db0177734f4956607f5246
9f88e86be440b4d5906f812684e4382f993bfdbbb4c84f6d45fadd26319cd324
GET /pako.md5.js HTTP/1.1
Host: dashboard.heatmap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 05 Dec 2023 15:29:25 GMT
server: nginx/1.22.1
last-modified: Tue, 21 Nov 2023 16:25:40 GMT
expires: Tue, 05 Dec 2023 16:29:25 GMT
pragma: public
cache-control: max-age=3600, public
content-encoding: br
etag: W/"655cda04-7b76"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NOQgFdnLv81djSyHNyP2Nfh6hoXfRCgnIxYTxA3hbRZdKO_iXugBqQ==
age: 1393
X-Firefox-Spdy: h2
snid.snitcher.com/verify
200 OK 6 B IP
Certificate IssuerAmazon
Subjectsnid.snitcher.com
Fingerprint1F:83:3D:13:A5:28:88:86:D3:EC:65:D5:B0:84:E8:1C:F5:76:DD:A6
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 14 Sep 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 774bd700f7ecb90109ed8a5d1813dab0
fa88f855519747be2e4549915d442781c4fabdcc
d9ea8a8cab935e18796b1a064b1644c0f5db2d967a60e5f7cb8b37066b2399a4
POST /verify HTTP/1.1
Host: snid.snitcher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 482
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:38 GMT
content-type: application/json
content-length: 6
access-control-allow-origin: *
cache-control: no-cache, private
apigw-requestid: PegTFjQaliAEPQw=
X-Firefox-Spdy: h2
gtm-5jb6t3n-nzvhz.uc.r.appspot.com/g/collect?v=2&tid=G-V9P0QV9QEK>m=45je3bt0v889451992&_p=1701791560980&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1070852392.1701791562&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&_eu=AEA&sst.uc=NO&sst.ngs=1&sst.etld=google.no&sst.gcsub=region1&sst.gcd=11l1l1l1l1&sst.tft=1701791560980&sst.sp=1&sst.em_event=1&ngs=1&_s=1&sid=1701791564&sct=1&seg=0&dl=https%3A%2F%2Fupshift.work%2F&dr=https%3A%2F%2Ftrail.upshift-workers.com%2F&dt=We%20Make%20Work%20Better-%20for%20People%20and%20Businesses%20%7C%20Staffing%20Redefined%20%7C%20Upshift&en=scroll&_fv=1&_ss=1&ep.custom_client_id=%271070852392.1701791562&epn.percent_scrolled=90&tfd=4560&richsstsse
503 Service Unavailable 298 B URL GET HTTP/2 gtm-5jb6t3n-nzvhz.uc.r.appspot.com/g/collect?v=2&tid=G-V9P0QV9QEK>m=45je3bt0v889451992&_p=1701791560980&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1070852392.1701791562&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&_eu=AEA&sst.uc=NO&sst.ngs=1&sst.etld=google.no&sst.gcsub=region1&sst.gcd=11l1l1l1l1&sst.tft=1701791560980&sst.sp=1&sst.em_event=1&ngs=1&_s=1&sid=1701791564&sct=1&seg=0&dl=https%3A%2F%2Fupshift.work%2F&dr=https%3A%2F%2Ftrail.upshift-workers.com%2F&dt=We%20Make%20Work%20Better-%20for%20People%20and%20Businesses%20%7C%20Staffing%20Redefined%20%7C%20Upshift&en=scroll&_fv=1&_ss=1&ep.custom_client_id=%271070852392.1701791562&epn.percent_scrolled=90&tfd=4560&richsstsse
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.appspot.com
Fingerprint43:AC:20:2C:C9:12:B3:15:F6:E3:4E:70:E1:0A:15:C8:8D:61:DC:44
ValidityMon, 23 Oct 2023 11:17:52 GMT - Mon, 15 Jan 2024 11:17:51 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 4a7f9841f209f51aaa5d6f2a452c3d62
20a4ea07c59b31546fc1e40c2b619403bb38c975
f2eb74c0937c1bfe886470765fe63b5051ce1311b61d9cc83f4664625fb07740
GET /g/collect?v=2&tid=G-V9P0QV9QEK>m=45je3bt0v889451992&_p=1701791560980&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1070852392.1701791562&ul=en-us&sr=1280x1024&_fplc=0&ur=NO-03&_eu=AEA&sst.uc=NO&sst.ngs=1&sst.etld=google.no&sst.gcsub=region1&sst.gcd=11l1l1l1l1&sst.tft=1701791560980&sst.sp=1&sst.em_event=1&ngs=1&_s=1&sid=1701791564&sct=1&seg=0&dl=https%3A%2F%2Fupshift.work%2F&dr=https%3A%2F%2Ftrail.upshift-workers.com%2F&dt=We%20Make%20Work%20Better-%20for%20People%20and%20Businesses%20%7C%20Staffing%20Redefined%20%7C%20Upshift&en=scroll&_fv=1&_ss=1&ep.custom_client_id=%271070852392.1701791562&epn.percent_scrolled=90&tfd=4560&richsstsse HTTP/1.1
Host: gtm-5jb6t3n-nzvhz.uc.r.appspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 503 Service Unavailable
content-type: text/html; charset=UTF-8
referrer-policy: no-referrer
content-length: 298
date: Tue, 05 Dec 2023 15:52:38 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
surveys-static.survicate.com/fonts/open-sans-latin.woff2
200 OK 40 kB URL GET HTTP/2 surveys-static.survicate.com/fonts/open-sans-latin.woff2
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerSectigo Limited
Subject*.survicate.com
FingerprintCD:E8:76:3B:3F:D9:2D:8D:E9:6D:72:DB:39:4E:E7:6B:0A:3F:49:6A
ValidityMon, 18 Sep 2023 00:00:00 GMT - Sat, 31 Aug 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 39556, version 1.0\012- data
Hash e92e9c8caaf29c4446167f6f01a78e96
31aa8716b886b57eb918d3f89502a438b926ad6f
a83c3f260b750dfc47e4e5024eda4b4f80be0c0a3e0ae5111a3b0a799df64448
GET /fonts/open-sans-latin.woff2 HTTP/1.1
Host: surveys-static.survicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://surveys-static.survicate.com/
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:39 GMT
content-type: binary/octet-stream
content-length: 39556
server: BunnyCDN-NO1-830
cdn-pullzone: 1133799
cdn-uid: 039640c0-4b09-428d-a0ae-513ccdd44502
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=604800
etag: "e92e9c8caaf29c4446167f6f01a78e96"
last-modified: Wed, 13 Apr 2022 12:02:11 GMT
x-amz-id-2: LXgVwQ3tokl6xa/Ibte+Oosn1L66e1BE0Vgk+DBRbaA+DXnTdmzC2+CMujCtj9i8pcJXyLGhytI=
x-amz-request-id: P5R5VWS06CVNJ7QH
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/29/2023 22:48:03
cdn-edgestorageid: 830
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: default-src 'self'
cdn-status: 200
cdn-requestid: 4c6ec0fda1dbb619cedfc7527beb9262
cdn-cache: HIT
X-Firefox-Spdy: h2
bat.bing.com/bat.js
200 OK 13 kB IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerMicrosoft Corporation
Subjectwww.bing.com
FingerprintA5:EC:34:1F:AB:B3:69:71:54:88:69:BA:64:CC:E2:9B:32:B6:65:CD
ValidityTue, 24 Oct 2023 07:42:22 GMT - Sun, 21 Apr 2024 07:42:22 GMT
File type Unicode text, UTF-8 text, with very long lines (46103), with no line terminators
Hash 7f75f159026f3a2c8cccda487b43157b
021cf5c854db063cd79bf0394c24eb994e095640
5e319852607809336b2534ffeb96f6933f26994dd040f535302c84f59cc0a214
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 13175
content-type: application/javascript
content-encoding: gzip
last-modified: Fri, 10 Nov 2023 20:09:55 GMT
accept-ranges: bytes
etag: "80abcdf1114da1:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: D59B30478460423B98870480EAC62CD8 Ref B: OSL30EDGE0413 Ref C: 2023-12-05T15:52:39Z
date: Tue, 05 Dec 2023 15:52:38 GMT
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B8JGRCVHB8&cid=1070852392.1701791562>m=45je3bt0v888942889z8812841439&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=226057048
200 OK 42 B URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B8JGRCVHB8&cid=1070852392.1701791562>m=45je3bt0v888942889z8812841439&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=226057048
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-B8JGRCVHB8&cid=1070852392.1701791562>m=45je3bt0v888942889z8812841439&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=226057048 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 05 Dec 2023 15:52:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
upshift.work/wp-content/uploads/2021/04/upshift_favicon.png
200 OK 2.7 kB URL GET HTTP/2 upshift.work/wp-content/uploads/2021/04/upshift_favicon.png
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash a095312ea653367bef4c5f3f23058fd3
dd32d8a27b0afd056d7ebf048a9ac578c3fd12a2
948fbfcb4bd2ab43698be0dbc406aa2a316416b606e45e12460b04d262512c48
GET /wp-content/uploads/2021/04/upshift_favicon.png HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Cookie: _gcl_au=1.1.856261828.1701791562; __gtm_referrer=https%3A%2F%2Ftrail.upshift-workers.com%2F; _ga_B8JGRCVHB8=GS1.1.1701791562.1.0.1701791562.60.0.0; _ga=GA1.1.1070852392.1701791562; _lfa=LF1.1.9d4a3409412d11e9.1701791562719; uncode_privacy[consent_types]=%5B%5D; anonymousId=5f4a21d6-4148-4599-8f49-b783daf9f7f5; _conv_v=vi%3A1*sc%3A1*cs%3A1701791564*fs%3A1701791564*pv%3A1; _conv_s=si%3A1*sh%3A1701791564245-0.1594494211838855*pv%3A1; _conv_r=s%3Atrail.upshift-workers.com*m%3Areferral*t%3A*c%3A; _ga_V9P0QV9QEK=GS1.1.1701791564.1.0.1701791564.0.0.0; _pk_id.1599.b3d2=426bd201bfd50cd3.1701791565.; _pk_ref.1599.b3d2=%5B%22%22%2C%22%22%2C1701791565%2C%22https%3A%2F%2Ftrail.upshift-workers.com%2F%22%5D; _pk_id.1599.b3d2=426bd201bfd50cd3.1701791565.; _pk_ses.1599.b3d2=1; mr_vid=426bd201bfd50cd3; _heat_idv=312051552441769913; _heat_idl=312051552441739931
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:39 GMT
content-type: image/png
content-length: 2684
strict-transport-security: max-age=31536000
last-modified: Mon, 05 Apr 2021 22:08:55 GMT
etag: "606b8a77-a7c"
expires: Tue, 12 Dec 2023 15:52:39 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
accept-ranges: bytes
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/uploads/2021/04/upshift_favicon.png
200 OK 2.7 kB URL GET HTTP/2 upshift.work/wp-content/uploads/2021/04/upshift_favicon.png
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash a095312ea653367bef4c5f3f23058fd3
dd32d8a27b0afd056d7ebf048a9ac578c3fd12a2
948fbfcb4bd2ab43698be0dbc406aa2a316416b606e45e12460b04d262512c48
GET /wp-content/uploads/2021/04/upshift_favicon.png HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Cookie: _gcl_au=1.1.856261828.1701791562; __gtm_referrer=https%3A%2F%2Ftrail.upshift-workers.com%2F; _ga_B8JGRCVHB8=GS1.1.1701791562.1.0.1701791562.60.0.0; _ga=GA1.1.1070852392.1701791562; _lfa=LF1.1.9d4a3409412d11e9.1701791562719; uncode_privacy[consent_types]=%5B%5D; anonymousId=5f4a21d6-4148-4599-8f49-b783daf9f7f5; _conv_v=vi%3A1*sc%3A1*cs%3A1701791564*fs%3A1701791564*pv%3A1; _conv_s=si%3A1*sh%3A1701791564245-0.1594494211838855*pv%3A1; _conv_r=s%3Atrail.upshift-workers.com*m%3Areferral*t%3A*c%3A; _ga_V9P0QV9QEK=GS1.1.1701791564.1.0.1701791564.0.0.0; _pk_id.1599.b3d2=426bd201bfd50cd3.1701791565.; _pk_ref.1599.b3d2=%5B%22%22%2C%22%22%2C1701791565%2C%22https%3A%2F%2Ftrail.upshift-workers.com%2F%22%5D; _pk_id.1599.b3d2=426bd201bfd50cd3.1701791565.; _pk_ses.1599.b3d2=1; mr_vid=426bd201bfd50cd3; _heat_idv=312051552441769913; _heat_idl=312051552441739931
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:39 GMT
content-type: image/png
content-length: 2684
strict-transport-security: max-age=31536000
last-modified: Mon, 05 Apr 2021 22:08:55 GMT
etag: "606b8a77-a7c"
expires: Tue, 12 Dec 2023 15:52:39 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
accept-ranges: bytes
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1
200 OK 35 B URL GET HTTP/1.1 forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 05 Dec 2023 15:52:39 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
X-Trace: 2BD555CE1F8DA81EEEC60A5D38752778DA9C40E2DF000000000000000000
Cache-Control: max-age=0, no-cache, no-store
Vary: origin
Access-Control-Allow-Credentials: false
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-Origin-Hublet
X-Robots-Tag: none
x-envoy-upstream-service-time: 8
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-fc678f645-f8rcm
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
X-HubSpot-Correlation-Id: a5772e52-dc29-47c6-998f-85f794f5cbcc
x-request-id: a5772e52-dc29-47c6-998f-85f794f5cbcc
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Server: cloudflare
CF-RAY: 830d751d0b24712e-OSL
alt-svc: h3=":443"; ma=86400
service.heatmap.com/ws/record/events?env=live
0 B URL service.heatmap.com/ws/record/events?env=live
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/record/events?env=live HTTP/1.1
Host: service.heatmap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://upshift.work
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qCcKPRTIMQJiy9rYwt1+5Q==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.22.1
Date: Tue, 05 Dec 2023 15:52:39 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lVVvEVSpry+jXf/pXx3GlmxO4eU=
bat.bing.com/action/0?ti=343036388&Ver=2&mid=4d69d413-5a30-4297-8f7a-9b25ce683062&sid=54bf98a0938611ee9987abd57cbed89a&vid=54bf8750938611eebec1f9e10d9319ad&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=We%20Make%20Work%20Better-%20for%20People%20and%20Businesses%20%7C%20Staffing%20Redefined%20%7C%20Upshift&p=https%3A%2F%2Fupshift.work%2F&r=https%3A%2F%2Ftrail.upshift-workers.com%2F<=4405&evt=pageLoad&sv=1&rn=238157
204 No Content 0 B URL GET HTTP/2 bat.bing.com/action/0?ti=343036388&Ver=2&mid=4d69d413-5a30-4297-8f7a-9b25ce683062&sid=54bf98a0938611ee9987abd57cbed89a&vid=54bf8750938611eebec1f9e10d9319ad&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=We%20Make%20Work%20Better-%20for%20People%20and%20Businesses%20%7C%20Staffing%20Redefined%20%7C%20Upshift&p=https%3A%2F%2Fupshift.work%2F&r=https%3A%2F%2Ftrail.upshift-workers.com%2F<=4405&evt=pageLoad&sv=1&rn=238157
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerMicrosoft Corporation
Subjectwww.bing.com
FingerprintA5:EC:34:1F:AB:B3:69:71:54:88:69:BA:64:CC:E2:9B:32:B6:65:CD
ValidityTue, 24 Oct 2023 07:42:22 GMT - Sun, 21 Apr 2024 07:42:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=343036388&Ver=2&mid=4d69d413-5a30-4297-8f7a-9b25ce683062&sid=54bf98a0938611ee9987abd57cbed89a&vid=54bf8750938611eebec1f9e10d9319ad&vids=1&msclkid=N&pi=918639831&lg=en-US&sw=1280&sh=1024&sc=24&tl=We%20Make%20Work%20Better-%20for%20People%20and%20Businesses%20%7C%20Staffing%20Redefined%20%7C%20Upshift&p=https%3A%2F%2Fupshift.work%2F&r=https%3A%2F%2Ftrail.upshift-workers.com%2F<=4405&evt=pageLoad&sv=1&rn=238157 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=102DC5B2378261CD2963D66C36D560A1; domain=.bing.com; expires=Sun, 29-Dec-2024 15:52:39 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A1C59B57531042668321EF093DA2BF9A Ref B: OSL30EDGE0413 Ref C: 2023-12-05T15:52:39Z
date: Tue, 05 Dec 2023 15:52:38 GMT
X-Firefox-Spdy: h2
bat.bing.com/p/action/343036388.js
204 No Content 0 B URL GET HTTP/2 bat.bing.com/p/action/343036388.js
IP
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerMicrosoft Corporation
Subjectwww.bing.com
FingerprintA5:EC:34:1F:AB:B3:69:71:54:88:69:BA:64:CC:E2:9B:32:B6:65:CD
ValidityTue, 24 Oct 2023 07:42:22 GMT - Sun, 21 Apr 2024 07:42:22 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/343036388.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 58C7D02B18F94C94BCA7CE7ABEF31F43 Ref B: OSL30EDGE0413 Ref C: 2023-12-05T15:52:39Z
date: Tue, 05 Dec 2023 15:52:38 GMT
X-Firefox-Spdy: h2
cdn-4.convertexperiments.com/js/10041529-10045619.js
200 OK 66 kB URL GET HTTP/2 cdn-4.convertexperiments.com/js/10041529-10045619.js
IP
Certificate IssuerDigiCert Inc
Subject*.convertexperiments.com
Fingerprint23:1A:93:94:74:90:BA:4C:23:65:8A:A7:1A:3A:DD:09:00:02:2F:E8
ValidityThu, 09 Nov 2023 00:00:00 GMT - Sat, 09 Nov 2024 23:59:59 GMT
File type ASCII text, with very long lines (32087)
Hash b596cd49da929c672501336ffa783b6e
4d82e4df507a9ffc99e74087b303f43a09067cb7
3d71b1bbdf344a9ac8d9e4cdd720eebd6c181c3e1cd6e697d229fb2368925ace
GET /js/10041529-10045619.js HTTP/1.1
Host: cdn-4.convertexperiments.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: public, max-age=300
expires: Tue, 05 Dec 2023 15:57:36 GMT
date: Tue, 05 Dec 2023 15:52:36 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-B8JGRCVHB8>m=45je3bt0v888942889z8812841439&_p=1701791560980&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1070852392.1701791562&ul=en-us&sr=1280x1024&sid=1701791562&sct=1&seg=0&dl=https%3A%2F%2Fupshift.work%2F&dr=https%3A%2F%2Ftrail.upshift-workers.com%2F&dt=We%20Make%20Work%20Better-%20for%20People%20and%20Businesses%20%7C%20Staffing%20Redefined%20%7C%20Upshift&_s=2&tfd=7654
204 No Content 0 B URL POST HTTP/3 region1.analytics.google.com/g/collect?v=2&tid=G-B8JGRCVHB8>m=45je3bt0v888942889z8812841439&_p=1701791560980&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1070852392.1701791562&ul=en-us&sr=1280x1024&sid=1701791562&sct=1&seg=0&dl=https%3A%2F%2Fupshift.work%2F&dr=https%3A%2F%2Ftrail.upshift-workers.com%2F&dt=We%20Make%20Work%20Better-%20for%20People%20and%20Businesses%20%7C%20Staffing%20Redefined%20%7C%20Upshift&_s=2&tfd=7654
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-B8JGRCVHB8>m=45je3bt0v888942889z8812841439&_p=1701791560980&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=1070852392.1701791562&ul=en-us&sr=1280x1024&sid=1701791562&sct=1&seg=0&dl=https%3A%2F%2Fupshift.work%2F&dr=https%3A%2F%2Ftrail.upshift-workers.com%2F&dt=We%20Make%20Work%20Better-%20for%20People%20and%20Businesses%20%7C%20Staffing%20Redefined%20%7C%20Upshift&_s=2&tfd=7654 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 723
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://upshift.work
date: Tue, 05 Dec 2023 15:52:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
surveys-static.survicate.com/fonts/fonts.css
200 OK 960 B URL GET HTTP/2 surveys-static.survicate.com/fonts/fonts.css
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerSectigo Limited
Subject*.survicate.com
FingerprintCD:E8:76:3B:3F:D9:2D:8D:E9:6D:72:DB:39:4E:E7:6B:0A:3F:49:6A
ValidityMon, 18 Sep 2023 00:00:00 GMT - Sat, 31 Aug 2024 23:59:59 GMT
Hash 175a0d0343589473e72c6e512936d749
35c70c2cb3bc407055e3053e986a2244996f00d6
bacc23ae416ef150be09288d366d689a7678849b04094552e67d8e2a032ad5a0
GET /fonts/fonts.css HTTP/1.1
Host: surveys-static.survicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:38 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 1133799
cdn-uid: 039640c0-4b09-428d-a0ae-513ccdd44502
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=604800
etag: W/"175a0d0343589473e72c6e512936d749"
last-modified: Wed, 13 Apr 2022 12:02:06 GMT
x-amz-id-2: q7mfBQ2lJO5TPZG6wJlhONs/TT0lCJB2qmgrOOZLsCAadvIZ4ijhqCJbaSEtct5zUdQT2xjhP0M=
x-amz-request-id: 5V2ASMDHPT9S5N2K
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/31/2023 20:00:16
cdn-edgestorageid: 830
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: default-src 'self'
cdn-status: 200
cdn-requestid: 346d8566f7fdf1eb8620d07fe4cf9f77
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/themes/uncode/library/js/app.js?ver=1701785522
200 OK 281 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/themes/uncode/library/js/app.js?ver=1701785522
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (2656)
Size 281 kB (280745 bytes)
Hash 43808db46eb1840a92976bca68cc21ff
32a0f9261b5b3557dd95f9514f082a85654b9668
db0521614f42b2ef92067e716ec0219fba37bc0e53690c30a44ed66c42d8bc98
GET /wp-content/cache/min/1/wp-content/themes/uncode/library/js/app.js?ver=1701785522 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:12:02 GMT
vary: Accept-Encoding
etag: W/"656f2fb2-448a9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
surveys-static.survicate.com/widget_core-21.0.10.js
200 OK 319 kB URL GET HTTP/2 surveys-static.survicate.com/widget_core-21.0.10.js
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerSectigo Limited
Subject*.survicate.com
FingerprintCD:E8:76:3B:3F:D9:2D:8D:E9:6D:72:DB:39:4E:E7:6B:0A:3F:49:6A
ValidityMon, 18 Sep 2023 00:00:00 GMT - Sat, 31 Aug 2024 23:59:59 GMT
Size 319 kB (318868 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget_core-21.0.10.js HTTP/1.1
Host: surveys-static.survicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:38 GMT
content-type: application/x-javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 1133799
cdn-uid: 039640c0-4b09-428d-a0ae-513ccdd44502
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-allow-methods: GET
access-control-max-age: 3600
cache-control: public, max-age=604800
etag: W/"1b9eb01edd893153694df0981d166bc7"
last-modified: Tue, 05 Dec 2023 09:15:27 GMT
x-amz-id-2: e2VsGXU4GDDgOrbrxNBFKc6ox2wKokhZBs60JGuQWrOMTA757fc1FujoGXJgvT41j8q1xi10lEM=
x-amz-request-id: CY0NZVQJ0GX5GSN7
x-amz-meta-codebuild-content-sha256: 74fe4aeae5ff7169b57cb12afd1ef5f63a9938de0c4e1544582f69e952694baf
x-amz-meta-codebuild-buildarn: arn:aws:codebuild:eu-west-1:121050345386:build/prd-static:c7ae1ed3-330d-4aed-8833-690c21d0dd3f
x-amz-meta-codebuild-content-md5: 562e83ac938d48fb63fb9a0b2988800e
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/05/2023 09:23:27
cdn-edgestorageid: 830
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
content-security-policy: default-src 'self'
cdn-status: 200
cdn-requestid: 507299c1d35b00c7d4277455fa5b2394
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
upshift.work/wp-content/plugins/wp-rocket/assets/js/lazyload/17.8.3/lazyload.min.js
200 OK 8.9 kB URL GET HTTP/2 upshift.work/wp-content/plugins/wp-rocket/assets/js/lazyload/17.8.3/lazyload.min.js
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (9056), with no line terminators
Hash 797c2156a7211100e9aceff7365be7a4
b70b89caf8cc05c7cbef1077e06994085331c5cc
812cdb2da5fee86d2f5a423fb5010af68f20c594f081b40f3b7f0050736e9ea8
GET /wp-content/plugins/wp-rocket/assets/js/lazyload/17.8.3/lazyload.min.js HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Tue, 19 Sep 2023 11:54:44 GMT
vary: Accept-Encoding
etag: W/"65098c04-22bc"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
fonts.wp.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
200 OK 8.0 kB URL GET HTTP/2 fonts.wp.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
Certificate IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:36 GMT
content-type: font/woff2
content-length: 8000
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 524464
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2
sc.lfeeder.com/lftracker_v1_YEgkB8lMvgM7ep3Z.js
200 OK 31 kB URL GET HTTP/2 sc.lfeeder.com/lftracker_v1_YEgkB8lMvgM7ep3Z.js
IP
Certificate IssuerAmazon
Subject*.lfeeder.com
Fingerprint69:6A:77:EB:4E:49:95:F6:0B:CA:45:E3:DE:88:8A:41:ED:E9:01:4A
ValidityWed, 22 Mar 2023 00:00:00 GMT - Fri, 19 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (30765), with no line terminators
Hash 4e6fc0494817e9b29b3c7af304a739b9
3514e484522d0a17bd266515b7882ac108cfa136
5b5b8b9544e0f2a33939f18d7c4b1d1e022b85852956a56354a2b2607321b8fe
GET /lftracker_v1_YEgkB8lMvgM7ep3Z.js HTTP/1.1
Host: sc.lfeeder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 05 Oct 2023 07:44:21 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: GiDopUjrOOLJpxJUyxGhZUx_YiQQwn8Q
server: AmazonS3
content-encoding: br
date: Tue, 05 Dec 2023 15:52:36 GMT
cache-control: max-age=3600
etag: W/"4e6fc0494817e9b29b3c7af304a739b9"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kLackti4chh2abZXtJI1v-WihR3bkdW4APCyUiMOJL1IQwR75mNiCA==
age: 3030
X-Firefox-Spdy: h2
api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=9034923
200 OK 114 B URL GET HTTP/2 api.hubapi.com/hs-script-loader-public/v1/config/pixels-and-events/json?portalId=9034923
IP
Certificate IssuerCloudflare, Inc.
Subjecthubapi.com
FingerprintB1:3C:6E:B5:33:D1:03:D3:5D:7E:38:F6:29:9B:E5:7B:60:B8:AB:C3
ValidityFri, 07 Apr 2023 00:00:00 GMT - Sat, 06 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 54812620a10c0b8caa93c3f2614fea6b
32f0575f37a4a020824df4d491719d729bb0003f
7627b2d0d1c56d7599ba0a0a185edb677aeb873a7041edce1b648ac4c6fcb132
GET /hs-script-loader-public/v1/config/pixels-and-events/json?portalId=9034923 HTTP/1.1
Host: api.hubapi.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:38 GMT
content-type: application/json;charset=utf-8
cf-ray: 830d7519fb13b503-OSL
cf-cache-status: DYNAMIC
access-control-allow-origin: https://upshift.work
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
access-control-allow-credentials: false
access-control-allow-headers: *
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-max-age: 180
x-content-type-options: nosniff
x-envoy-upstream-service-time: 7
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-6ffdd984b9-hn288
x-evy-trace-virtual-host: all
x-hubspot-correlation-id: 5da18d56-7c73-4a90-9466-dedf5b5870d5
x-request-id: 5da18d56-7c73-4a90-9466-dedf5b5870d5
x-trace: 2B3F1ABA44E6978415753834E1DB43095EAE645596000000000000000000
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qb2nPf3yuHd03o2WJqpCDxgN3LyxDnW1q3nsWeD8tS3bH2yxOnO%2BC6G%2B3PVYzfnvEhSRfwr0SXAoOb9%2Bp9cRUyxXoRGAjRAfIVsGKuOZgJ1BQ%2BG1XKFJtTo6olMG86wg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
service.heatmap.com/ws/record/events?env=live
101 Switching Protocols 0 B URL GET HTTP/1.1 service.heatmap.com/ws/record/events?env=live
IP
Certificate IssuerLet's Encrypt
Subjectservice.heatmap.com
Fingerprint7A:00:60:1F:CB:93:6B:4B:CF:B4:C4:FC:F4:46:FD:F3:6B:8E:DC:5A
ValidityFri, 20 Oct 2023 20:05:19 GMT - Thu, 18 Jan 2024 20:05:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/record/events?env=live HTTP/1.1
Host: service.heatmap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://upshift.work
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qCcKPRTIMQJiy9rYwt1+5Q==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.22.1
Date: Tue, 05 Dec 2023 15:52:39 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: lVVvEVSpry+jXf/pXx3GlmxO4eU=
upshift.work/wp-content/plugins/uncode-privacy/assets/js/uncode-privacy-public.min.js
200 OK 4.1 kB URL GET HTTP/2 upshift.work/wp-content/plugins/uncode-privacy/assets/js/uncode-privacy-public.min.js
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (4269), with no line terminators
Hash 24600b248d082b9f146b74d9ee98f260
07a8df5555466f042193818dedad5cc486cd4962
3c5d37b6b9fe09d77f99076d0f36eaa31ca7084bbd24e167b7b6ea2903a6ee92
GET /wp-content/plugins/uncode-privacy/assets/js/uncode-privacy-public.min.js HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Tue, 27 Jun 2023 23:19:03 GMT
vary: Accept-Encoding
etag: W/"649b6e67-ffa"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
js.hsleadflows.net/leadflows.js
200 OK 564 kB URL GET HTTP/2 js.hsleadflows.net/leadflows.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint55:A1:55:C6:3D:AC:5A:B1:4F:CD:CD:80:A6:AD:F1:B8:4E:0B:34:67
ValiditySat, 06 May 2023 00:00:00 GMT - Sun, 05 May 2024 23:59:59 GMT
Size 564 kB (563973 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /leadflows.js HTTP/1.1
Host: js.hsleadflows.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:38 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 04 Dec 2023 12:11:15 UTC
etag: W/"c314aa317d74a89c787c3c4a9d2fd97c"
x-amz-server-side-encryption: AES256
x-amz-version-id: QUNwK0xemzsIqupWMH2b5phjsLRnkTKD
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 bcfffcf7e0fc8cd9cfe4125369a9f036.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: c7BrxtlNeNsX_N-t6HSJDigCCys3MdJESW1aqPVXoy7h9mNQ1j-1Kw==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=lead-flows-js/static-1.1291/bundle/main/lead-flows-release.js&cfRay=830a2314ff6c5f0f-ARN
cache-control: s-maxage=86400, max-age=0
x-hs-target-asset: lead-flows-js/static-1.1291/bundle/main/lead-flows-release.js
x-content-type-options: nosniff
x-hs-cache-status: MISS
x-envoy-upstream-service-time: 8
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-b78fbd96d-r5ffn
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 24db8a9c-4fcd-4785-8f21-05c6bb2816f1
x-request-id: 24db8a9c-4fcd-4785-8f21-05c6bb2816f1
cache-tag: staticjsapp-lead-flows-cloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
server: cloudflare
cf-ray: 830d7517cc9eb524-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.g2.com/products/upshift/widgets/stars?color=white&type=read
200 OK 18 kB URL GET HTTP/2 www.g2.com/products/upshift/widgets/stars?color=white&type=read
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint9E:E3:C8:2D:D3:D3:22:68:FB:15:65:77:6A:19:64:19:43:7F:27:5A
ValidityThu, 27 Apr 2023 00:00:00 GMT - Fri, 26 Apr 2024 23:59:59 GMT
File type PNG image data, 400 x 200, 8-bit/color RGBA, interlaced\012- data
Hash 0b719a871df596f378db7a1abb90b3cb
40ee05a70056c9a65d7e592f756dfc690b07c814
920f7c3dc77335f796e438e4cf0b6a5d5a0ff26372005f024a4faf145bf35a2f
GET /products/upshift/widgets/stars?color=white&type=read HTTP/1.1
Host: www.g2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: image/png
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
we_are_hiring: https://company.g2.com/careers/open-positions
etag: W/"8103d6587dea2dfad4ba7f864a9253d7"
last-modified: Tue, 05 Dec 2023 15:09:36 GMT
content-disposition: inline; filename="white-9.png"; filename*=UTF-8''white-9.png
content-transfer-encoding: binary
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'self' *.g2crowd.com *.g2.com; connect-src * 'self' *.g2crowd.com *.g2.com; frame-src * 'self' *.g2crowd.com *.g2.com; font-src * data: 'self' *.g2crowd.com *.g2.com; form-action * 'self' *.g2crowd.com *.g2.com; img-src * data: blob: 'self' *.g2crowd.com *.g2.com; manifest-src 'self' *.g2crowd.com *.g2.com; media-src * blob: 'self' *.g2crowd.com *.g2.com; object-src 'self' *.g2crowd.com *.g2.com; script-src * 'unsafe-inline' 'unsafe-eval' 'self' *.g2crowd.com *.g2.com; style-src * 'unsafe-inline' 'self' *.g2crowd.com *.g2.com; worker-src * blob: 'self' *.g2crowd.com *.g2.com; frame-ancestors *
x-request-id: 739f3d56-737d-41a5-8892-7f80cd897164
x-runtime: 0.020628
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Origin,Accept-Encoding
cf-cache-status: DYNAMIC
set-cookie: AWSALB=54MA0FujrYTwyep1Mbl2Nak6xbUYlySmqt/MeH/bw6uASt/9nz9H4+7SXvkfcsvQEQO1EcD+0fDCSCsonP8s+zpREftf0MugEuGYEYnn7gL+Jgx5eMF7SFe7NVK0; Expires=Tue, 12 Dec 2023 15:52:35 GMT; Path=/
AWSALBCORS=54MA0FujrYTwyep1Mbl2Nak6xbUYlySmqt/MeH/bw6uASt/9nz9H4+7SXvkfcsvQEQO1EcD+0fDCSCsonP8s+zpREftf0MugEuGYEYnn7gL+Jgx5eMF7SFe7NVK0; Expires=Tue, 12 Dec 2023 15:52:35 GMT; Path=/; SameSite=None; Secure
events_distinct_id=ab90ecc4-1bed-4074-b0ec-9c99aaf68926; path=/; SameSite=None; secure
amplitude_session=1701791555249; path=/; expires=Tue, 05 Dec 2023 16:22:35 GMT; SameSite=None; secure
_g2_session_id=2012d564600e03c35142972f03143019; domain=.g2.com; path=/; secure; HttpOnly; SameSite=None
__cf_bm=TEfleFK7j60Dh3Qg4_qRc14a1OnmW9uiv5jxKs7uCq0-1701791555-0-AQ4rL+PPNGxAeA1d3M8x21+TCNZcQ5ale9c9DV4tlF43kpFMCLkGuymFipoAZk8N8vUeavW07p1hl2ZGq93iNw4=; path=/; expires=Tue, 05-Dec-23 16:22:35 GMT; domain=.g2.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 830d7503de9c5685-OSL
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/varify.js?ver=1701785520
200 OK 38 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/varify.js?ver=1701785520
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (38181), with no line terminators
Hash 5db03f6d3c222204b5c322d117baab26
29dd42ac27507f709d85abb971702cf8acb6840a
f8efab5d41aed091852452a66fd46ccd5b2385cbbb46506e0bd23dd17f925ba0
GET /wp-content/cache/min/1/varify.js?ver=1701785520 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:12:00 GMT
vary: Accept-Encoding
etag: W/"656f2fb0-9525"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
stats.wp.com/e-202349.js
200 OK 6.9 kB IP
Certificate IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File type ASCII text, with very long lines (7100), with no line terminators
Hash 530c085c7457919e6f6a76c67b3419ad
4c4929f20e73b6f41fe3474669bfea17b36fe49d
5db8b724469197930b66337c5a9ff7301c4ad5a52e7fc3134b4a568f45199aed
GET /e-202349.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
vary: Accept-Encoding
x-minify: t
x-minify-cache: hit
etag: W/13576-1684461103136.7104
content-encoding: br
expires: Sat, 30 Nov 2024 21:59:05 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
upshift.work/wp-admin/admin-ajax.php
200 OK 73 B URL POST HTTP/2 upshift.work/wp-admin/admin-ajax.php
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash f32afc2e33377520878963f73b62f390
7ee8cea8891a02270f683346f7aa4658adc757b4
f490fb75934697a796104572377cf4663e4fa8b54eeeffa46212bad9d9fa298e
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 290
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Cookie: _gcl_au=1.1.856261828.1701791562; __gtm_referrer=https%3A%2F%2Ftrail.upshift-workers.com%2F; _ga_B8JGRCVHB8=GS1.1.1701791562.1.0.1701791562.60.0.0; _ga=GA1.1.1070852392.1701791562; _lfa=LF1.1.9d4a3409412d11e9.1701791562719; uncode_privacy[consent_types]=%5B%5D; anonymousId=5f4a21d6-4148-4599-8f49-b783daf9f7f5; _conv_v=vi%3A1*sc%3A1*cs%3A1701791564*fs%3A1701791564*pv%3A1; _conv_s=si%3A1*sh%3A1701791564245-0.1594494211838855*pv%3A1; _conv_r=s%3Atrail.upshift-workers.com*m%3Areferral*t%3A*c%3A; _ga_V9P0QV9QEK=GS1.1.1701791564.1.0.1701791564.0.0.0; _pk_id.1599.b3d2=426bd201bfd50cd3.1701791565.; _pk_ref.1599.b3d2=%5B%22%22%2C%22%22%2C1701791565%2C%22https%3A%2F%2Ftrail.upshift-workers.com%2F%22%5D; _pk_id.1599.b3d2=426bd201bfd50cd3.1701791565.; _pk_ses.1599.b3d2=1; mr_vid=426bd201bfd50cd3; _heat_idv=312051552441769913; _heat_idl=312051552441739931
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:40 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-hacker: Want root? Visit join.a8c.com and mention this header.
host-header: WordPress.com
access-control-allow-origin: https://upshift.work
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
set-cookie: anonymousId=5f4a21d6-4148-4599-8f49-b783daf9f7f5; expires=Wed, 04-Dec-2024 15:52:40 GMT; Max-Age=31536000; path=/; domain=upshift.work
utm_campaign=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=upshift.work
utm_medium=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=upshift.work
utm_source=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=upshift.work
utm_term=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=upshift.work
utm_content=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=upshift.work
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
tr-rc.lfeeder.com/?sid=YEgkB8lMvgM7ep3Z&data=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
200 OK 43 B URL GET HTTP/2 tr-rc.lfeeder.com/?sid=YEgkB8lMvgM7ep3Z&data=eyJnYVRyYWNraW5nSWRzIjpbIlVBLTgxNDEyNjEwLTEiXSwiZ2FNZWFzdXJlbWVudElkcyI6WyJHLUI4SkdSQ1ZIQjgiXSwiZ2FDbGllbnRJZHMiOlsiMTA3MDg1MjM5Mi4xNzAxNzkxNTYyIl0sImNvbnRleHQiOnsibGlicmFyeSI6eyJuYW1lIjoibGZ0cmFja2VyIiwidmVyc2lvbiI6IjIuNjEuMyJ9LCJwYWdlVXJsIjoiaHR0cHM6Ly91cHNoaWZ0LndvcmsvIiwicGFnZVRpdGxlIjoiV2UgTWFrZSBXb3JrIEJldHRlci0gZm9yIFBlb3BsZSBhbmQgQnVzaW5lc3NlcyB8IFN0YWZmaW5nIFJlZGVmaW5lZCB8IFVwc2hpZnQiLCJyZWZlcnJlciI6Imh0dHBzOi8vdHJhaWwudXBzaGlmdC13b3JrZXJzLmNvbS8ifSwiZXZlbnQiOiJ0cmFja2luZy1ldmVudCIsImNsaWVudEV2ZW50SWQiOiI0NmY1ZTM0MGE3MTU3ZDVjIiwic2NyaXB0SWQiOiJZRWdrQjhsTXZnTTdlcDNaIiwiY29va2llc0VuYWJsZWQiOnRydWUsImNvbnNlbnRMZXZlbCI6Im5vbmUiLCJhbm9ueW1pemVJcCI6ZmFsc2UsImxmQ2xpZW50SWQiOiJMRjEuMS45ZDRhMzQwOTQxMmQxMWU5LjE3MDE3OTE1NjI3MTkiLCJmb3JlaWduQ29va2llcyI6W10sInByb3BlcnRpZXMiOnt9LCJhdXRvVHJhY2tpbmdFbmFibGVkIjp0cnVlLCJhdXRvVHJhY2tpbmdNb2RlIjoic3BhIn0=
IP
Certificate IssuerAmazon
Subject*.lfeeder.com
Fingerprint69:6A:77:EB:4E:49:95:F6:0B:CA:45:E3:DE:88:8A:41:ED:E9:01:4A
ValidityWed, 22 Mar 2023 00:00:00 GMT - Fri, 19 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /?sid=YEgkB8lMvgM7ep3Z&data=eyJnYVRyYWNraW5nSWRzIjpbIlVBLTgxNDEyNjEwLTEiXSwiZ2FNZWFzdXJlbWVudElkcyI6WyJHLUI4SkdSQ1ZIQjgiXSwiZ2FDbGllbnRJZHMiOlsiMTA3MDg1MjM5Mi4xNzAxNzkxNTYyIl0sImNvbnRleHQiOnsibGlicmFyeSI6eyJuYW1lIjoibGZ0cmFja2VyIiwidmVyc2lvbiI6IjIuNjEuMyJ9LCJwYWdlVXJsIjoiaHR0cHM6Ly91cHNoaWZ0LndvcmsvIiwicGFnZVRpdGxlIjoiV2UgTWFrZSBXb3JrIEJldHRlci0gZm9yIFBlb3BsZSBhbmQgQnVzaW5lc3NlcyB8IFN0YWZmaW5nIFJlZGVmaW5lZCB8IFVwc2hpZnQiLCJyZWZlcnJlciI6Imh0dHBzOi8vdHJhaWwudXBzaGlmdC13b3JrZXJzLmNvbS8ifSwiZXZlbnQiOiJ0cmFja2luZy1ldmVudCIsImNsaWVudEV2ZW50SWQiOiI0NmY1ZTM0MGE3MTU3ZDVjIiwic2NyaXB0SWQiOiJZRWdrQjhsTXZnTTdlcDNaIiwiY29va2llc0VuYWJsZWQiOnRydWUsImNvbnNlbnRMZXZlbCI6Im5vbmUiLCJhbm9ueW1pemVJcCI6ZmFsc2UsImxmQ2xpZW50SWQiOiJMRjEuMS45ZDRhMzQwOTQxMmQxMWU5LjE3MDE3OTE1NjI3MTkiLCJmb3JlaWduQ29va2llcyI6W10sInByb3BlcnRpZXMiOnt9LCJhdXRvVHJhY2tpbmdFbmFibGVkIjp0cnVlLCJhdXRvVHJhY2tpbmdNb2RlIjoic3BhIn0= HTTP/1.1
Host: tr-rc.lfeeder.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
content-length: 43
server: CloudFront
date: Tue, 05 Dec 2023 15:52:37 GMT
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8ZNCQMsSXPB9cZpVduIeekziWM_Qr3-58TSp2n9rsj7IMtUz8mJlVA==
X-Firefox-Spdy: h2
upshift.work/sttracker/css/get_file?url=https%3A%2F%2Fupshift.work%2Fwp-content%2Fuploads%2F2021%2F04%2Fupshift_favicon.png
404 Not Found 104 kB URL GET HTTP/2 upshift.work/sttracker/css/get_file?url=https%3A%2F%2Fupshift.work%2Fwp-content%2Fuploads%2F2021%2F04%2Fupshift_favicon.png
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
Size 104 kB (104013 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sttracker/css/get_file?url=https%3A%2F%2Fupshift.work%2Fwp-content%2Fuploads%2F2021%2F04%2Fupshift_favicon.png HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Cookie: _gcl_au=1.1.856261828.1701791562; __gtm_referrer=https%3A%2F%2Ftrail.upshift-workers.com%2F; _ga_B8JGRCVHB8=GS1.1.1701791562.1.0.1701791565.57.0.0; _ga=GA1.1.1070852392.1701791562; _lfa=LF1.1.9d4a3409412d11e9.1701791562719; uncode_privacy[consent_types]=%5B%5D; anonymousId=5f4a21d6-4148-4599-8f49-b783daf9f7f5; _conv_v=vi%3A1*sc%3A1*cs%3A1701791564*fs%3A1701791564*pv%3A1; _conv_s=si%3A1*sh%3A1701791564245-0.1594494211838855*pv%3A1; _conv_r=s%3Atrail.upshift-workers.com*m%3Areferral*t%3A*c%3A; _ga_V9P0QV9QEK=GS1.1.1701791564.1.0.1701791564.0.0.0; _pk_id.1599.b3d2=426bd201bfd50cd3.1701791565.; _pk_ref.1599.b3d2=%5B%22%22%2C%22%22%2C1701791565%2C%22https%3A%2F%2Ftrail.upshift-workers.com%2F%22%5D; _pk_id.1599.b3d2=426bd201bfd50cd3.1701791565.; _pk_ses.1599.b3d2=1; mr_vid=426bd201bfd50cd3; _heat_idv=312051552441769913; _heat_idl=312051552441739931; _uetsid=54bf98a0938611ee9987abd57cbed89a; _uetvid=54bf8750938611eebec1f9e10d9319ad
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Tue, 05 Dec 2023 15:52:41 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
x-hacker: Want root? Visit join.a8c.com and mention this header.
host-header: WordPress.com
vary: Accept-Encoding, Cookie
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
access-control-allow-origin: https://upshiftwork.typeform.com
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,OPTIONS
access-control-allow-headers: origin
p3p: CP="CAO PSA OUR"
x-frame-options: sameorigin
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
permissions-policy: accelerometer=(self), autoplay=(self), camera=(self), encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), magnetometer=(self), microphone=(self), midi=(self), payment=(self), usb=(self)
link: <https://upshift.work/wp-json/>; rel="https://api.w.org/"
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/themes/uncode/library/js/plugins.js?ver=1701785521
200 OK 826 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/themes/uncode/library/js/plugins.js?ver=1701785521
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
Size 826 kB (825867 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/cache/min/1/wp-content/themes/uncode/library/js/plugins.js?ver=1701785521 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:12:01 GMT
vary: Accept-Encoding
etag: W/"656f2fb1-c9a0b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
dashboard.heatmap.com/preprocessor.min.js?sid=1599
200 OK 29 kB URL GET HTTP/2 dashboard.heatmap.com/preprocessor.min.js?sid=1599
IP
Certificate IssuerAmazon
Subjectdashboard.heatmap.com
Fingerprint3E:81:DA:EF:27:8F:CD:68:1E:60:FE:7A:63:F1:18:AE:86:48:1D:41
ValidityMon, 06 Feb 2023 00:00:00 GMT - Wed, 06 Mar 2024 23:59:59 GMT
Hash 5b15db8d2e70f9703e6cac18476b02cc
5cf73fde388a59b219364cf8165b622b664ea58c
d340fedc50d3cfeb833fa87dc573fca2184188c6dca19e413de6d35b1967907d
GET /preprocessor.min.js?sid=1599 HTTP/1.1
Host: dashboard.heatmap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 05 Dec 2023 15:40:02 GMT
server: nginx/1.22.1
last-modified: Sat, 02 Dec 2023 22:02:09 GMT
etag: W/"656ba961-7055"
expires: Tue, 05 Dec 2023 16:40:02 GMT
pragma: public
cache-control: max-age=3600, public
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RUdeTyZIKIZOkkO3mwuR7n5ufxZN9ThmF0LVLHdvIsH3J0j4PXGgdA==
age: 754
X-Firefox-Spdy: h2
tracking.g2crowd.com/attribution_tracking/conversions/4153.js?p=https://upshift.work/&e=
200 OK 16 B URL GET HTTP/2 tracking.g2crowd.com/attribution_tracking/conversions/4153.js?p=https://upshift.work/&e=
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint58:6C:CC:72:DD:68:AC:24:54:39:71:63:4C:44:B9:50:83:2C:0E:9B
ValidityMon, 24 Jul 2023 00:00:00 GMT - Tue, 23 Jul 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash a454f56f4def70095e30e7676718042e
db6a025fafed1d1ad75a6d8bba133d473ecc58b0
3dae93a05edd9dcfc1864b87178a31e0bfa93e1a9b1c486c6e9cbf73cae87862
GET /attribution_tracking/conversions/4153.js?p=https://upshift.work/&e= HTTP/1.1
Host: tracking.g2crowd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:36 GMT
content-type: text/javascript; charset=utf-8
cache-control: max-age=600, public
etag: W/"3dae93a05edd9dcfc1864b87178a31e0"
x-request-id: 6722eb63-c2f8-4c2d-8609-a098dd817984
x-runtime: 0.003052
strict-transport-security: max-age=604800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self' *.g2crowd.com *.g2.com; connect-src 'self' *.g2crowd.com *.g2.com; font-src 'self' *.g2crowd.com *.g2.com; form-action 'self' *.g2crowd.com *.g2.com; frame-src 'self' *.g2crowd.com *.g2.com; img-src 'self' *.g2crowd.com *.g2.com; manifest-src 'self' *.g2crowd.com *.g2.com; media-src 'self' *.g2crowd.com *.g2.com; object-src 'self' *.g2crowd.com *.g2.com; script-src 'self' *.g2crowd.com *.g2.com; style-src 'self' *.g2crowd.com *.g2.com; worker-src 'self' *.g2crowd.com *.g2.com
vary: Origin
cf-cache-status: DYNAMIC
set-cookie: _session_id=2d5b5774ebc7bfbaf7ac9e7e2a93db01; path=/; expires=Tue, 19 Dec 2023 15:52:36 GMT; HttpOnly; secure; SameSite=None
__cf_bm=XyDv.XTRwG3nnYsk6iYuegKRBP1OaVJj8F9D2hjxrZM-1701791556-0-AQGaWkAtcjyNVdHz7GK6Z3PR8JnMq+J/D2yVVTjR381QaYkZriUb7SPWHX1eBbgO63FiuXkptLRrIj5/1ERUfNs=; path=/; expires=Tue, 05-Dec-23 16:22:36 GMT; domain=.g2crowd.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 830d750d1b15712d-OSL
content-encoding: br
X-Firefox-Spdy: h2
200 OK 102 kB URL User Request GET HTTP/2 IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
Size 102 kB (101878 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://trail.upshift-workers.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:34 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 15:49:31 GMT
cache-control: max-age=117, must-revalidate
x-nananana: Batcache-Hit
x-hacker: Want root? Visit join.a8c.com and mention this header.
host-header: WordPress.com
vary: Accept-Encoding, Cookie
access-control-allow-origin: https://upshiftwork.typeform.com
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,OPTIONS
access-control-allow-headers: origin
p3p: CP="CAO PSA OUR"
x-frame-options: sameorigin
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
permissions-policy: accelerometer=(self), autoplay=(self), camera=(self), encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), magnetometer=(self), microphone=(self), midi=(self), payment=(self), usb=(self)
link: <https://upshift.work/wp-json/>; rel="https://api.w.org/", <https://upshift.work/wp-json/wp/v2/pages/278432>; rel="alternate"; type="application/json", <https://upshift.work/>; rel=shortlink
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/plugins/segment-integration/assets/js/segment-scroll-depth.js?ver=1701785520
200 OK 3.9 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/plugins/segment-integration/assets/js/segment-scroll-depth.js?ver=1701785520
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (3949), with no line terminators
Hash 844915a071291768e358f98671e40c22
93c04dfff36d6f582aeba922875faa10fe1424ab
cededf45b6f65367bffa190a006b7e6e4319dbb99cd0456dcc8e9106a3333b67
GET /wp-content/cache/min/1/wp-content/plugins/segment-integration/assets/js/segment-scroll-depth.js?ver=1701785520 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:12:00 GMT
vary: Accept-Encoding
etag: W/"656f2fb0-f4e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=1701785520
200 OK 51 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=1701785520
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (50569), with no line terminators
Hash e836e165e47de3d8d2b76b16c3a42a06
4104f7d873d05c752e68251adc1569bd5486e091
dd02fe345ab4433e0b22d2bc59cd4ee5ab6511e1b77e5cdb9ddcbc2fb7310e43
GET /wp-content/cache/min/1/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=1701785520 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: text/css
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:12:00 GMT
vary: Accept-Encoding
etag: W/"656f2fb0-c589"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/sttracker/css/get_file?url=https%3A%2F%2Fupshift.work%2Fwp-content%2Fuploads%2F2021%2F04%2Fupshift_favicon.png
404 Not Found 104 kB URL GET HTTP/2 upshift.work/sttracker/css/get_file?url=https%3A%2F%2Fupshift.work%2Fwp-content%2Fuploads%2F2021%2F04%2Fupshift_favicon.png
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
Size 104 kB (104087 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sttracker/css/get_file?url=https%3A%2F%2Fupshift.work%2Fwp-content%2Fuploads%2F2021%2F04%2Fupshift_favicon.png HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Cookie: _gcl_au=1.1.856261828.1701791562; __gtm_referrer=https%3A%2F%2Ftrail.upshift-workers.com%2F; _ga_B8JGRCVHB8=GS1.1.1701791562.1.0.1701791565.57.0.0; _ga=GA1.1.1070852392.1701791562; _lfa=LF1.1.9d4a3409412d11e9.1701791562719; uncode_privacy[consent_types]=%5B%5D; anonymousId=5f4a21d6-4148-4599-8f49-b783daf9f7f5; _conv_v=vi%3A1*sc%3A1*cs%3A1701791564*fs%3A1701791564*pv%3A1; _conv_s=si%3A1*sh%3A1701791564245-0.1594494211838855*pv%3A1; _conv_r=s%3Atrail.upshift-workers.com*m%3Areferral*t%3A*c%3A; _ga_V9P0QV9QEK=GS1.1.1701791564.1.0.1701791564.0.0.0; _pk_id.1599.b3d2=426bd201bfd50cd3.1701791565.; _pk_ref.1599.b3d2=%5B%22%22%2C%22%22%2C1701791565%2C%22https%3A%2F%2Ftrail.upshift-workers.com%2F%22%5D; _pk_id.1599.b3d2=426bd201bfd50cd3.1701791565.; _pk_ses.1599.b3d2=1; mr_vid=426bd201bfd50cd3; _heat_idv=312051552441769913; _heat_idl=312051552441739931; _uetsid=54bf98a0938611ee9987abd57cbed89a; _uetvid=54bf8750938611eebec1f9e10d9319ad
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
server: nginx
date: Tue, 05 Dec 2023 15:52:41 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
x-hacker: Want root? Visit join.a8c.com and mention this header.
host-header: WordPress.com
vary: Accept-Encoding, Cookie
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
access-control-allow-origin: https://upshiftwork.typeform.com
access-control-allow-credentials: true
access-control-allow-methods: POST,GET,OPTIONS
access-control-allow-headers: origin
p3p: CP="CAO PSA OUR"
x-frame-options: sameorigin
x-xss-protection: 1
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
permissions-policy: accelerometer=(self), autoplay=(self), camera=(self), encrypted-media=(self), fullscreen=(self), geolocation=(self), gyroscope=(self), magnetometer=(self), microphone=(self), midi=(self), payment=(self), usb=(self)
link: <https://upshift.work/wp-json/>; rel="https://api.w.org/"
last-modified: Tue, 05 Dec 2023 15:52:40 GMT
x-nananana: Batcache-Set
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/themes/uncode/library/css/style.css?ver=1701785519
200 OK 791 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/themes/uncode/library/css/style.css?ver=1701785519
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
Size 791 kB (791358 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/cache/min/1/wp-content/themes/uncode/library/css/style.css?ver=1701785519 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: text/css
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:11:59 GMT
vary: Accept-Encoding
etag: W/"656f2faf-c133e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-B8JGRCVHB8&l=dataLayer&cx=c
200 OK 262 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-B8JGRCVHB8&l=dataLayer&cx=c
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Size 262 kB (261781 bytes)
Hash 7125eeecd50604142ec6d1eea5e16763
eafa51c73163ce1966227acb1166b6997be02727
db4bff0d14a0ce0874a1f316df315fc20b8c6f874720d55592f7ce1a48adeeb1
GET /gtag/js?id=G-B8JGRCVHB8&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 15:52:36 GMT
expires: Tue, 05 Dec 2023 15:52:36 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89032
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
app.varify.io/v/958
200 OK 293 B IP
Certificate IssuerLet's Encrypt
Subjectvarify.io
Fingerprint78:AA:9D:0B:F4:D1:CC:8C:F9:CC:44:81:67:B6:E9:88:63:F7:75:4B
ValiditySat, 02 Dec 2023 09:12:44 GMT - Fri, 01 Mar 2024 09:12:43 GMT
File type troff or preprocessor input, ASCII text, with very long lines (339), with no line terminators
Hash c545774014e5561914d2021fdad98ad3
04de1bd2a667a8a41ad6ae1646a2641587813eec
054ef1fe4ea66e89c6dfa81dbccc69ea977e22a2f8eb65405f81e47618815d96
GET /v/958 HTTP/1.1
Host: app.varify.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:36 GMT
content-type: application/json
x-powered-by: PHP/7.4.33
cache-control: max-age=120, public
access-control-allow-origin: https://upshift.work
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: X-Requested-With, Content-Type, X-Token-Auth, Authorization, X-Xsrf-Token
vary: Origin, Accept-Encoding
etag: W/"f7df47ecd4cb48e340cb2f8f9d06cef4"
x-ratelimit-limit: 60
x-ratelimit-remaining: 59
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OmU5y%2FJVq1izhDBooVYmvZypfDfw37Z9pRYXcFDs4yVwNTrsFu%2BLmhaUOe9C7XeFbKqCeOJ6OGfmxJMN81Ra7ntRbrr2k54j44madLrzjGzta7zhb6%2BnMfe6uwVkCno%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=0
server: cloudflare
cf-ray: 830d750d18e856c9-OSL
content-encoding: br
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1701785519
200 OK 2.4 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1701785519
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (2380), with no line terminators
Hash 7a15e227265c5ab5fba300d96584a8b2
dce1901cdb85d80e859d93dd89c6836a49f27143
e9123023cd67bc188dc33f540143c57954171b73c3aead6a913fb430d9955601
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=1701785519 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: text/css
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:11:59 GMT
vary: Accept-Encoding
etag: W/"656f2faf-940"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/themes/uncode/library/css/style-custom.css?ver=1701785520
200 OK 262 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/themes/uncode/library/css/style-custom.css?ver=1701785520
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 262 kB (261892 bytes)
Hash 759646ba913d8a34767ec735ba897310
638b87f7cc4c4b2c7f5b72486b1371ac051767e9
80279f65f9a0aec3694f447847deec1d11fd70fb2071ed4264429ba8e39ef9c0
GET /wp-content/cache/min/1/wp-content/themes/uncode/library/css/style-custom.css?ver=1701785520 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: text/css
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:12:00 GMT
vary: Accept-Encoding
etag: W/"656f2fb0-3ff04"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
www.g2.com/products/upshift/rating_schema.json
200 OK 215 B URL GET HTTP/2 www.g2.com/products/upshift/rating_schema.json
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint9E:E3:C8:2D:D3:D3:22:68:FB:15:65:77:6A:19:64:19:43:7F:27:5A
ValidityThu, 27 Apr 2023 00:00:00 GMT - Fri, 26 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 5d57413786e306ff9173526c937e63e8
0566bf878fd2b7f5cf1e22bf3e7ebe09b306a0b4
f8003933023448edd1fef1e301df30236d7916c9e5e103085fa909fe05153d2d
GET /products/upshift/rating_schema.json HTTP/1.1
Host: www.g2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:36 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
etag: W/"62371df28ee48e6336f0ed2fdbb2a47f"
cache-control: max-age=0, private, must-revalidate
content-security-policy: default-src 'self' *.g2crowd.com *.g2.com; connect-src * 'self' *.g2crowd.com *.g2.com; frame-src * 'self' *.g2crowd.com *.g2.com; font-src * data: 'self' *.g2crowd.com *.g2.com; form-action * 'self' *.g2crowd.com *.g2.com; img-src * data: blob: 'self' *.g2crowd.com *.g2.com; manifest-src 'self' *.g2crowd.com *.g2.com; media-src * blob: 'self' *.g2crowd.com *.g2.com; object-src 'self' *.g2crowd.com *.g2.com; script-src * 'unsafe-inline' 'unsafe-eval' 'self' *.g2crowd.com *.g2.com; style-src * 'unsafe-inline' 'self' *.g2crowd.com *.g2.com; worker-src * blob: 'self' *.g2crowd.com *.g2.com; frame-ancestors *
x-request-id: 1387b638-3565-4ebf-92a0-64df85af4ec0
x-runtime: 0.005002
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Origin,Accept-Encoding
cf-cache-status: DYNAMIC
set-cookie: AWSALB=CbB8FCraRxGoM2rPJ1NYZSJTvVDJEoQbYrq7aNCs96lbyCLBGLXPWkTIJhfuw+Zs0m+FH6Uq2IzVr56/ySHqhoCGXlnmxfiMJ+blwgeX5HcjJpNmB4E4O0qugTXI; Expires=Tue, 12 Dec 2023 15:52:36 GMT; Path=/
AWSALBCORS=CbB8FCraRxGoM2rPJ1NYZSJTvVDJEoQbYrq7aNCs96lbyCLBGLXPWkTIJhfuw+Zs0m+FH6Uq2IzVr56/ySHqhoCGXlnmxfiMJ+blwgeX5HcjJpNmB4E4O0qugTXI; Expires=Tue, 12 Dec 2023 15:52:36 GMT; Path=/; SameSite=None; Secure
__cf_bm=H0FtIleTMx0Be9a7ic1ZSEMbV0XaVbVEutf0duH4I1w-1701791556-0-Aa6iRuUbWemoiMTXABTM8WOPUbpF4suzvGtZzmjE0Oi2OkxBsHutxelyppSZdTIMsWSswbFHU8y1mrrkteuzVns=; path=/; expires=Tue, 05-Dec-23 16:22:36 GMT; domain=.g2.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 830d7509fe855685-OSL
content-encoding: br
X-Firefox-Spdy: h2
c.heatmap.com/1599/upshift.work.json
200 OK 1.8 kB URL GET HTTP/2 c.heatmap.com/1599/upshift.work.json
IP
Certificate IssuerAmazon
Subjectc.heatmap.com
Fingerprint83:E9:7A:F3:D2:BD:BF:4A:BA:4B:03:25:AD:8C:90:83:A0:20:88:72
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sun, 15 Sep 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1963), with no line terminators
Hash ef4ec72cfc902ca92daa390415bb9662
5cf221aace9d8f7a4f98155755c20290856a11f7
c67b609321e2296b95b5e3b57e24aaabd1cbd775c7e9f21dd9b2dd47b3586b9b
GET /1599/upshift.work.json HTTP/1.1
Host: c.heatmap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
date: Tue, 05 Dec 2023 10:16:23 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, PUT, POST, DELETE
access-control-expose-headers: ETag
last-modified: Wed, 22 Nov 2023 17:17:17 GMT
etag: W/"7f9f51e8aba6f63699acc721e924cc66"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: mMQjFegfqRTkyCcTIFem1Ti6zxmPPI3rFC9CI-lSIIxz5FVlhB7S-Q==
age: 20176
X-Firefox-Spdy: h2
s0.wp.com/wp-content/js/bilmur.min.js?m=202349
200 OK 5.7 kB URL GET HTTP/2 s0.wp.com/wp-content/js/bilmur.min.js?m=202349
IP
Certificate IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File type ASCII text, with very long lines (5823), with no line terminators
Hash d75ffda744098662ba4b3d3466cfdf61
44c93fa8548712ebc2b591dc1adf0881d8ed01cb
0cf01c41f3a3b72f497483d86f90ace09d0ce57e0b634c759f718077dd36eca4
GET /wp-content/js/bilmur.min.js?m=202349 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
last-modified: Wed, 15 Nov 2023 17:05:24 GMT
vary: Accept-Encoding
etag: W/"6554fa54-161b"
content-encoding: br
expires: Tue, 03 Dec 2024 00:00:02 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca MISS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
alt-svc: h3=":443"; ma=86400
x-nc: HIT arn 2
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:34 GMT
expires: Fri, 29 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 471302
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
upshift.work/wp-content/uploads/2021/04/Group-94-2.jpg
200 OK 74 kB URL GET HTTP/2 upshift.work/wp-content/uploads/2021/04/Group-94-2.jpg
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, progressive, precision 8, 1920x245, components 3\012- data
Hash 6edd19ed0943a0d42fa451e5687b18a0
c3a89d11f7d8f653098280cef4fb79a3f17995aa
5b6b7e604bfdf623b3064835f9c0600ba215be1cb0a51cbfe1f4aca9730d4ea4
GET /wp-content/uploads/2021/04/Group-94-2.jpg HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:36 GMT
content-type: image/jpeg
content-length: 74215
strict-transport-security: max-age=31536000
last-modified: Fri, 16 Apr 2021 16:22:28 GMT
etag: "6079b9c4-121e7"
expires: Tue, 12 Dec 2023 15:52:36 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
accept-ranges: bytes
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
acsbapp.com/apps/app/dist/js/app.js
200 OK 299 kB URL GET HTTP/2 acsbapp.com/apps/app/dist/js/app.js
IP
Certificate IssuerGoogle Trust Services LLC
Subjectacsbapp.com
Fingerprint36:8E:00:28:16:05:4E:E0:25:C6:B8:CA:7C:F6:07:92:BE:A3:75:0D
ValiditySat, 28 Oct 2023 05:30:21 GMT - Fri, 26 Jan 2024 05:30:20 GMT
Size 299 kB (298841 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /apps/app/dist/js/app.js HTTP/1.1
Host: acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:36 GMT
content-type: application/javascript; charset=utf-8
x-guploader-uploadid: ABPtcPqcKdYCeGDD4qyVLFLUtjOQYAQIH5pgQIID_6JATj06hkSKkaKe3Y5ufH1XtJEXBmCIiY8OCbdZlQ
cache-control: public, max-age=300, must-revalidate
expires: Wed, 04 Dec 2024 15:52:36 GMT
last-modified: Tue, 05 Dec 2023 13:28:53 GMT
etag: W/"97fd563e542ae000940983e3daa2fcff"
x-goog-generation: 1701782933402285
x-goog-metageneration: 3
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 298841
x-goog-hash: crc32c=bwAckQ==, md5=l/1WPlQq4ACUCYPj2qL8/w==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: *
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 830d750cdd0a56a2-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.acsbapp.com/config/upshift.work/config.json
200 OK 163 B URL GET HTTP/2 cdn.acsbapp.com/config/upshift.work/config.json
IP
Certificate IssuerGoogle Trust Services LLC
Subjectacsbapp.com
Fingerprint36:8E:00:28:16:05:4E:E0:25:C6:B8:CA:7C:F6:07:92:BE:A3:75:0D
ValiditySat, 28 Oct 2023 05:30:21 GMT - Fri, 26 Jan 2024 05:30:20 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 45913fcf613680c33090ac5ce3cf20f1
e38de46fb66bf6e8969b1e34d7ee17817885ba7c
f1f78a97d70b38f6c358ed8be792b2f559f8cf10f0e4aa56420cd39d3daa41b0
GET /config/upshift.work/config.json HTTP/1.1
Host: cdn.acsbapp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:38 GMT
content-type: application/json
x-guploader-uploadid: ABPtcPq0VWeuAPgO3NvOG-OtJCfQYPejJxJmafLqQBlJwe6uhl7NR7q6oNWoL5kDuUkqEFiBs84
cache-control: public, max-age=300, must-revalidate
expires: Wed, 04 Dec 2024 15:52:38 GMT
last-modified: Thu, 09 Feb 2023 06:08:49 GMT
etag: W/"618d315b84e5124f785c615eacb95792"
x-goog-generation: 1675922929835762
x-goog-metageneration: 2
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 163
x-goog-hash: crc32c=YSJ/pA==, md5=YY0xW4TlEk94XGFerLlXkg==
x-goog-storage-class: STANDARD
access-control-allow-origin: *
access-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 830d75192a4956c6-OSL
content-encoding: br
X-Firefox-Spdy: h2
upshift.work/wp-includes/js/jquery/jquery-migrate.min.js
200 OK 14 kB URL GET HTTP/2 upshift.work/wp-includes/js/jquery/jquery-migrate.min.js
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (13479)
Hash 9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
vary: Accept-Encoding
etag: W/"6482bd64-3509"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
fonts.googleapis.com/css?display=swap&family=Poppins|Droid+Serif|Playfair+Display|Roboto|Quicksand|Lora|Roboto+Condensed|Aclonica
200 OK 12 kB URL GET HTTP/2 fonts.googleapis.com/css?display=swap&family=Poppins|Droid+Serif|Playfair+Display|Roboto|Quicksand|Lora|Roboto+Condensed|Aclonica
IP
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
Hash 332a54db7a40a7a3c275b2e6274a80b0
340c934ce4405d78c1e4873e56582a61f989bf9e
dde83b4a68081f907a2748d92bd839200d807f2e97f9ef789753edfc1f3201c2
GET /css?display=swap&family=Poppins|Droid+Serif|Playfair+Display|Roboto|Quicksand|Lora|Roboto+Condensed|Aclonica HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 15:52:35 GMT
date: Tue, 05 Dec 2023 15:52:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.hsadspixel.net/fb.js
200 OK 6.2 kB IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintFC:DB:B2:8A:EC:7E:99:5C:25:C2:01:C0:DB:44:A4:07:41:7E:4F:3A
ValidityWed, 17 May 2023 00:00:00 GMT - Thu, 16 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (6425), with no line terminators
Hash 57f8b2f4f09d3acc0f2e476ff194381a
78f3a25b965da959c38aea5e2d05a7fe942222fc
12b55f5095061e4b994f10ece9312cdd91ecda88e7b80c529fdcbec4d2f8c9fa
GET /fb.js HTTP/1.1
Host: js.hsadspixel.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:38 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 04 Dec 2023 14:19:28 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: XlFw32Cnxu8ZjnNH.SH7ungVy3g8LtQG
etag: W/"ed930579444c6c7c0292363361667508"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3c43e000c50d5633eb558057710f3c54.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: p-z3KKfFaC79j2Mm0GNhJpHqTpGcbbQtOEJdEd4s2C8_o6zzyp7gvQ==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=adsscriptloaderstatic/static-1.501/bundles/pixels-release.js&cfRay=8304be078f87b4f4-ARN
cache-control: max-age=600
x-hs-target-asset: adsscriptloaderstatic/static-1.501/bundles/pixels-release.js
x-content-type-options: nosniff
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-b78fbd96d-d59vm
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 6ae3cf4d-e5f4-4e37-8a1e-1956f5ad0e11
x-request-id: 6ae3cf4d-e5f4-4e37-8a1e-1956f5ad0e11
cache-tag: staticjsapp-AdsScriptLoaderCloudflare-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 20
server: cloudflare
cf-ray: 830d7517bcf4b527-OSL
content-encoding: br
X-Firefox-Spdy: h2
ylghsmo5pb.execute-api.us-west-2.amazonaws.com/production
101 Switching Protocols 0 B URL GET HTTP/1.1 ylghsmo5pb.execute-api.us-west-2.amazonaws.com/production
IP
Certificate IssuerAmazon
Subject*.execute-api.us-west-2.amazonaws.com
Fingerprint5B:E9:BD:55:99:9F:A3:A3:42:D1:8A:28:90:CA:25:C4:0B:35:FC:07
ValidityFri, 02 Jun 2023 00:00:00 GMT - Sun, 30 Jun 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /production HTTP/1.1
Host: ylghsmo5pb.execute-api.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://upshift.work
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IGbpuak9XC582suumk1PVA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Tue, 05 Dec 2023 15:52:39 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: HarPPDrP167QHO/j62BKcdSTobc=
sec-websocket-extensions: permessage-deflate
upshift.work/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index.js?ver=1701785520
200 OK 13 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index.js?ver=1701785520
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type HTML document, ASCII text, with very long lines (13181), with no line terminators
Hash 6886e13138f81f707f6314154aca6553
592f1cb33d0e0f0e7bb96b90e4df8e68fd43d059
19fe0ce5dc53f6be4e4dbdd66fb0b76b35b93b227bd0eac2db109339ddb61eaf
GET /wp-content/cache/min/1/wp-content/plugins/contact-form-7/includes/js/index.js?ver=1701785520 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:12:00 GMT
vary: Accept-Encoding
etag: W/"656f2fb0-337d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/plugins/uncode-privacy/assets/js/js-cookie.min.js
200 OK 2.6 kB URL GET HTTP/2 upshift.work/wp-content/plugins/uncode-privacy/assets/js/js-cookie.min.js
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (2634), with no line terminators
Hash cb5f599fcc502fbc5363e68ef875e27e
5d074473bcbb468e3365d2f5b122fb441a93f3b4
949a88f75005d152f8d6feccda18a52946122ed79ad647d5b04e1dcc6b0ee035
GET /wp-content/plugins/uncode-privacy/assets/js/js-cookie.min.js HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Tue, 27 Jun 2023 23:19:03 GMT
vary: Accept-Encoding
etag: W/"649b6e67-a28"
expires: Tue, 12 Dec 2023 15:52:35 GMT
cache-control: max-age=604800
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=9034923&utk=
200 OK 115 B URL GET HTTP/2 forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=9034923&utk=
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash 0f474e6b5212bc681a89498739fadc4c
a505c33336b611e69110728e39a7fcc24b8fcd34
5bd9702b453c9bb5cd429099aad122ad02d1a024a8fce156ae0acd0b81743119
GET /collected-forms/v1/config/json?portalId=9034923&utk= HTTP/1.1
Host: forms.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:39 GMT
content-type: application/json;charset=utf-8
vary: Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
access-control-allow-origin: https://upshift.work
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
x-envoy-upstream-service-time: 10
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-b78fbd96d-59k59
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 5be065b2-127d-4a81-ae7c-c0f004fd5977
x-request-id: 5be065b2-127d-4a81-ae7c-c0f004fd5977
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 830d751b3fb856c7-OSL
content-encoding: br
X-Firefox-Spdy: h2
snid.snitcher.com/8414212.js
200 OK 25 kB URL GET HTTP/2 snid.snitcher.com/8414212.js
IP
Certificate IssuerAmazon
Subjectsnid.snitcher.com
Fingerprint1F:83:3D:13:A5:28:88:86:D3:EC:65:D5:B0:84:E8:1C:F5:76:DD:A6
ValidityFri, 18 Aug 2023 00:00:00 GMT - Sat, 14 Sep 2024 23:59:59 GMT
File type ASCII text, with very long lines (967)
Hash e5fbaaea665e65271cf8844f6e423e40
3d9dac956544b8673972c461830ef7bc8db0b2f0
dc755061df85d65a8264066656a5f7b1280074c6e4428ab54236fee5058645e9
GET /8414212.js HTTP/1.1
Host: snid.snitcher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:37 GMT
content-type: application/javascript
content-length: 24839
cache-control: no-cache, private
access-control-allow-origin: *
x-vapor-base64-encode: True
apigw-requestid: PegSzhHuliAEPhw=
set-cookie: SNID=eyJpdiI6IjlGcXdiL1d6L2diL0NjckF6T2p2c1E9PSIsInZhbHVlIjoiQWFKWHRlV003em5hYVdLQnh5SDZ2VFZiR1doYVo0cGlxclBab2hrOUdRNzBkL09aTm4veUpZaGkzcmsxNW1xQTlpUk1iSDc0Z1NsdW9URkt6L2hUNmhGQW5xS0dEL2p6VWpDYTJadGRKYVh6WmovQU8xWDl1RmM4Q0xpVjZKY24iLCJtYWMiOiI4NzEwYWY5ZTVjMjA5ZmI5YjZjM2UxNWNlZWUzYjIxYTk5ZWFhYTY4MGQzZjc2ZjAwZjhmY2ViMWJjZjkwN2E4IiwidGFnIjoiIn0%3D; expires=Thu, 04-Dec-2025 15:52:36 GMT; Max-Age=63071999; path=/;samesite=none; secure; httponly; samesite=none
X-Firefox-Spdy: h2
upshift.work/?custom-css=7c33d96245
200 OK 4.7 kB URL GET HTTP/2 upshift.work/?custom-css=7c33d96245
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (5135), with no line terminators
Hash aca39a72ee8b6c39b4c6b0ef2771ea3f
efa65344d0bdf99e3ae4bf4297caf03625f768e4
d120b3f5d57e30f70bd7bb57c3a80b06ec37d4944550d4e7ffc3a9b7237fe17d
GET /?custom-css=7c33d96245 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: text/css;charset=utf-8
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 15:49:43 GMT
cache-control: max-age=128, must-revalidate
x-nananana: Batcache-Hit
x-hacker: Want root? Visit join.a8c.com and mention this header.
host-header: WordPress.com
vary: Accept-Encoding, Cookie
expires: Wed, 04 Dec 2024 15:49:43 GMT
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
dashboard.heatmap.com/preprocessor.min.js?sid=1599
200 OK 29 kB URL GET HTTP/2 dashboard.heatmap.com/preprocessor.min.js?sid=1599
IP
Certificate IssuerAmazon
Subjectdashboard.heatmap.com
Fingerprint3E:81:DA:EF:27:8F:CD:68:1E:60:FE:7A:63:F1:18:AE:86:48:1D:41
ValidityMon, 06 Feb 2023 00:00:00 GMT - Wed, 06 Mar 2024 23:59:59 GMT
Hash 5b15db8d2e70f9703e6cac18476b02cc
5cf73fde388a59b219364cf8165b622b664ea58c
d340fedc50d3cfeb833fa87dc573fca2184188c6dca19e413de6d35b1967907d
GET /preprocessor.min.js?sid=1599 HTTP/1.1
Host: dashboard.heatmap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 05 Dec 2023 15:40:02 GMT
server: nginx/1.22.1
last-modified: Sat, 02 Dec 2023 22:02:09 GMT
etag: W/"656ba961-7055"
expires: Tue, 05 Dec 2023 16:40:02 GMT
pragma: public
cache-control: max-age=3600, public
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dUMhU11mGykxJrPIRJgs6cm7a87Q54XlB3vhrEf4-91lTAh1oz8hLA==
age: 754
X-Firefox-Spdy: h2
survey.survicate.com/workspaces/7e5b485118252bfdd1f1e031d8a5f743/web_surveys.js
200 OK 17 kB URL GET HTTP/2 survey.survicate.com/workspaces/7e5b485118252bfdd1f1e031d8a5f743/web_surveys.js
IP
ASN #34989 ServeTheWorld AS
Certificate IssuerSectigo Limited
Subject*.survicate.com
FingerprintCD:E8:76:3B:3F:D9:2D:8D:E9:6D:72:DB:39:4E:E7:6B:0A:3F:49:6A
ValidityMon, 18 Sep 2023 00:00:00 GMT - Sat, 31 Aug 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /workspaces/7e5b485118252bfdd1f1e031d8a5f743/web_surveys.js HTTP/1.1
Host: survey.survicate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:36 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 1158558
cdn-uid: 039640c0-4b09-428d-a0ae-513ccdd44502
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: max-age=300
etag: W/"01638680936b139bfa9d1a30fc585a70"
last-modified: Tue, 05 Dec 2023 14:33:41 GMT
x-amz-id-2: 19n6KXY5WLrkk9flXFx8yYGNKLeT+zSXwSWhPO7ioC9IF9ywdun7BQah1QyDx0KAE8uFOrZhytY=
x-amz-request-id: VPGGDZHCY6A158JN
x-amz-version-id: 05wAVfkETKvY4P2ofLlLiPaEJitu_wKh
cdn-proxyver: 1.04
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/05/2023 14:50:54
cdn-edgestorageid: 830
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
report-to: { "group": "csp-endpoint-survey", "max_age": 10886400, "endpoints": [{ "url": "https://panel-api.survicate.com/_/report_csp/survey" }] }
content-security-policy: default-src 'self' 'unsafe-inline' https://surveys-static.survicate.com; connect-src https://respondent.survicate.com 'self'; img-src https://*; font-src https://surveys-static.survicate.com https://use.typekit.net https://fonts.gstatic.com; report-to csp-endpoint-survey;
cdn-status: 200
cdn-requestid: a39b49431108346b0bd8f7a3eade41f3
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1701785520
200 OK 1.3 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1701785520
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (1346), with no line terminators
Hash 54dc805737900a1ec932aa56cc7f5d8c
57d965f78a96fbf9bb66bc44f2c81766094e90d9
10c37f06120100e6d46afab1c634c119781d8c73be0c250b114fd3d821f1b477
GET /wp-content/cache/min/1/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1701785520 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:12:00 GMT
vary: Accept-Encoding
etag: W/"656f2fb0-50a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
fonts.googleapis.com/css?display=swap&family=Roboto&display=swap
200 OK 2.3 kB URL GET HTTP/2 fonts.googleapis.com/css?display=swap&family=Roboto&display=swap
IP
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (2319), with no line terminators
Hash a923b98baca4b55a4d2a4f806222686b
767d3e48a33b662bdb12e0f498fd2510a59a7db4
e927b86850ae1f8b6c9ab3722b76d1f1f72f224d0a3523b04ca29df0e7aee222
GET /css?display=swap&family=Roboto&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 15:52:35 GMT
date: Tue, 05 Dec 2023 15:52:35 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.hs-banner.com/v2/9034923/banner.js
200 OK 67 kB URL GET HTTP/2 js.hs-banner.com/v2/9034923/banner.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2C:9C:DC:70:87:29:18:51:70:06:6E:2F:4B:4D:E0:23:1F:30:84:18
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (64998)
Hash e1ceada5bff0dc8f179bdbd8f9f6c9a0
784d6a7350ecea4bac964498c9d131c58b8fad20
4de3659e2260d413b790799daf31aa46097d2a06a12f6484ab93ba99b0e0e0ca
GET /v2/9034923/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:38 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: MJQs9/IgGL3hs1olnmz16QDAIFjEml/sm7mCVaKukTVyU6REcB/KDyEd4q59U4jZdCYhq5XL7gQ=
x-amz-request-id: 74WER11R5SPMW2SZ
last-modified: Wed, 18 Oct 2023 17:28:38 GMT
etag: W/"e1ceada5bff0dc8f179bdbd8f9f6c9a0"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: OYjbIfE4l114Eae42MYZxQYcagqsM64n
access-control-allow-origin: https://selectforcegroup.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Tue, 05 Dec 2023 15:57:38 GMT
x-envoy-upstream-service-time: 78
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-fd6fb8679-smrrp
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 9d13ee74-bb01-4dd0-a239-8f7293a48470
x-request-id: 9d13ee74-bb01-4dd0-a239-8f7293a48470
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 830d7517bd3eb4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
js.hscollectedforms.net/collectedforms.js
200 OK 70 kB URL GET HTTP/2 js.hscollectedforms.net/collectedforms.js
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:38 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Mon, 04 Dec 2023 12:10:50 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: qOShuUL.zI.RMIWwukZE0taADNX_1wuf
etag: W/"109b7665e389a0b17fbf732bf7a02089"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 66b6cd04ec22251498906e833eb08668.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: VYF_jVa1-2sRjNmERjazJbK2r_FW0ld2CpNd2Dt2EejYoBdeLseGYg==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=collected-forms-embed-js/static-1.444/bundles/project.js&cfRay=830d7517ac2b56c7-ARN
cache-control: s-maxage=600, max-age=300
x-hs-target-asset: collected-forms-embed-js/static-1.444/bundles/project.js
x-content-type-options: nosniff
access-control-allow-origin: *
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 5
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-b78fbd96d-t4n22
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 95a95cf1-ce72-4f71-84b6-09f085dee70e
x-request-id: 95a95cf1-ce72-4f71-84b6-09f085dee70e
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 830d7517ac2b56c7-OSL
content-encoding: br
X-Firefox-Spdy: h2
dashboard.heatmap.com/heatmap-light.min.js?sid=1599
200 OK 165 kB URL GET HTTP/2 dashboard.heatmap.com/heatmap-light.min.js?sid=1599
IP
Certificate IssuerAmazon
Subjectdashboard.heatmap.com
Fingerprint3E:81:DA:EF:27:8F:CD:68:1E:60:FE:7A:63:F1:18:AE:86:48:1D:41
ValidityMon, 06 Feb 2023 00:00:00 GMT - Wed, 06 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (571)
Size 165 kB (165255 bytes)
Hash 58cfd289dc57a3b5cee020ec979645c9
27c90dabcc30ddc59ae0b779935086761bc33159
5d59948f0b5c4593667c6a2026f00147a65dc258e2a3e48dc3e218442d7bf758
GET /heatmap-light.min.js?sid=1599 HTTP/1.1
Host: dashboard.heatmap.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 05 Dec 2023 15:08:07 GMT
server: nginx/1.22.1
last-modified: Tue, 05 Dec 2023 11:59:14 GMT
etag: W/"656f1092-28587"
expires: Tue, 05 Dec 2023 16:08:07 GMT
pragma: public
cache-control: max-age=3600, public
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ygzTI0y4-rgP8hMObnfIIgQfwQDPEAzPD_7kzcME9bosFex2g4-quQ==
age: 2670
X-Firefox-Spdy: h2
www.clickcease.com/monitor/stat.js
200 OK 145 kB URL GET HTTP/2 www.clickcease.com/monitor/stat.js
IP
Certificate IssuerAmazon
Subjectclickcease.com
Fingerprint47:05:6C:3F:E4:F3:D3:AB:C9:30:1E:06:F5:D9:A4:50:89:A2:F9:A1
ValiditySun, 26 Nov 2023 00:00:00 GMT - Tue, 24 Dec 2024 23:59:59 GMT
Size 145 kB (145222 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /monitor/stat.js HTTP/1.1
Host: www.clickcease.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 12 Sep 2023 09:05:15 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: Cf02rYNryv9UIBzoGOQeQJTZ2QU2vf2Y
server: AmazonS3
content-encoding: gzip
date: Tue, 05 Dec 2023 15:52:32 GMT
etag: W/"e112b8bf96f23bc2970347a3c98e37fc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 990c1aa70667fe4e8f93d88ac8400fc4.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: WCXivZhe6ZYYeC2-HqCxmIYfJsUzu5wbLprWipCfzVWqJB8lmOHuvQ==
age: 10
x-frame-options: SAMEORIGIN
referrer-policy: no-referrer-when-downgrade
content-security-policy: frame-ancestors 'self' https://clickcease.com https://*.clickcease.com; upgrade-insecure-requests;
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains
permissions-policy: microphone 'none'; camera 'none';
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-V9P0QV9QEK&l=dataLayer&cx=c
200 OK 250 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-V9P0QV9QEK&l=dataLayer&cx=c
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3034)
Size 250 kB (249852 bytes)
Hash f3240db047c7e21ee82dcc6b4e1d528c
d69031c3a0b6f409d9d9e79e7a6658dcba49c2ca
c4dccb54e02344b287c58339368f63d056699cd77ffda40cc74368a39e18d7dc
GET /gtag/js?id=G-V9P0QV9QEK&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 15:52:37 GMT
expires: Tue, 05 Dec 2023 15:52:37 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 86127
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
upshift.work/wp-content/cache/min/1/wp-content/uploads/2023/10/Redirect-script.js?ver=1701785521
200 OK 807 B URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/uploads/2023/10/Redirect-script.js?ver=1701785521
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type Unicode text, UTF-8 text, with very long lines (749), with no line terminators
Hash 859407c37d4c23833415a7dbbfabb372
6fe0c9655170645d650c91fb112336de4d55c302
a499f7b9746fb812f9b11fead7000aca9bf77570cd1384b3a1ba4533455ceb0e
GET /wp-content/cache/min/1/wp-content/uploads/2023/10/Redirect-script.js?ver=1701785521 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: application/javascript
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:12:01 GMT
vary: Accept-Encoding
etag: W/"656f2fb1-327"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
upshift.work/wp-content/cache/min/1/wp-content/themes/uncode/library/css/uncode-icons.css?ver=1701785519
200 OK 62 kB URL GET HTTP/2 upshift.work/wp-content/cache/min/1/wp-content/themes/uncode/library/css/uncode-icons.css?ver=1701785519
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type ASCII text, with very long lines (62147), with no line terminators
Hash 1ca1a8f0be8b9206de61d19dd1649031
8e896e869b854af9bd58cd10fb9b79bc8d4d95b1
8b54e3b62708e14833a7d27c3c97d2a9fb2c6a7f44e2a578fc0dc222e5ef5cbf
GET /wp-content/cache/min/1/wp-content/themes/uncode/library/css/uncode-icons.css?ver=1701785519 HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:35 GMT
content-type: text/css
strict-transport-security: max-age=31536000
last-modified: Tue, 05 Dec 2023 14:11:59 GMT
vary: Accept-Encoding
etag: W/"656f2faf-f2c3"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
ipapi.co/json/?key=u2EvI5IPdfEQe2oZa25v0usGWxXdidincDGAnhV08fHfmV8e2i
200 OK 743 B URL GET HTTP/2 ipapi.co/json/?key=u2EvI5IPdfEQe2oZa25v0usGWxXdidincDGAnhV08fHfmV8e2i
IP
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1C:DB:D6:56:6B:17:32:E7:56:AF:64:8D:07:3B:37:96:77:A8:FD:F1
ValiditySun, 16 Apr 2023 00:00:00 GMT - Mon, 15 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (869), with no line terminators
Hash 66396024adc96d9030a9ae0dfdd2a7fd
ca84107ac52c428b36df8b4bc4f2f88e9e678707
05ca12ca27f9e889eaffe362efa363f4ff3249fbc1f06bcac3342e7862f57c4b
GET /json/?key=u2EvI5IPdfEQe2oZa25v0usGWxXdidincDGAnhV08fHfmV8e2i HTTP/1.1
Host: ipapi.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 05 Dec 2023 15:52:36 GMT
content-type: application/json
allow: HEAD, OPTIONS, GET, OPTIONS, POST
x-frame-options: DENY
vary: Host, origin
access-control-allow-origin: https://upshift.work
x-content-type-options: nosniff
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=82cV58Qp%2Ba4CwMiQLQKQ49FYWrO8Z7pksGlgwbvBlP%2BWkkjBcOMJeaRDqfS9STXobzUVAKVxQ9pV4EJaLOHQgHpQfaoBn%2Brq8h3NVLMtdaD70cpzb9S82r8G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830d750cd9030b02-OSL
content-encoding: br
X-Firefox-Spdy: h2
upshift.work/wp-admin/admin-ajax.php
200 OK 73 B URL POST HTTP/2 upshift.work/wp-admin/admin-ajax.php
IP
Certificate IssuerLet's Encrypt
Subjecttls.automattic.com
Fingerprint66:DD:D5:D0:86:07:CE:1D:13:32:0E:7A:ED:86:1C:40:37:16:36:A0
ValidityThu, 23 Nov 2023 05:55:49 GMT - Wed, 21 Feb 2024 05:55:48 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash f32afc2e33377520878963f73b62f390
7ee8cea8891a02270f683346f7aa4658adc757b4
f490fb75934697a796104572377cf4663e4fa8b54eeeffa46212bad9d9fa298e
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: upshift.work
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://upshift.work/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 23
Origin: https://upshift.work
DNT: 1
Connection: keep-alive
Cookie: _gcl_au=1.1.856261828.1701791562; __gtm_referrer=https%3A%2F%2Ftrail.upshift-workers.com%2F; _ga_B8JGRCVHB8=GS1.1.1701791562.1.0.1701791562.60.0.0; _ga=GA1.1.1070852392.1701791562; _lfa=LF1.1.9d4a3409412d11e9.1701791562719
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 15:52:38 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-hacker: Want root? Visit join.a8c.com and mention this header.
host-header: WordPress.com
access-control-allow-origin: https://upshift.work
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
set-cookie: uncode_privacy[consent_types]=%5B%5D; expires=Wed, 04-Dec-2024 15:52:37 GMT; Max-Age=31536000; path=/; secure; SameSite=Strict
anonymousId=5f4a21d6-4148-4599-8f49-b783daf9f7f5; expires=Wed, 04-Dec-2024 15:52:38 GMT; Max-Age=31536000; path=/; domain=upshift.work
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: br
x-ac: 3.arn _atomic_ams BYPASS
X-Firefox-Spdy: h2
pixel.wp.com/boom.gif?bilmur=1&batcache_hit=1&provider=wordpress.com&service=atomic&host_name=upshift.work&url_path=%2F&nt_fetchStart=575&nt_domainLookupStart=575&nt_domainLookupEnd=575&nt_connectStart=575&nt_connectEnd=575&nt_secureConnectionStart=575&nt_requestStart=579&nt_responseStart=723&nt_responseEnd=727&nt_domLoading=871&nt_domInteractive=2069&nt_domContentLoadedEventStart=4377&nt_domContentLoadedEventEnd=4405&nt_domComplete=5415&nt_loadEventStart=5416&nt_loadEventEnd=5422&nt_redirectCount=0&nt_nextHopProtocol=h2&nt_api_level=2&first_contentful_paint=1937&resource_size=3905551&resource_transferred=1183122&resource_cache_percent=0&js_size=2109880&js_transferred=582284&js_cache_percent=0&blocking_size=0&blocking_transferred=0&last_resource_end=8280
204 No Content 0 B URL GET HTTP/2 pixel.wp.com/boom.gif?bilmur=1&batcache_hit=1&provider=wordpress.com&service=atomic&host_name=upshift.work&url_path=%2F&nt_fetchStart=575&nt_domainLookupStart=575&nt_domainLookupEnd=575&nt_connectStart=575&nt_connectEnd=575&nt_secureConnectionStart=575&nt_requestStart=579&nt_responseStart=723&nt_responseEnd=727&nt_domLoading=871&nt_domInteractive=2069&nt_domContentLoadedEventStart=4377&nt_domContentLoadedEventEnd=4405&nt_domComplete=5415&nt_loadEventStart=5416&nt_loadEventEnd=5422&nt_redirectCount=0&nt_nextHopProtocol=h2&nt_api_level=2&first_contentful_paint=1937&resource_size=3905551&resource_transferred=1183122&resource_cache_percent=0&js_size=2109880&js_transferred=582284&js_cache_percent=0&blocking_size=0&blocking_transferred=0&last_resource_end=8280
IP
Certificate IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /boom.gif?bilmur=1&batcache_hit=1&provider=wordpress.com&service=atomic&host_name=upshift.work&url_path=%2F&nt_fetchStart=575&nt_domainLookupStart=575&nt_domainLookupEnd=575&nt_connectStart=575&nt_connectEnd=575&nt_secureConnectionStart=575&nt_requestStart=579&nt_responseStart=723&nt_responseEnd=727&nt_domLoading=871&nt_domInteractive=2069&nt_domContentLoadedEventStart=4377&nt_domContentLoadedEventEnd=4405&nt_domComplete=5415&nt_loadEventStart=5416&nt_loadEventEnd=5422&nt_redirectCount=0&nt_nextHopProtocol=h2&nt_api_level=2&first_contentful_paint=1937&resource_size=3905551&resource_transferred=1183122&resource_cache_percent=0&js_size=2109880&js_transferred=582284&js_cache_percent=0&blocking_size=0&blocking_transferred=0&last_resource_end=8280 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://upshift.work/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Tue, 05 Dec 2023 15:52:44 GMT
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
141.95.205.206
192.0.77.32
104.16.191.89
96.6.17.228
52.58.78.131
0.0.0.0