Report - tc4.shxtrk.com/

Report Overview

Submitted URL
tc4.shxtrk.com/
IP
104.21.14.194
ASN
#13335 CLOUDFLARENET
Submitted
2023-01-30 23:36:10
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	735 B	9.4 kB	142.250.74.106
www.gstatic.com	unknown	2016-07-26T11:37:06Z	2023-03-13T07:57:11Z	992 B	218 kB	216.58.211.3
snap.licdn.com	1044	2014-10-06T10:43:45Z	2023-03-13T05:12:55Z	427 B	5.1 kB	23.36.76.210
cdn.howuku.com	270311	2019-07-07T14:18:58Z	2023-03-09T03:01:51Z	1.7 kB	14 kB	54.230.111.123
cdn.linkedin.oribi.io	unknown	2022-10-19T16:36:39Z	2023-03-13T05:12:57Z	475 B	426 B	54.230.111.42
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	5.5 kB	11 kB	142.250.74.131
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	682 B	2.0 kB	93.184.220.29
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	1.4 kB	898 B	216.239.32.36
www.clarity.ms	1404	2018-08-22T09:41:57Z	2023-03-13T05:09:16Z	851 B	1.2 kB	13.107.238.53
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
docs.google.com	122	2013-05-31T01:34:47Z	2023-03-13T07:40:43Z	2.6 kB	23 kB	142.250.74.110
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	705 B	641 B	142.250.74.164
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	54.202.13.86
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-13T08:39:16Z	725 B	1.7 kB	142.250.74.2
www.google.no	25607	2016-04-05T21:50:59Z	2023-03-13T06:26:15Z	704 B	641 B	142.250.74.163
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	854 B	66 kB	216.239.36.178
www.saleshandy.com	unknown	2016-01-05T10:31:07Z	2023-01-30T23:34:22Z	15 kB	546 kB	70.32.23.111
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	15 kB	938 kB	216.58.207.227
public.profitwell.com	6695	2020-08-20T20:28:44Z	2023-03-13T08:40:41Z	457 B	196 kB	54.230.111.82
d.clarity.ms	2285	2021-07-27T14:49:08Z	2023-03-13T08:31:00Z	963 B	574 B	40.76.174.66
c.clarity.ms	803	2021-02-04T00:22:47Z	2023-03-13T05:09:17Z	935 B	1.2 kB	20.234.93.27
r.wdfl.co	53448	2020-08-05T09:03:05Z	2023-03-13T08:40:01Z	396 B	501 B	54.230.111.116
tc4.shxtrk.com	unknown	2022-06-08T23:27:47Z	2023-01-30T20:22:59Z	790 B	1.4 kB	104.21.14.194
cdn.segment.com	1618	2014-04-11T14:30:48Z	2023-03-13T05:18:10Z	944 B	2.0 kB	54.230.219.201
c.bing.com	247	2012-05-22T12:26:32Z	2023-03-13T05:09:17Z	517 B	795 B	204.79.197.200
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	700 B	2.0 kB	54.230.245.100
api.howuku.com	247067	2019-07-07T14:18:46Z	2023-03-09T03:01:53Z	5.7 kB	4.0 kB	54.179.116.115
www.linkedin.com	608	2015-06-18T18:10:03Z	2023-03-13T05:12:57Z	637 B	2.6 kB	13.107.42.14
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	2.7 kB	42 kB	34.120.237.76
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	427 B	90 kB	142.250.74.168
ssl.gstatic.com	unknown	2012-05-23T08:57:57Z	2023-03-13T07:54:16Z	441 B	13 kB	142.250.74.131
cdn4.mxpnl.com	11347	2017-09-01T08:30:26Z	2023-03-13T08:42:10Z	425 B	18 kB	35.186.235.23
px.ads.linkedin.com	522	2018-06-15T13:29:56Z	2023-03-13T07:16:10Z	1.1 kB	2.3 kB	13.107.42.14
api.segment.io	1076	2012-08-25T10:37:04Z	2023-03-13T08:55:27Z	480 B	261 B	35.166.186.8
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	4.4 kB	12 kB	23.36.76.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-30	medium	tc4.shxtrk.com/	Phishing
2023-01-30	medium	tc4.shxtrk.com/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (44)

	URL	Size	First Seen	Last Seen
	www.saleshandy.com/spam-police/	599 B	2023-03-13	2023-03-13
Pretty URL www.saleshandy.com/spam-police/ IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:22:49 Last Seen2023-03-13 12:48:01 Times Seen1 Hash 0f0efc26b33530c2e4a7c2b78e205e4c 0c1df70da94ca7ac512722788e4b2109629eee52 e8c19441f219730201e532446dfaafbe3d5d7b248a7725281126e4dce393432f Loading...

	www.clarity.ms/tag/ads865x4qt?ref=gtm2	912 B	2023-03-13	2023-03-13
Pretty URL www.clarity.ms/tag/ads865x4qt?ref=gtm2 IP 13.107.238.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:48:01 Last Seen2023-03-13 12:48:01 Times Seen1 Hash 801844693d4d28d0084a45af218bc2ef d6047b607ef36794205fbba0da059a8e02677e6f 7de46f0f0be9e3e2633fbbd5e0865bf566f505a9f1f269bc4d7a03c95bf74dca Loading...

	http:text/javascript;base64,V2ViRm9udENvbmZpZz17Z29vZ2xlOntmYW1pbGllczpbIkludGVyOndnaHRAMzAwOzQwMDs1MDAiLCJJbnRlcjoxMDAsMTAwaXRhbGljLDIwMCwyMDBpdGFsaWMsMzAwLDMwMGl0YWxpYyw0MDAsNDAwaXRhbGljLDUwMCw1MDBpdGFsaWMsNjAwLDYwMGl0YWxpYyw3MDAsNzAwaXRhbGljLDgwMCw4MDBpdGFsaWMsOTAwLDkwMGl0YWxpYyIsIk1vbnRzZXJyYXQ6MTAwLDEwMGl0YWxpYywyMDAsMjAwaXRhbGljLDMwMCwzMDBpdGFsaWMsNDAwLDQwMGl0YWxpYyw1MDAsNTAwaXRhbGljLDYwMCw2MDBpdGFsaWMsNzAwLDcwMGl0YWxpYyw4MDAsODAwaXRhbGljLDkwMCw5MDBpdGFsaWMmZGlzcGxheT1zd2FwIl19fTtpZih0eXBlb2YgV2ViRm9udD09PSJvYmplY3QiJiZ0eXBlb2YgV2ViRm9udC5sb2FkPT09ImZ1bmN0aW9uIil7V2ViRm9udC5sb2FkKFdlYkZvbnRDb25maWcpfQ==	439 B	2023-03-13	2023-03-13
Pretty URL http:text/javascript;base64,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 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:22:49 Last Seen2023-03-13 12:48:01 Times Seen1 Hash 352ccb61d127983c9d40f73a2b8751f0 ab730dba2329a7859a292fdeb9c846921ea463dc e1ecf82791797ea212675067bff4b28a9bf9e16f72a85fe2c9b69b1a47b2a98d Loading...

	www.saleshandy.com/wp-content/litespeed/js/1318e1fdb78b410a4aca4b61017e77b8.js?ver=46152	515 kB	2023-03-13	2023-03-13
Pretty URL www.saleshandy.com/wp-content/litespeed/js/1318e1fdb78b410a4aca4b61017e77b8.js?ver=46152 IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 1318e1fdb78b410a4aca4b61017e77b8 08c6abd7c33e054d9bbdabe1e52c43a6e13d41c7 71935236602bc3eb3d157a4275faaa586eaefe589957d1adb98281d37d419669 Loading...

	www.saleshandy.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	1.4 kB	2023-03-13	2024-03-18
Pretty URL www.saleshandy.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:25:03 Last Seen2024-03-18 17:02:15 Times Seen303 Hash 267f9b28e6de8b4f5c45d629728b55bd a19e19207a15c2af568b002e2c02729279d09e34 b594073e1761b3b7ca43639967f7e98bf4e2fc5ba42dd03ecbdbc6a054249b2c Loading...

	cdn.howuku.com/js/control.js?v=1675121775595	22 kB	2023-03-13	2023-03-13
Pretty URL cdn.howuku.com/js/control.js?v=1675121775595 IP 54.230.111.123 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-13 12:48:02 Times Seen1 Hash c49c3cff5fe06411b4e4cd62b98fde0c bfd9f7863e8a4c6de556707e1ae8edef3c14eb0b e85a6405a55fc344b753e3fd232fde07330b7d6792cf74f63f8146566fc19d12 Loading...

	docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true	1.5 kB	2023-03-13	2023-03-13
Pretty URL docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:22:49 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 2bd8add59b3be4192bcfd4a6085b2966 ef323116db0fd323abf38494915bec9b8f206c99 7cd90bd992aeca1c25f46786377118e1962126890d139765a509a26b0695dd61 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/875623304/?random=1675121775199&cv=11&fst=1675121775199&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&tiba=SalesHandy%20Spam%20Police%20-%20SalesHandy&auid=1207494551.1675121775&rfmt=3&fmt=4	1.9 kB	2023-03-13	2023-03-13
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/875623304/?random=1675121775199&cv=11&fst=1675121775199&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&tiba=SalesHandy%20Spam%20Police%20-%20SalesHandy&auid=1207494551.1675121775&rfmt=3&fmt=4 IP 142.250.74.2 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-13 12:48:02 Times Seen1 Hash b0bce3503c7a2bf6706b9824c6165ea9 2631d6ef4e058e439ab749fbb651259ef8109f42 5b9a9e62d5e5dc530adacc08612d8303b868c577dc5114cfdd1aa66235365590 Loading...

	www.google-analytics.com/gtm/optimize.js?id=GTM-PF9MQGQ	113 kB	2023-03-13	2023-03-13
Pretty URL www.google-analytics.com/gtm/optimize.js?id=GTM-PF9MQGQ IP 216.239.36.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 3a12d63353191ae0ac3ad1fb4aa174fe 05ceb9fffa86c36c17b8d726417a11e5811e9e19 4304e5c4bc6669b81ff50715b68d6992bd3e7aaef37eb8071e32994dde83500f Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 216.239.36.178 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.saleshandy.com/spam-police/	215 B	2023-03-07	2024-04-18
Pretty URL www.saleshandy.com/spam-police/ IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-18 11:22:37 Times Seen1874 Hash dc0923c33f2f758c84c52fbb61c834a3 b058be2d1733bff3d424d94ace699f13151e3df7 d37ef4938c8ae1d3621058c0b807b594bdff045977dab405590883e514289ac3 Loading...

	public.profitwell.com/js/profitwell.js?auth=8513bc0a049460e3dc6a26ad7e1e73d7	36 kB	2023-03-07	2023-11-10
Pretty URL public.profitwell.com/js/profitwell.js?auth=8513bc0a049460e3dc6a26ad7e1e73d7 IP 54.230.111.82 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:34 Last Seen2023-11-10 00:02:35 Times Seen1368 Hash f3710cf44008e9509cf9d74fde8cff1f e351f7543b4a715231c742c0a4110b5d905ac60f 94793e651d33131640f21098c7a9ee7155892c1a0be754c80e8e38c3ec5a81d2 Loading...

	r.wdfl.co/rw.js	16 kB	2023-03-13	2023-03-13
Pretty URL r.wdfl.co/rw.js IP 54.230.111.116 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:22:49 Last Seen2023-03-13 13:06:41 Times Seen1 Hash 0f3e7f9de9004843b194d152d8de5c15 d7236121536ae543dcc006074e23595ac338b312 105470f6c8312b743199e0d9ec8ab4fc98e1a86c92d48a64e1dc1f3f6e398538 Loading...

	docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true	200 B	2023-03-07	2024-04-16
Pretty URL docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:08:14 Last Seen2024-04-16 12:31:50 Times Seen320 Hash 818b5f82ffbb05426d0a1411fb995bbc 19586ce5fdbc67a60faebd0e3230de521795f3d1 b30385b82a634c8a242dc54f0b2a6644c8aa8763de6326143ccfafd5420a56af Loading...

	www.saleshandy.com/spam-police/	279 B	2023-03-13	2023-03-13
Pretty URL www.saleshandy.com/spam-police/ IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:22:49 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 3ec1b0544f9647d7c0f77d25787f4038 7deaefe50671dcc6f637bc9b1a7e339ef8e7f032 86a58a19ae5392c758bd70f9c96964d1bbedfac21c2bf0a847d01d7f3feeefe8 Loading...

	www.googletagmanager.com/gtag/js?id=G-65VZV193TN&l=dataLayer&cx=c	223 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-65VZV193TN&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-13 12:48:02 Times Seen1 Hash b489b992d0e8f8f5e2cd00ed85bf6d4a 2dea83cb1400a394bdc646e73184ee45c039be47 ada9bafe402922689e430024a0dc759cd5e6e9c06768c946397012b25182d88b Loading...

	www.gstatic.com/_/freebird/_/js/k=freebird.v.no.5K51eSpObs8.O/d=1/rs=AMjVe6gxJC2nGOOmb7ds2n_Rr0JBMgnayA/m=viewer_base	378 kB	2023-03-13	2023-03-13
Pretty URL www.gstatic.com/_/freebird/_/js/k=freebird.v.no.5K51eSpObs8.O/d=1/rs=AMjVe6gxJC2nGOOmb7ds2n_Rr0JBMgnayA/m=viewer_base IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-13 15:16:30 Times Seen1 Hash f5051d3d9426fcc890ebf995283c2a13 ac87ce9bb418af4746693bb14cee8772cfc7e302 eccc029cafd041c138a54b9efa86eb9c17217141578c5824495b3fa243895b39 Loading...

	www.saleshandy.com/spam-police/	2.1 kB	2023-03-13	2023-03-13
Pretty URL www.saleshandy.com/spam-police/ IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:22:49 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 28c75aeec101c4edd5d09aaa912f103f 6e81cb34ed7cd7be854a296878de748ca148f353 d4b8f2a6fd7af1e38bbfe6994d96e58202391b13b968a47ff0f051811431c995 Loading...

	www.saleshandy.com/spam-police/	281 B	2023-03-13	2023-03-13
Pretty URL www.saleshandy.com/spam-police/ IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:22:49 Last Seen2023-03-13 12:48:02 Times Seen1 Hash aa3de69a0889a0d14ef82184ea059dfc 53b15a64d93eb9042fa841240ba8a9936b0d4fe1 98f21a9f7d7ca371bc6939ba9cd382ef790889b10f0f4aee4474f7a8039fe68e Loading...

	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 07:52:52 Times Seen36954694 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	snap.licdn.com/li.lms-analytics/insight.min.js	13 kB	2023-03-12	2024-03-30
Pretty URL snap.licdn.com/li.lms-analytics/insight.min.js IP 23.36.76.210 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:01:01 Last Seen2024-03-30 11:38:49 Times Seen5925 Hash b846c9d158853dd4aa95d3d7407ed8bb 2cf0eb02a22e8bd80d19a50a84593420d777d5db f56ccb2db87aacedd9415232e40f80bff9939703df2f9c3f9ec8a092e545349f Loading...

	www.googletagmanager.com/gtm.js?id=GTM-MGWCQPK	266 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-MGWCQPK IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 4e1ed901fbf8412f5fd4af9d205e980f 9d129a578c24beab1d3512cf31b6aa9fd1dd7e20 51f68d4baaef28c6ca6662570f119aa175ae6ccaed028cbd94ffa7f1ff5f13f1 Loading...

	www.saleshandy.com/spam-police/	365 B	2023-03-07	2024-04-10
Pretty URL www.saleshandy.com/spam-police/ IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:06:52 Last Seen2024-04-10 01:04:46 Times Seen78 Hash adedff17481d964a88a71e1a8cdc040e b057c97609aac02cf025791e047f96cde5c2732e 2bbb96ba74ad10134dcc0d46ba98184acf7b825e391c689b56591ba5493ed88f Loading...

	www.saleshandy.com/spam-police/	989 B	2023-03-13	2023-03-13
Pretty URL www.saleshandy.com/spam-police/ IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:22:49 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 680db10c87c8b094ee3bfff430dff020 b6281072f8c7b597eeba652bd8b215c45c26b7d7 e9a344e505e773308ab60ccfe56c06bcc5bda815ffeaebf78bb0c4b24603d67a Loading...

	cdn.howuku.com/js/track.js	11 kB	2023-03-13	2023-03-13
Pretty URL cdn.howuku.com/js/track.js IP 54.230.111.123 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 5b8958186a82eef9398ba2550d46a41c aa2e9211efa0c8d063548e0f981e3f8894572c0d 3390aa1a69fb1b71639282568f29a9a5aa009892116f52875c2b3f6b6778ca8a Loading...

	www.saleshandy.com/spam-police/	408 B	2023-03-07	2024-04-14
Pretty URL www.saleshandy.com/spam-police/ IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-14 16:04:21 Times Seen332 Hash d3fb31fc4a0b37980210c57f2698989d 82a161b3a63cf0d5a5b37e9eacdfaf298bcbb55b 45200934a32157fcedfec503f25c156ed7a19df9a9538269e7848ad8f1adc936 Loading...

	www.saleshandy.com/spam-police/	341 B	2023-03-13	2023-03-13
Pretty URL www.saleshandy.com/spam-police/ IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:22:49 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 73a2f332f5aded3cf626772f23e4dc89 a0a6dcaf229859f59832bf9b4398b80727eb0b78 1849e09f849bc1435fbbd99792ad1920e8302454796e0c2ab2a35537ad748b15 Loading...

	www.saleshandy.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-19
Pretty URL www.saleshandy.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 07:32:32 Times Seen31742 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	www.saleshandy.com/wp-content/plugins/litespeed-cache/assets/js/webfontloader.min.js	12 kB	2023-03-07	2024-04-18
Pretty URL www.saleshandy.com/wp-content/plugins/litespeed-cache/assets/js/webfontloader.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-04-18 11:59:14 Times Seen1407 Hash 45943f1d780bd7d9db946bdc5ed14a5a 41a42d3c32fe16108eb653ae903ae1fb86b7e5a8 6f58202a14e2dcb4c672d6e9f0881ddc2b4e88225a97aadd940400a7377ee02d Loading...

	www.clarity.ms/eus/s/0.7.1/clarity.js	57 kB	2023-03-09	2023-11-05
Pretty URL www.clarity.ms/eus/s/0.7.1/clarity.js IP 13.107.238.53 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 10:22:27 Last Seen2023-11-05 22:32:51 Times Seen3 Hash b9b253f431c87fd6d386778bb4f53db8 7e1615b8e242a06e0631ed4e0662cc3fb6487fc6 da5186fe0bb5dd59e7ece6ee7efac70c31755611e385fa423585572cb9628fcf Loading...

	cdn.howuku.com/js/form.js?v=1000004994	2.1 kB	2023-03-13	2023-03-26
Pretty URL cdn.howuku.com/js/form.js?v=1000004994 IP 54.230.111.123 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-26 14:16:50 Times Seen3 Hash f51de977b9934fa2a3549828d2e82cb6 00d26ea61237ec9c5594cfcb7f1011f0261414a3 22b13005b7d23baf595dc9c874b28e4cb24fdfb6e6abd894097baeb9fe897943 Loading...

	cdn.howuku.com/js/record.js?v=1000004994	19 kB	2023-03-13	2023-03-13
Pretty URL cdn.howuku.com/js/record.js?v=1000004994 IP 54.230.111.123 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 2064d6428ade45a0b2bd6a1b371c0692 ef888ca5b36c261ad3ea8541382bffdc77825f42 b8dcfc0255dd73850c0e07e67012184ab3958ad491c968d60e773b58e15b59a7 Loading...

	www.saleshandy.com/spam-police/	8.3 kB	2023-03-07	2024-04-18
Pretty URL www.saleshandy.com/spam-police/ IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-18 15:16:00 Times Seen2043 Hash eb78fac132e7cff1e4556b0ee5be04cf 8c0633f511df47c21639be83c719ae0e1ea26555 163c4d52fb653e1c2463e1a0e397faa297729ad6269b5205b915f3ed4b8b8d8b Loading...

	www.saleshandy.com/spam-police/	1.7 kB	2023-03-07	2024-04-14
Pretty URL www.saleshandy.com/spam-police/ IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-14 16:04:21 Times Seen431 Hash a0fe609408d246ad7b8e4b97cf257299 e506fb7cf42b400080ab195e688bb6e5c1a9d265 9fa087232ef1e1c40fd5e8eb188ae899fd7b5d00d4adcd1f5e8e48148b972304 Loading...

	cdn.segment.com/analytics.js/v1/DY2AnAvl9M85q9NEi9Bizyw5amtFuK2Z/analytics.min.js	102 kB	2023-03-13	2023-03-13
Pretty URL cdn.segment.com/analytics.js/v1/DY2AnAvl9M85q9NEi9Bizyw5amtFuK2Z/analytics.min.js IP 54.230.219.201 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:22:49 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 34d91e80805a5aa8b1458e3457139030 325a823224eb8f33918385cfe5a52755ffe1ff22 b7e87607a62023f1b4997c98391b99747d24fd8fb3325b46307764d2a2589240 Loading...

	docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true	184 B	2023-03-13	2023-03-13
Pretty URL docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-13 12:48:02 Times Seen1 Hash e8827846dfbddf454b7bbecaca6eb754 74d2b633abdd546b1f434d82eab0dacd4648e2ff 0d088bf85a1a108a74739f747e9f3b679cc7740d843df9eefbfe76e2092789a9 Loading...

	docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true	14 kB	2023-03-13	2023-03-13
Pretty URL docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 8551d4356288cddc9f66c6131bb585e9 3ac856b4a7fdaccd7f01763b7e8e79228f2da810 50da4de01e7743cd34c2f4021812fa9d701cf60d9b20da4062ba3ba12fbc34b4 Loading...

	cdn4.mxpnl.com/libs/mixpanel-2-latest.min.js	52 kB	2023-03-07	2023-11-28
Pretty URL cdn4.mxpnl.com/libs/mixpanel-2-latest.min.js IP 35.186.235.23 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:07 Last Seen2023-11-28 05:12:26 Times Seen204 Hash 2299085ab7c7a3e0dc8e06de7cf433c1 f062a45e0ba2a8aa564755b96328b970981fac09 da7a511c69cdf1e0f950a29019d09854b8919bc154bb95fe5d5ec580ed2f0997 Loading...

	www.saleshandy.com/spam-police/	2.1 kB	2023-03-13	2023-03-13
Pretty URL www.saleshandy.com/spam-police/ IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:22:49 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 87c7ad51e0480c5c2f9ed7c966a21559 52f3400827b28baf0721b2d495f4088f17350c26 3559bc562f5f9ed29b37f416f20e895d018f77566bc8c4ffc94ccf829b72cf75 Loading...

	www.saleshandy.com/wp-content/uploads/matomo/matomo.js	66 kB	2023-03-08	2024-04-19
Pretty URL www.saleshandy.com/wp-content/uploads/matomo/matomo.js IP 70.32.23.111 ASN #55293 A2HOSTING Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:51:14 Last Seen2024-04-19 07:00:08 Times Seen8046 Hash a3a7245d6daf7d31d2069c0ba05879dd ec1bf464889e71aec1ced6d8361a26c76e4a1460 d7fc375178c93a2fc15fd888e30170eedf4ef3d04497e7f951ab7bfe0c921693 Loading...

		Size	First Seen	Last Seen
	#1 Eval - c78c408c0cfa835b71d80eb79af0f5d5	1.0 kB	2023-03-08	2024-04-02
Pretty Observations First Seen2023-03-08 07:43:17 Last Seen2024-04-02 14:58:32 Times Seen73 Hash c78c408c0cfa835b71d80eb79af0f5d5 943917aae14d0ed79a98c2c8dd8fa1c68d2de8e6 bbf1671858b72547e9da98c7385734b3b2f5fa80dc0dfc60fddd958740b683ba Loading...

	#2 Eval - af5d73ef73f322fcf53d6d6d8dfb37a6	23 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-13 12:48:02 Times Seen1 Hash af5d73ef73f322fcf53d6d6d8dfb37a6 edda2b57c2c881d29bfb9cc1794408c109876c57 ac22f038b3c35370f70600037bbb4952f06ab418ec72e26e3cd887e3dd5c578f Loading...

	#3 Eval - 19c8ea997ab35ea3df737931c5b2eda4	575 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 12:48:02 Last Seen2023-03-13 12:48:02 Times Seen1 Hash 19c8ea997ab35ea3df737931c5b2eda4 a1d8ab1b3c826f1704e29770117490220a10d9ed 8d36e9cffd6c91a993d7b14e3c53e49373a7b3a59ce1e1ca6c55714b06f2361d Loading...

	#4 Eval - fe734579185a7e2dbf2d01412764292c	54 B	2023-03-13	2024-01-29
Pretty Observations First Seen2023-03-13 07:22:49 Last Seen2024-01-29 16:06:01 Times Seen28 Hash fe734579185a7e2dbf2d01412764292c 1b2374e94c77f42ed21341017d2f609e3639fb54 58cfa99d3dc581922c3c8860f7ceb78a5044d7a533a76f9fb6f8a556a91bbb87 Loading...

HTTP Transactions (142)

URL IP Response Size

tc4.shxtrk.com/

104.21.14.194

301 Moved Permanently

0 B

URL HTTP/1.1
tc4.shxtrk.com/
IP
104.21.14.194:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: tc4.shxtrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 30 Jan 2023 23:35:58 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 31 Jan 2023 00:35:58 GMT
Location: https://tc4.shxtrk.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9kTRndkvZ0WrCNjzKZy71uUhdTNfOtt83TGRZ4avbz0AKBPnmPxqJv%2BLhzzGpgq1QfMpjBGw2w4U6w21rpCub1Y%2BA4vtNv9bGIVsqIxP3YDXtbDZplW1gdWb9fOVZpjYxg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 791e06ee188eb4f4-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17032
Expires: Tue, 31 Jan 2023 04:19:50 GMT
Date: Mon, 30 Jan 2023 23:35:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19198
Expires: Tue, 31 Jan 2023 04:55:56 GMT
Date: Mon, 30 Jan 2023 23:35:58 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14480
Expires: Tue, 31 Jan 2023 03:37:18 GMT
Date: Mon, 30 Jan 2023 23:35:58 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 23:35:48 GMT
content-type: application/json
age: 10
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: EkPFbdt1aw30XSpkPBKZ7mGwr4azY8o8aigRNFTF5Dqxl9FYWwh3W1VMTaZnlB4MKdJmZngTuq+UGz+wu+6OPA==
x-amz-request-id: 93EH19BEQBZ5SBRP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 22:50:56 GMT
age: 2702
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 23:35:58 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 22:49:04 GMT
age: 2815
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17691
Expires: Tue, 31 Jan 2023 04:30:50 GMT
Date: Mon, 30 Jan 2023 23:35:59 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:35:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.saleshandy.com/wp-content/litespeed/css/5b794179198646a6405fa28517b784f6.css?ver=46152

70.32.23.111

200 OK

103 kB

URL HTTP/2
www.saleshandy.com/wp-content/litespeed/css/5b794179198646a6405fa28517b784f6.css?ver=46152
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (65536), with no line terminators
Size
103 kB (103184 bytes)
Hash
6fc243afcf2ed76c44c2f3e65a1dfac2
8822d49cbb5b5bf7b1ab7272d210d53b5c720b0d
32d9ec0f5cb9f028e23265175f9fe0778583632602a539a1389a353ed6d0ced8

HTTP Headers

GET /wp-content/litespeed/css/5b794179198646a6405fa28517b784f6.css?ver=46152 HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Mon, 30 Jan 2023 23:36:01 GMT
content-type: text/css
last-modified: Mon, 30 Jan 2023 18:18:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 103184
date: Mon, 30 Jan 2023 23:35:59 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.saleshandy.com/wp-content/uploads/2021/12/Saleshandy-logo_default.svg

70.32.23.111

200 OK

1.9 kB

URL HTTP/2
www.saleshandy.com/wp-content/uploads/2021/12/Saleshandy-logo_default.svg
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5191), with no line terminators
Size
1.9 kB (1936 bytes)
Hash
9d545b1129c53ce1d1edafc54c59d4a8
a1eb89b5d5e4f6e5e4e927a5454dd363b11cbcf0
06ec8a09cf6366d23256e25a857bb2f0ac06de8c9e5bd78540bf570afd79cf6e

HTTP Headers

GET /wp-content/uploads/2021/12/Saleshandy-logo_default.svg HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2
expires: Mon, 30 Jan 2023 23:36:01 GMT
content-type: image/svg+xml
last-modified: Sat, 29 Jan 2022 06:27:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1936
date: Mon, 30 Jan 2023 23:35:59 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.saleshandy.com/wp-content/uploads/2022/01/logo_light.png

70.32.23.111

200 OK

5.7 kB

URL HTTP/2
www.saleshandy.com/wp-content/uploads/2022/01/logo_light.png
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
PNG image data, 404 x 74, 8-bit/color RGBA, non-interlaced\012- data
Size
5.7 kB (5670 bytes)
Hash
4e4f33c5b71631d745f877ed4d0de0ef
0aecde75205b1385211bea927ec3f1f70370effb
46b74b67c1d90196f889414aecdb5e74f2b33d4a6a55f636469083a4a428348f

HTTP Headers

GET /wp-content/uploads/2022/01/logo_light.png HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Mon, 30 Jan 2023 23:36:01 GMT
content-type: image/png
last-modified: Sat, 29 Jan 2022 06:27:49 GMT
accept-ranges: bytes
content-length: 5670
date: Mon, 30 Jan 2023 23:35:59 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.202.13.86

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.202.13.86:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: H20+H9Rj27LqsWVskkKbNw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wZmk3nUN9gdms8oPnVMgtiJVcOI=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.saleshandy.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

70.32.23.111

200 OK

30 kB

URL HTTP/2
www.saleshandy.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (65447)
Size
30 kB (30273 bytes)
Hash
34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Mon, 30 Jan 2023 23:36:02 GMT
content-type: application/javascript
last-modified: Sat, 29 Jan 2022 06:27:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Mon, 30 Jan 2023 23:36:00 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.saleshandy.com/wp-content/litespeed/css/5b794179198646a6405fa28517b784f6.css?ver=46152

70.32.23.111

200 OK

103 kB

URL HTTP/2
www.saleshandy.com/wp-content/litespeed/css/5b794179198646a6405fa28517b784f6.css?ver=46152
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (65536), with no line terminators
Size
103 kB (103184 bytes)
Hash
6fc243afcf2ed76c44c2f3e65a1dfac2
8822d49cbb5b5bf7b1ab7272d210d53b5c720b0d
32d9ec0f5cb9f028e23265175f9fe0778583632602a539a1389a353ed6d0ced8

HTTP Headers

GET /wp-content/litespeed/css/5b794179198646a6405fa28517b784f6.css?ver=46152 HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Mon, 30 Jan 2023 23:36:02 GMT
content-type: text/css
last-modified: Mon, 30 Jan 2023 18:18:50 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 103184
date: Mon, 30 Jan 2023 23:36:00 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.saleshandy.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

70.32.23.111

200 OK

30 kB

URL HTTP/2
www.saleshandy.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (65447)
Size
30 kB (30273 bytes)
Hash
34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Mon, 30 Jan 2023 23:36:02 GMT
content-type: application/javascript
last-modified: Sat, 29 Jan 2022 06:27:52 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30273
date: Mon, 30 Jan 2023 23:36:00 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.saleshandy.com/spam-police/

70.32.23.111

200 OK

20 kB

URL HTTP/2
www.saleshandy.com/spam-police/
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (13180)
Size
20 kB (19496 bytes)
Hash
ffcf937801b91f57c4da7b8e724727a7
24442973e8b8dfa145f9c63a6b0efd200beca6f2
a5d9e5f1ea20bc22a8f7f7b41995ce4406e63c55374a503cbc91486d8c06820b

HTTP Headers

GET /spam-police/ HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
x-dns-prefetch-control: on
content-type: text/html; charset=UTF-8
link: <https://www.saleshandy.com/wp-json/>; rel="https://api.w.org/", <https://www.saleshandy.com/wp-json/wp/v2/pages/11585>; rel="alternate"; type="application/json", <https://www.saleshandy.com/?p=11585>; rel=shortlink
vary: Accept-Encoding
etag: "23543-1675103405;br"
x-litespeed-cache: hit
content-encoding: br
date: Mon, 30 Jan 2023 23:36:00 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

www.saleshandy.com/wp-content/litespeed/js/1318e1fdb78b410a4aca4b61017e77b8.js?ver=46152

70.32.23.111

200 OK

154 kB

URL HTTP/2
www.saleshandy.com/wp-content/litespeed/js/1318e1fdb78b410a4aca4b61017e77b8.js?ver=46152
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (17784)
Size
154 kB (154177 bytes)
Hash
ec71363f59434b1330e5273eb15c3300
3e6a5647bb2f8d9812f9056110ef814db7f6b34a
5a944ba2bffd5fc8314e4e06bca30f31efa3cbebc8324a6c4d6c982e456f6427

HTTP Headers

GET /wp-content/litespeed/js/1318e1fdb78b410a4aca4b61017e77b8.js?ver=46152 HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Mon, 30 Jan 2023 23:36:02 GMT
content-type: application/javascript
last-modified: Mon, 30 Jan 2023 18:18:51 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 154177
date: Mon, 30 Jan 2023 23:36:00 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.saleshandy.com/wp-content/uploads/2021/12/Saleshandy-logo_default.svg

70.32.23.111

200 OK

1.9 kB

URL HTTP/2
www.saleshandy.com/wp-content/uploads/2021/12/Saleshandy-logo_default.svg
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5191), with no line terminators
Size
1.9 kB (1936 bytes)
Hash
9d545b1129c53ce1d1edafc54c59d4a8
a1eb89b5d5e4f6e5e4e927a5454dd363b11cbcf0
06ec8a09cf6366d23256e25a857bb2f0ac06de8c9e5bd78540bf570afd79cf6e

HTTP Headers

GET /wp-content/uploads/2021/12/Saleshandy-logo_default.svg HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2
expires: Mon, 30 Jan 2023 23:36:02 GMT
content-type: image/svg+xml
last-modified: Sat, 29 Jan 2022 06:27:49 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1936
date: Mon, 30 Jan 2023 23:36:00 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.saleshandy.com/wp-content/uploads/2022/01/logo_light.png

70.32.23.111

200 OK

5.7 kB

URL HTTP/2
www.saleshandy.com/wp-content/uploads/2022/01/logo_light.png
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
PNG image data, 404 x 74, 8-bit/color RGBA, non-interlaced\012- data
Size
5.7 kB (5670 bytes)
Hash
4e4f33c5b71631d745f877ed4d0de0ef
0aecde75205b1385211bea927ec3f1f70370effb
46b74b67c1d90196f889414aecdb5e74f2b33d4a6a55f636469083a4a428348f

HTTP Headers

GET /wp-content/uploads/2022/01/logo_light.png HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Mon, 30 Jan 2023 23:36:02 GMT
content-type: image/png
last-modified: Sat, 29 Jan 2022 06:27:49 GMT
accept-ranges: bytes
content-length: 5670
date: Mon, 30 Jan 2023 23:36:00 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.saleshandy.com/wp-content/themes/saleshandy/images/blue-arrow.svg

70.32.23.111

200 OK

230 B

URL HTTP/2
www.saleshandy.com/wp-content/themes/saleshandy/images/blue-arrow.svg
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (394)
Size
230 B (230 bytes)
Hash
aed3abd3ea73bfe5208a9d02b46345a5
b663a921c0624d539f2cf24fe7e8ab5dbebb72e0
26b682fdc6a67bcae6e4e851a5de9d100801ff997b422924f5291ba9ee6009d0

HTTP Headers

GET /wp-content/themes/saleshandy/images/blue-arrow.svg HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/wp-content/litespeed/css/5b794179198646a6405fa28517b784f6.css?ver=46152
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2
expires: Mon, 30 Jan 2023 23:36:02 GMT
content-type: image/svg+xml
last-modified: Tue, 02 Aug 2022 10:27:45 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 230
date: Mon, 30 Jan 2023 23:36:00 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.saleshandy.com/wp-content/themes/saleshandy/images/assets_sprite.webp

70.32.23.111

200 OK

17 kB

URL HTTP/2
www.saleshandy.com/wp-content/themes/saleshandy/images/assets_sprite.webp
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
RIFF (little-endian) data, Web/P image\012- data
Size
17 kB (16694 bytes)
Hash
1d3e3b6cb1158acd0ceb4f093e5ab9f0
5a7c24678bbd4040d73074e2bfb26a211f74ee12
27b6d7d0851e5f37b67b6f91d296ac065d45521975672d4c8b6138d679e00699

HTTP Headers

GET /wp-content/themes/saleshandy/images/assets_sprite.webp HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/wp-content/litespeed/css/5b794179198646a6405fa28517b784f6.css?ver=46152
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=2
expires: Mon, 30 Jan 2023 23:36:02 GMT
content-type: image/webp
last-modified: Fri, 06 Jan 2023 08:21:15 GMT
accept-ranges: bytes
content-length: 16694
date: Mon, 30 Jan 2023 23:36:00 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

www.googletagmanager.com/gtm.js?id=GTM-MGWCQPK

142.250.74.168

200 OK

90 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-MGWCQPK
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (26745)
Size
90 kB (89677 bytes)
Hash
30070e85e441badc0dbb2f9058c8d4c8
c7080fc38b4fed3f25a50e8918fae68866d06916
3eb8fbc5820678beb49374a6647dd2268a2773bb29e45061d4b753e7626532b9

HTTP Headers

GET /gtm.js?id=GTM-MGWCQPK HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 23:36:00 GMT
expires: Mon, 30 Jan 2023 23:36:00 GMT
cache-control: private, max-age=900
last-modified: Mon, 30 Jan 2023 23:05:56 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 89677
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.saleshandy.com/wp-content/themes/saleshandy/images/assets_sprite.png

70.32.23.111

200 OK

26 kB

URL HTTP/2
www.saleshandy.com/wp-content/themes/saleshandy/images/assets_sprite.png
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
PNG image data, 146 x 3400, 8-bit/color RGBA, non-interlaced\012- data
Size
26 kB (25599 bytes)
Hash
a7b5284b571a65f4ca107d78dbd9dc6e
a6e0cc96acbfdb73fb3c058ebb798fbd6a89c8ad
831532c475124b0942dcdc0b71a8c611c3034413bdd2dcd21da421a320ad04ab

HTTP Headers

GET /wp-content/themes/saleshandy/images/assets_sprite.png HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/wp-content/litespeed/css/5b794179198646a6405fa28517b784f6.css?ver=46152
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Mon, 30 Jan 2023 23:36:02 GMT
content-type: image/png
last-modified: Fri, 06 Jan 2023 08:21:17 GMT
accept-ranges: bytes
content-length: 25599
date: Mon, 30 Jan 2023 23:36:00 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.saleshandy.com/spam-police/

70.32.23.111

200 OK

16 kB

URL HTTP/2
www.saleshandy.com/spam-police/
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12355)
Size
16 kB (16182 bytes)
Hash
1d27e81bbd1273abb6b35f99fc433a0e
bda56b45c79c4f36e7eab4e80b021bc2e38b766e
60d176bab833b8b03549469eccca2f1c71384cd7ae5b6a772b3475dd52c157be

HTTP Headers

GET /spam-police/ HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
x-powered-by: PHP/7.4.33
x-dns-prefetch-control: on
content-type: text/html; charset=UTF-8
link: <https://www.saleshandy.com/wp-json/>; rel="https://api.w.org/", <https://www.saleshandy.com/wp-json/wp/v2/pages/11585>; rel="alternate"; type="application/json", <https://www.saleshandy.com/?p=11585>; rel=shortlink
vary: Accept-Encoding
etag: "23542-1675103403;br"
x-litespeed-cache: hit
content-encoding: br
date: Mon, 30 Jan 2023 23:35:59 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14115
Expires: Tue, 31 Jan 2023 03:31:16 GMT
Date: Mon, 30 Jan 2023 23:36:01 GMT
Connection: keep-alive

www.saleshandy.com/wp-content/uploads/matomo/matomo.js

70.32.23.111

200 OK

21 kB

URL HTTP/2
www.saleshandy.com/wp-content/uploads/matomo/matomo.js
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (1601)
Size
21 kB (20568 bytes)
Hash
4311aa932b176c523d1764b794aff95c
82b9ba9e4dda86a9330ead37d37f1a9bdb046f0c
a96e005736de25de6ec8e33c2054c75e629a3045314737a5dbb31e460f61bef9

HTTP Headers

GET /wp-content/uploads/matomo/matomo.js HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Mon, 30 Jan 2023 23:36:02 GMT
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 18:57:31 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 20568
date: Mon, 30 Jan 2023 23:36:00 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14115
Expires: Tue, 31 Jan 2023 03:31:16 GMT
Date: Mon, 30 Jan 2023 23:36:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14115
Expires: Tue, 31 Jan 2023 03:31:16 GMT
Date: Mon, 30 Jan 2023 23:36:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14115
Expires: Tue, 31 Jan 2023 03:31:16 GMT
Date: Mon, 30 Jan 2023 23:36:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14115
Expires: Tue, 31 Jan 2023 03:31:16 GMT
Date: Mon, 30 Jan 2023 23:36:01 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7550d034-a90a-434b-9fea-868c8c7b245c.jpeg

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7550d034-a90a-434b-9fea-868c8c7b245c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5678 bytes)
Hash
da3305c255098d7a3ae582b5962ba14c
00b899160598d98b5026d4b53814b16d3f745b14
d505f682650fcacc557eb821a055b0e6c61f4d2aa2c5d8f3b595a2d240335b55

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7550d034-a90a-434b-9fea-868c8c7b245c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5678
x-amzn-requestid: 7fdf597d-0f02-48ef-9059-04d99a0d5dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffy4JFm8IAMFjJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d631cd-6044076459b6b9815fbfbe9c;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 08:43:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w1OY-d-PqtQ6UnIIdLhYkvNlm6CSImBXYdQFkhBlweSIDxDaT5FdYQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:59:01 GMT
age: 5820
etag: "00b899160598d98b5026d4b53814b16d3f745b14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd37b27-1930-4380-aa34-e533abb33eaa.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8755 bytes)
Hash
146cb1c622ae62d62090dcaf81709056
c9e939eea5ca410e2ac3e2c93fb9cdf51fd3a03e
d1a2caf59c5bfb3fd66c804217c60705de91e5beebd006cffab1d712a5aef85b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd37b27-1930-4380-aa34-e533abb33eaa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8755
x-amzn-requestid: 18054ad3-92df-4a07-b7d1-643293ba4a5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1hDGZfoAMFsFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c6c-7aae5ef32459231c25465b1b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:05:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5GkQA5AcFOFc2Wn5rdaX7nH5F4wfy52vtlpbI8Qlai-jQE77inKzqA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 10:06:07 GMT
age: 48594
etag: "c9e939eea5ca410e2ac3e2c93fb9cdf51fd3a03e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9600 bytes)
Hash
3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 01:57:09 GMT
age: 77932
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70d0f84c-475c-41c3-922d-8f0be8fbfff4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6481 bytes)
Hash
f6790dfb54452775c77c50890d17669a
a21e3ac869acae92640075dcb9da9ded4b7f0c92
b24238875cca2327ef4df93e5e66303f02b7f64265faebcb033a245c14638817

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70d0f84c-475c-41c3-922d-8f0be8fbfff4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6481
x-amzn-requestid: ca20c9a5-983f-4cde-a833-2a561c13af95
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY-T9FcXoAMFnlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d3774c-665397d31a681a155b8a7d53;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:03:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BpOJ8IlnGRS5RbTLM1pQdk11d9NJLiiUy7oIMbwYykeX5E6OyAAFdw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 17:04:34 GMT
age: 23487
etag: "a21e3ac869acae92640075dcb9da9ded4b7f0c92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Inter:wght@300;400;500%7CInter:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic%7CMontserrat:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic&display=swap

142.250.74.106

200 OK

8.8 kB

URL HTTP/2
fonts.googleapis.com/css?family=Inter:wght@300;400;500%7CInter:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic%7CMontserrat:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic&display=swap
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type
data
Size
8.8 kB (8782 bytes)
Hash
064336d6fdb5de727eb044d449780aac
3153f6e0b83ac57b9924835d1c901ec9f743a884
9e041c7c2927325b107757e8a7af10555fd1511d8226ac8a03e078ffe535b276

HTTP Headers

GET /css?family=Inter:wght@300;400;500%7CInter:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic%7CMontserrat:100,100italic,200,200italic,300,300italic,400,400italic,500,500italic,600,600italic,700,700italic,800,800italic,900,900italic&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 23:36:00 GMT
date: Mon, 30 Jan 2023 23:36:00 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.9 kB (5903 bytes)
Hash
42a648f9d34d8fb703f0b80a52e0deec
7ccefd66211d249ae5266c3b6ae3375a19e5cb6d
a57f8792e8caa2a31045a141d019f53f51b633d5d04baebdae97387740c6639d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5903
x-amzn-requestid: f6fca787-17c1-4edd-9ab0-a00e2fccc7a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboufGeSoAMF-1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d487f6-58be6bdc5e3e767e1ea47b86;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:27:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tAR5c5rQD0h5YZ6TU8pZKhUFUf5d0-l794EaYnwwkts3QXPhdYm6vA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:03:25 GMT
age: 9156
etag: "7ccefd66211d249ae5266c3b6ae3375a19e5cb6d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

38 kB

URL HTTP/2
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Size
38 kB (37924 bytes)
Hash
e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e

HTTP Headers

GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 09:44:08 GMT
expires: Sun, 28 Jan 2024 09:44:08 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
age: 222713
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

38 kB

URL HTTP/2
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Size
38 kB (37924 bytes)
Hash
e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e

HTTP Headers

GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 09:44:08 GMT
expires: Sun, 28 Jan 2024 09:44:08 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
age: 222713
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

38 kB

URL HTTP/2
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Size
38 kB (37924 bytes)
Hash
e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e

HTTP Headers

GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 09:44:08 GMT
expires: Sun, 28 Jan 2024 09:44:08 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
age: 222713
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

38 kB

URL HTTP/2
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Size
38 kB (37924 bytes)
Hash
e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e

HTTP Headers

GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 09:44:08 GMT
expires: Sun, 28 Jan 2024 09:44:08 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
age: 222713
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

38 kB

URL HTTP/2
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Size
38 kB (37924 bytes)
Hash
e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e

HTTP Headers

GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 09:44:08 GMT
expires: Sun, 28 Jan 2024 09:44:08 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
age: 222713
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

38 kB

URL HTTP/2
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Size
38 kB (37924 bytes)
Hash
e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e

HTTP Headers

GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 09:44:08 GMT
expires: Sun, 28 Jan 2024 09:44:08 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
age: 222713
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 318472
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2

216.58.207.227

200 OK

32 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Size
32 kB (31760 bytes)
Hash
fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38

HTTP Headers

GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:24 GMT
expires: Sun, 28 Jan 2024 10:20:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 220537
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 318472
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2

216.58.207.227

200 OK

32 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Size
32 kB (31760 bytes)
Hash
fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38

HTTP Headers

GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:24 GMT
expires: Sun, 28 Jan 2024 10:20:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 220537
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 318472
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2

216.58.207.227

200 OK

32 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Size
32 kB (31760 bytes)
Hash
fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38

HTTP Headers

GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:24 GMT
expires: Sun, 28 Jan 2024 10:20:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 220537
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 318472
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

38 kB

URL HTTP/2
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Size
38 kB (37924 bytes)
Hash
e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e

HTTP Headers

GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 09:44:08 GMT
expires: Sun, 28 Jan 2024 09:44:08 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
age: 222713
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2

216.58.207.227

200 OK

32 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Size
32 kB (31760 bytes)
Hash
fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38

HTTP Headers

GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:24 GMT
expires: Sun, 28 Jan 2024 10:20:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 220537
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 318472
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2

216.58.207.227

200 OK

32 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Size
32 kB (31760 bytes)
Hash
fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38

HTTP Headers

GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:24 GMT
expires: Sun, 28 Jan 2024 10:20:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 220537
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 318472
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2

216.58.207.227

200 OK

32 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Size
32 kB (31760 bytes)
Hash
fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38

HTTP Headers

GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:24 GMT
expires: Sun, 28 Jan 2024 10:20:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 220537
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2

216.58.207.227

200 OK

32 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Size
32 kB (31760 bytes)
Hash
fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38

HTTP Headers

GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:24 GMT
expires: Sun, 28 Jan 2024 10:20:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 220537
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 318472
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2

216.58.207.227

200 OK

32 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Size
32 kB (31760 bytes)
Hash
fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38

HTTP Headers

GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:24 GMT
expires: Sun, 28 Jan 2024 10:20:24 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
age: 220537
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 318472
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

216.58.207.227

200 OK

38 kB

URL HTTP/2
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Size
38 kB (37924 bytes)
Hash
e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e

HTTP Headers

GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 09:44:08 GMT
expires: Sun, 28 Jan 2024 09:44:08 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
age: 222713
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

216.58.207.227

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 07:08:09 GMT
expires: Sat, 27 Jan 2024 07:08:09 GMT
cache-control: public, max-age=31536000
age: 318472
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.saleshandy.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js

70.32.23.111

200 OK

601 B

URL HTTP/2
www.saleshandy.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
ASCII text, with very long lines (1320)
Size
601 B (601 bytes)
Hash
baebeaaad12150bc7a948ae974ad2433
3c7dbb93de4e299e97bb9d89c89c3c0cacf5dace
9e1bffa89afb6bf8ecba7204e2dd48b5e9b09aec2d8e90c58d22b6237bf4d12c

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6; _gcl_au=1.1.1207494551.1675121775; shreferer=; sh_ulp=https://www.saleshandy.com/spam-police/; _pk_id.1.be65=69e2b7007b78e067.1675121775.; _pk_ses.1.be65=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Mon, 30 Jan 2023 23:36:03 GMT
content-type: application/javascript
last-modified: Sun, 29 Jan 2023 20:55:02 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 601
date: Mon, 30 Jan 2023 23:36:01 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
adaa3d68ad3edf1d174aba6edbd073a2
b98b9e5105140b58dd858f85ae9e7fe8451ef6d8
09250004e1db3e6621fec5e64cd7161e2f2c6150e5cd4862892b4581d2c87a04

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=164208
Date: Mon, 30 Jan 2023 23:36:01 GMT
Etag: "63d832d1-1d7"
Expires: Wed, 01 Feb 2023 21:12:49 GMT
Last-Modified: Mon, 30 Jan 2023 21:12:49 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: HYdb6KwiHDunuYy8XVFmvviVCRAw8uueZz-zUL2VEllEfaFDUyO4JQ==

www.gstatic.com/_/freebird/_/ss/k=freebird.v.qRdvePm3Qlw.L.F4.O/d=1/rs=AMjVe6hSrsM1REH8D2lgN1zwa7BYmypYlw

216.58.211.3

200 OK

92 kB

URL HTTP/2
www.gstatic.com/_/freebird/_/ss/k=freebird.v.qRdvePm3Qlw.L.F4.O/d=1/rs=AMjVe6hSrsM1REH8D2lgN1zwa7BYmypYlw
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65536), with no line terminators
Size
92 kB (92428 bytes)
Hash
ef4c42ce9582fc2a5e920a2088dc73da
b512d70cc96a85b4aa5f53216438e417792ce24d
f6157e743392a57ff446339cdb4c680bae7987e4b696334d11a17f69dea96601

HTTP Headers

GET /_/freebird/_/ss/k=freebird.v.qRdvePm3Qlw.L.F4.O/d=1/rs=AMjVe6hSrsM1REH8D2lgN1zwa7BYmypYlw HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://docs.google.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-forms
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-forms"
report-to: {"group":"apps-forms","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-forms"}]}
content-length: 92428
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 16:55:58 GMT
expires: Tue, 30 Jan 2024 16:55:58 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 27 Jan 2023 19:26:01 GMT
content-type: text/css; charset=UTF-8
age: 24003
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.gstatic.com/_/freebird/_/js/k=freebird.v.no.5K51eSpObs8.O/d=1/rs=AMjVe6gxJC2nGOOmb7ds2n_Rr0JBMgnayA/m=viewer_base

216.58.211.3

200 OK

124 kB

URL HTTP/2
www.gstatic.com/_/freebird/_/js/k=freebird.v.no.5K51eSpObs8.O/d=1/rs=AMjVe6gxJC2nGOOmb7ds2n_Rr0JBMgnayA/m=viewer_base
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1781)
Size
124 kB (123865 bytes)
Hash
ee61ee1346b3cb222f6800dd05719fef
421da21a1a9eee9d9b425b7b498468756e0f4e40
939e0507222f5ed04777b0fbc5b67309d2ec0384a199db40ac73f0364b34f4f4

HTTP Headers

GET /_/freebird/_/js/k=freebird.v.no.5K51eSpObs8.O/d=1/rs=AMjVe6gxJC2nGOOmb7ds2n_Rr0JBMgnayA/m=viewer_base HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://docs.google.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-forms
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-forms"
report-to: {"group":"apps-forms","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-forms"}]}
content-length: 123865
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 08:22:24 GMT
expires: Tue, 30 Jan 2024 08:22:24 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 26 Jan 2023 19:23:59 GMT
content-type: text/javascript; charset=UTF-8
age: 54817
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.saleshandy.com/wp-content/plugins/matomo/app/matomo.php?action_name=SalesHandy%20Spam%20Police%20-%20SalesHandy&idsite=1&rec=1&r=400744&h=23&m=36&s=15&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&_id=69e2b7007b78e067&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=76OTG0&pf_net=249&pf_srv=112&pf_tfr=109&pf_dm1=415&uadata=%7B%7D

70.32.23.111

204 No Content

0 B

URL HTTP/2
www.saleshandy.com/wp-content/plugins/matomo/app/matomo.php?action_name=SalesHandy%20Spam%20Police%20-%20SalesHandy&idsite=1&rec=1&r=400744&h=23&m=36&s=15&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&_id=69e2b7007b78e067&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=76OTG0&pf_net=249&pf_srv=112&pf_tfr=109&pf_dm1=415&uadata=%7B%7D
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /wp-content/plugins/matomo/app/matomo.php?action_name=SalesHandy%20Spam%20Police%20-%20SalesHandy&idsite=1&rec=1&r=400744&h=23&m=36&s=15&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&_id=69e2b7007b78e067&_idn=1&send_image=0&_refts=0&cookie=1&res=1280x1024&pv_id=76OTG0&pf_net=249&pf_srv=112&pf_tfr=109&pf_dm1=415&uadata=%7B%7D HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6; _gcl_au=1.1.1207494551.1675121775; shreferer=; sh_ulp=https://www.saleshandy.com/spam-police/; _pk_id.1.be65=69e2b7007b78e067.1675121775.; _pk_ses.1.be65=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
x-powered-by: PHP/7.4.33
x-dns-prefetch-control: on
access-control-allow-origin: https://www.saleshandy.com
access-control-allow-credentials: true
x-litespeed-cache-control: no-cache
vary: Accept-Encoding
content-type: text/html; charset=UTF-8
date: Mon, 30 Jan 2023 23:36:01 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://docs.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 22:02:00 GMT
expires: Mon, 29 Jan 2024 22:02:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 92041
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2

216.58.207.227

200 OK

28 kB

URL HTTP/2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Size
28 kB (28288 bytes)
Hash
53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08

HTTP Headers

GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://docs.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 14:34:21 GMT
expires: Fri, 26 Jan 2024 14:34:21 GMT
cache-control: public, max-age=31536000
age: 378100
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVF9eO.woff2

216.58.207.227

200 OK

35 kB

URL HTTP/2
fonts.gstatic.com/s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVF9eO.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 35060, version 1.0\012- data
Size
35 kB (35060 bytes)
Hash
0360dbc6e8c09dce9183a1fd78f3be2e
6cd4b65a94707ae941d78b12f082c968cb05ec92
2db6bc36808d43fa89029c652636e206fa3e889b35ecf71814ab85f8ba944af3

HTTP Headers

GET /s/productsans/v19/pxiDypQkot1TnFhsFMOfGShVF9eO.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://docs.google.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35060
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 00:23:06 GMT
expires: Tue, 30 Jan 2024 00:23:06 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 17:57:49 GMT
content-type: font/woff2
age: 83575
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

public.profitwell.com/js/profitwell.js?auth=8513bc0a049460e3dc6a26ad7e1e73d7

54.230.111.82

200 OK

196 kB

URL HTTP/2
public.profitwell.com/js/profitwell.js?auth=8513bc0a049460e3dc6a26ad7e1e73d7
IP
54.230.111.82:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (34516)
Size
196 kB (195865 bytes)
Hash
c3cbe5b1757738c8f718600b3b6f2ecf
96db8188d2e8d6f7adffc47cf1ccd057a69b5ddd
19c95c64ae3bb595c75ef92c7276a6575860f6cd4cc97d89f34df6fa6ba7e4b9

HTTP Headers

GET /js/profitwell.js?auth=8513bc0a049460e3dc6a26ad7e1e73d7 HTTP/1.1
Host: public.profitwell.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Tue, 28 Jun 2022 18:43:42 GMT
x-amz-version-id: Wa8rEL0sgfJJ468C6RWZ8GSg57cuV9EE
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 01:50:26 GMT
cache-control: public,max-age=86400
etag: W/"f3710cf44008e9509cf9d74fde8cff1f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: EVvMpKeL2l7y6xYoeUkZECxW7KAdlbCoBNq2Z7nRKv5PFDHi_BabwQ==
age: 78336
X-Firefox-Spdy: h2

ssl.gstatic.com/docs/forms/qp_sprite169.svg

142.250.74.131

200 OK

12 kB

URL HTTP/2
ssl.gstatic.com/docs/forms/qp_sprite169.svg
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1745)
Size
12 kB (11828 bytes)
Hash
923de45e500c9f8ea1ba859231f86a0c
e96c9945233b4cf4bfcd42da3b2b58003fa26b13
002885e8dde288618c68dc6ddf6a55992547acc5670221dab313ba6c90590566

HTTP Headers

GET /docs/forms/qp_sprite169.svg HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.gstatic.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/docs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="docs"
report-to: {"group":"docs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/docs"}]}
content-length: 11828
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 01:09:19 GMT
expires: Thu, 25 Jan 2024 01:09:19 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 17 Jan 2023 19:38:00 GMT
content-type: image/svg+xml
age: 512802
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

snap.licdn.com/li.lms-analytics/insight.min.js

23.36.76.210

200 OK

4.8 kB

URL HTTP/2
snap.licdn.com/li.lms-analytics/insight.min.js
IP
23.36.76.210:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (13351)
Size
4.8 kB (4777 bytes)
Hash
74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c

HTTP Headers

GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=25971
date: Mon, 30 Jan 2023 23:36:01 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google-analytics.com/analytics.js

216.239.36.178

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
216.239.36.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 30 Jan 2023 21:46:59 GMT
expires: Mon, 30 Jan 2023 23:46:59 GMT
cache-control: public, max-age=7200
age: 6542
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
fbe2a0b819ebc9295cda35c498306495
401847edd2b77dd2ed4310103d1787f26e0fb797
be89d9b431e42e1108500d4ffdf4c85bf26f284ce8e65a993772bdd09275793f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5284
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:01 GMT
Last-Modified: Mon, 30 Jan 2023 22:07:57 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 727

www.google-analytics.com/gtm/optimize.js?id=GTM-PF9MQGQ

216.239.36.178

200 OK

44 kB

URL HTTP/2
www.google-analytics.com/gtm/optimize.js?id=GTM-PF9MQGQ
IP
216.239.36.178:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
44 kB (44308 bytes)
Hash
758e6d1ed96638f5c092b54d67884d5c
31ce35c3c6e0f4f793133cb6c4c39472ed243b05
4955d172e3d5fb1ddbede0044a862c8c52f136d18c44204a0147e787904712a1

HTTP Headers

GET /gtm/optimize.js?id=GTM-PF9MQGQ HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 23:36:01 GMT
expires: Mon, 30 Jan 2023 23:36:01 GMT
cache-control: private, max-age=900
last-modified: Mon, 30 Jan 2023 23:05:56 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44308
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/875623304/?random=1675121775199&cv=11&fst=1675121775199&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&tiba=SalesHandy%20Spam%20Police%20-%20SalesHandy&auid=1207494551.1675121775&rfmt=3&fmt=4

142.250.74.2

200 OK

875 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/875623304/?random=1675121775199&cv=11&fst=1675121775199&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&tiba=SalesHandy%20Spam%20Police%20-%20SalesHandy&auid=1207494551.1675121775&rfmt=3&fmt=4
IP
142.250.74.2:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1857), with no line terminators
Size
875 B (875 bytes)
Hash
2fbe1e7e683e11298cbb7b1d0cce889b
0dda436c3b9ed5503d28a471f4ab3df77d7e46fe
db109ff3229f282b8adbe6e65ef31499fbca01cb8305942e222de6e7fa4b888b

HTTP Headers

GET /pagead/viewthroughconversion/875623304/?random=1675121775199&cv=11&fst=1675121775199&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&tiba=SalesHandy%20Spam%20Police%20-%20SalesHandy&auid=1207494551.1675121775&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 23:36:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 875
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 30-Jan-2023 23:51:01 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn4.mxpnl.com/libs/mixpanel-2-latest.min.js

35.186.235.23

200 OK

17 kB

URL HTTP/2
cdn4.mxpnl.com/libs/mixpanel-2-latest.min.js
IP
35.186.235.23:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (755)
Size
17 kB (17435 bytes)
Hash
caa762087e9d75cecc34b5d6626cb7b9
fcc68d485c2f42e0f880260c3e104cedf50d0d11
dc0ec55efae4c1f0ff095cf05133cc835e1cc4ff7906d3b7a2d0d86789bfe145

HTTP Headers

GET /libs/mixpanel-2-latest.min.js HTTP/1.1
Host: cdn4.mxpnl.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
x-guploader-uploadid: ADPycdvxfyDxvS80GJAUmoIpCv3zLQJIprBwNaGzmGl9KazOTIk7p-i_SrZm8nIalAd513P2uuDavAd43yPsepq5GdM58lA7UG76
vary: X-Goog-Allowed-Resources,Accept-Encoding
x-goog-generation: 1645129310876382
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 17435
content-encoding: gzip
x-goog-hash: crc32c=PPVzJA==, md5=yqdiCH6ddc7MNLXWYmy3uQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 17435
access-control-allow-origin: *
server: UploadServer
date: Mon, 30 Jan 2023 23:31:13 GMT
expires: Mon, 30 Jan 2023 23:41:13 GMT
cache-control: public,max-age=600
age: 288
last-modified: Thu, 17 Feb 2022 20:21:50 GMT
etag: "caa762087e9d75cecc34b5d6626cb7b9"
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.saleshandy.com/wp-content/uploads/2021/07/Vector.png

70.32.23.111

200 OK

307 B

URL HTTP/2
www.saleshandy.com/wp-content/uploads/2021/07/Vector.png
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
PNG image data, 20 x 20, 4-bit colormap, non-interlaced\012- data
Size
307 B (307 bytes)
Hash
31c3eadd18e1df7a88f1329462354a09
7b2b67c6ed38ff147da163a5ade58cc1e9826033
f19398099f6afa84728d4da80c79b579011d29f4ccfa5f34b47d50c660f00de0

HTTP Headers

GET /wp-content/uploads/2021/07/Vector.png HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6; _gcl_au=1.1.1207494551.1675121775; shreferer=; sh_ulp=https://www.saleshandy.com/spam-police/; _pk_id.1.be65=69e2b7007b78e067.1675121775.; _pk_ses.1.be65=1; _ga_X6HKQ79V48=GS1.1.1675121775.1.0.1675121775.0.0.0; _ga=GA1.1.713577231.1675121775; _ga_65VZV193TN=GS1.1.1675121775.1.0.1675121775.0.0.0; _gd1675121775645=_gd1675121775645; poll_session_seen=[]; _gd1675121775646=_gd1675121775646; howuku_session=zyxRSjLv; pageview=1; _gd1675121775647=_gd1675121775647; unique_session=1; _gd1675121775648=_gd1675121775648; first_session=zyxRSjLv; _gd1675121775649=_gd1675121775649; created_at=1675121775649
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Mon, 30 Jan 2023 23:36:03 GMT
content-type: image/png
last-modified: Sat, 29 Jan 2022 06:27:50 GMT
accept-ranges: bytes
content-length: 307
date: Mon, 30 Jan 2023 23:36:01 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
X-Firefox-Spdy: h2

cdn.howuku.com/js/track.js

54.230.111.123

200 OK

4.5 kB

URL HTTP/2
cdn.howuku.com/js/track.js
IP
54.230.111.123:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (11152), with no line terminators
Size
4.5 kB (4532 bytes)
Hash
8e3980533575b51bd67ed24e1c956646
a6363df7dcea0d3c93090bc3570149514584c29c
414c5e10ef281b0497feba7c35d6735c7356a5cf4e5b30d966903edc20cde863

HTTP Headers

GET /js/track.js HTTP/1.1
Host: cdn.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 07:20:46 GMT
last-modified: Mon, 30 Jan 2023 07:20:29 GMT
etag: W/"5b8958186a82eef9398ba2550d46a41c"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SOu9pFiLYzQ36GVjl-z17Vg1M5WEzqxHpgJvIgXMy-_cT1qUNH3M3Q==
age: 58516
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
fbe2a0b819ebc9295cda35c498306495
401847edd2b77dd2ed4310103d1787f26e0fb797
be89d9b431e42e1108500d4ffdf4c85bf26f284ce8e65a993772bdd09275793f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5284
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:01 GMT
Last-Modified: Mon, 30 Jan 2023 22:07:57 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 727

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

region1.google-analytics.com/g/collect?v=2&tid=G-X6HKQ79V48&gtm=2oe1p0&_p=1178888963&cid=713577231.1675121775&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675121775&sct=1&seg=0&dl=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&dt=SalesHandy%20Spam%20Police%20-%20SalesHandy&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-X6HKQ79V48&gtm=2oe1p0&_p=1178888963&cid=713577231.1675121775&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675121775&sct=1&seg=0&dl=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&dt=SalesHandy%20Spam%20Police%20-%20SalesHandy&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-X6HKQ79V48&gtm=2oe1p0&_p=1178888963&cid=713577231.1675121775&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675121775&sct=1&seg=0&dl=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&dt=SalesHandy%20Spam%20Police%20-%20SalesHandy&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.saleshandy.com
date: Mon, 30 Jan 2023 23:36:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-65VZV193TN&gtm=2oe1p0&_p=1178888963&cid=713577231.1675121775&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675121775&sct=1&seg=0&dl=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&dt=SalesHandy%20Spam%20Police%20-%20SalesHandy&en=page_view&_fv=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-65VZV193TN&gtm=2oe1p0&_p=1178888963&cid=713577231.1675121775&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675121775&sct=1&seg=0&dl=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&dt=SalesHandy%20Spam%20Police%20-%20SalesHandy&en=page_view&_fv=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-65VZV193TN&gtm=2oe1p0&_p=1178888963&cid=713577231.1675121775&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675121775&sct=1&seg=0&dl=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&dt=SalesHandy%20Spam%20Police%20-%20SalesHandy&en=page_view&_fv=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 204 No Content
access-control-allow-origin: https://www.saleshandy.com
date: Mon, 30 Jan 2023 23:36:01 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bf9da825250765af10445e4c2b623f67
b95dd18b560647cb0648b0be22968819d850f772
cee41adf76398decfc500f8a1a9f67d003acc60aec0469e75d90ebc8da155c5c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEE41ADF76398DECFC500F8A1A9F67D003ACC60AEC0469E75D90EBC8DA155C5C"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2049
Expires: Tue, 31 Jan 2023 00:10:10 GMT
Date: Mon, 30 Jan 2023 23:36:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bf9da825250765af10445e4c2b623f67
b95dd18b560647cb0648b0be22968819d850f772
cee41adf76398decfc500f8a1a9f67d003acc60aec0469e75d90ebc8da155c5c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEE41ADF76398DECFC500F8A1A9F67D003ACC60AEC0469E75D90EBC8DA155C5C"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2095
Expires: Tue, 31 Jan 2023 00:10:56 GMT
Date: Mon, 30 Jan 2023 23:36:01 GMT
Connection: keep-alive

docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/naLogImpressions

142.250.74.110

204 No Content

0 B

URL HTTP/2
docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/naLogImpressions
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/naLogImpressions HTTP/1.1
Host: docs.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true
X-Same-Domain: 1
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 3335
Origin: https://docs.google.com
Alt-Used: docs.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 30 Jan 2023 23:36:01 GMT
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: base-uri 'self';object-src 'none';report-uri https://csp.withgoogle.com/csp/forms/prod;script-src 'nonce-VVpEBwPTXRFmmXffMyKAag' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval'
server: GSE
set-cookie: NID=511=UROwIwpttLvFzixOywDVn-FP6anUfqsPzhJphNqKnDDxofm37hDKRp-uSbqTgwrWsQzNr1wjEYPV1yfEWXLXso7F7UAPVA76o2Frxciczfl3GnarAXbgK-qg2f7DKHqFeXbS9tWwZZEIKr8kY_bMSIlzg2yG7e3xaNetu5038rw; expires=Tue, 01-Aug-2023 23:36:01 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bf9da825250765af10445e4c2b623f67
b95dd18b560647cb0648b0be22968819d850f772
cee41adf76398decfc500f8a1a9f67d003acc60aec0469e75d90ebc8da155c5c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEE41ADF76398DECFC500F8A1A9F67D003ACC60AEC0469E75D90EBC8DA155C5C"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8019
Expires: Tue, 31 Jan 2023 01:49:41 GMT
Date: Mon, 30 Jan 2023 23:36:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bf9da825250765af10445e4c2b623f67
b95dd18b560647cb0648b0be22968819d850f772
cee41adf76398decfc500f8a1a9f67d003acc60aec0469e75d90ebc8da155c5c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEE41ADF76398DECFC500F8A1A9F67D003ACC60AEC0469E75D90EBC8DA155C5C"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2195
Expires: Tue, 31 Jan 2023 00:12:37 GMT
Date: Mon, 30 Jan 2023 23:36:02 GMT
Connection: keep-alive

cdn.segment.com/v1/projects/DY2AnAvl9M85q9NEi9Bizyw5amtFuK2Z/settings

54.230.219.201

200 OK

546 B

URL HTTP/2
cdn.segment.com/v1/projects/DY2AnAvl9M85q9NEi9Bizyw5amtFuK2Z/settings
IP
54.230.219.201:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (546), with no line terminators
Size
546 B (546 bytes)
Hash
6ccad117b19301c52bf4b8a25fe0dcb2
8da254a590d2b225fe8d5b32af5986e65ab9ed02
3e514a3c0abcf81f976273df0df7bc5dfcab06f337bd57fff4bf03df3a953843

HTTP Headers

GET /v1/projects/DY2AnAvl9M85q9NEi9Bizyw5amtFuK2Z/settings HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-length: 546
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 13 Apr 2022 13:30:23 GMT
x-amz-version-id: 0TTIXVka5t_zUSj_ywqZtcFfiHXElB36
accept-ranges: bytes
server: AmazonS3
date: Mon, 30 Jan 2023 23:36:03 GMT
cache-control: public, max-age=10800
etag: "6ccad117b19301c52bf4b8a25fe0dcb2"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9fhssI1aIESStBc58vhesha_xyfbhcyqWbZOv1zZQCH-P7zmHjIP-g==
X-Firefox-Spdy: h2

docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/font/getmetadata

142.250.74.110

200 OK

19 kB

URL HTTP/2
docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/font/getmetadata
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
data
Size
19 kB (18746 bytes)
Hash
ce6a8a4d67e7bb38ea8801bd0407dc17
dcab01de64b8927a3f89c73827c673f4f337088a
4dbd8d41b2c0bc131b3ae17ef8dbaefcb7437f244759fcea26d83eb32a49e51c

HTTP Headers

POST /forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/font/getmetadata HTTP/1.1
Host: docs.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true
X-Same-Domain: 1
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 246
Origin: https://docs.google.com
Alt-Used: docs.google.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 30 Jan 2023 23:36:02 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
content-encoding: gzip
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
server: GSE
set-cookie: NID=511=XoEzIL3ObyRP0iHpq1-RbkbxOs2Mtu4nd1_t9WP_qVof3_u2fVM5z-7kFE5R1SZ8HQGvK6LFJcLN0wXvCmMLY8X4xj5QOOdVnA5sh7fjVw81EU-UsidhoWBcH8evy6A7SgSqOvpuiyGZYcZ6sxDg7BgvQrdT08YC_qLda1jVZ0c; expires=Tue, 01-Aug-2023 23:36:02 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

api.howuku.com/widget/init/zb2omn9LYogwWYkpNeDEl8

54.179.116.115

200 OK

0 B

URL HTTP/1.1
api.howuku.com/widget/init/zb2omn9LYogwWYkpNeDEl8
IP
54.179.116.115:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /widget/init/zb2omn9LYogwWYkpNeDEl8 HTTP/1.1
Host: api.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.saleshandy.com/
Origin: https://www.saleshandy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 30 Jan 2023 23:36:02 GMT
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Vary: Access-Control-Request-Headers
Access-Control-Allow-Headers: content-type
Access-Control-Max-Age: 3600000

api.howuku.com/widget/test

54.179.116.115

200 OK

0 B

URL HTTP/1.1
api.howuku.com/widget/test
IP
54.179.116.115:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /widget/test HTTP/1.1
Host: api.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.saleshandy.com/
Origin: https://www.saleshandy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 30 Jan 2023 23:36:02 GMT
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Vary: Access-Control-Request-Headers
Access-Control-Allow-Headers: content-type
Access-Control-Max-Age: 3600000

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
2ac1bcdceabf1fc4e07017906aa8a815
ba00b737325fc50b35af8d851ced0fe13d1cba22
c6c54f5dbbfc40b454b9c67a7972827f500d83b10a1594f7cb56c69158278c08

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/pagead/1p-user-list/875623304/?random=1675121775199&cv=11&fst=1675119600000&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&tiba=SalesHandy%20Spam%20Police%20-%20SalesHandy&fmt=3&is_vtc=1&random=3765115590&rmt_tld=0&ipr=y

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/pagead/1p-user-list/875623304/?random=1675121775199&cv=11&fst=1675119600000&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&tiba=SalesHandy%20Spam%20Police%20-%20SalesHandy&fmt=3&is_vtc=1&random=3765115590&rmt_tld=0&ipr=y
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/875623304/?random=1675121775199&cv=11&fst=1675119600000&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&tiba=SalesHandy%20Spam%20Police%20-%20SalesHandy&fmt=3&is_vtc=1&random=3765115590&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 23:36:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.google.no/pagead/1p-user-list/875623304/?random=1675121775199&cv=11&fst=1675119600000&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&tiba=SalesHandy%20Spam%20Police%20-%20SalesHandy&fmt=3&is_vtc=1&random=3765115590&rmt_tld=1&ipr=y

142.250.74.163

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/875623304/?random=1675121775199&cv=11&fst=1675119600000&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&tiba=SalesHandy%20Spam%20Police%20-%20SalesHandy&fmt=3&is_vtc=1&random=3765115590&rmt_tld=1&ipr=y
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/875623304/?random=1675121775199&cv=11&fst=1675119600000&bg=ffffff&guid=ON&async=1&gtm=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&tiba=SalesHandy%20Spam%20Police%20-%20SalesHandy&fmt=3&is_vtc=1&random=3765115590&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 23:36:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

px.ads.linkedin.com/collect?v=2&fmt=js&pid=310290&time=1675121776249&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F

13.107.42.14

302 Found

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=310290&time=1675121776249&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=310290&time=1675121776249&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D310290%26time%3D1675121776249%26url%3Dhttps%253A%252F%252Fwww.saleshandy.com%252Fspam-police%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQJoMLwBvcEhgAAAAYYFCaEgmExfnQYD947rW14taf6Bb09eqvL1BrMECcHIHLAq8MKHjqHdGhUpzA; Max-Age=2592000; Expires=Wed, 01 Mar 2023 23:36:02 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQJ6HaAIubu4-AAAAYYFCaEgSxHtPajgVg4yQZFPgLn_Nfl93TX36cBe9bbOxELhR32scEuN_A8SGPxoPRJoeA; Max-Age=2592000; Expires=Wed, 01 Mar 2023 23:36:02 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&738d9996-003c-40fd-879b-2ff26bbb6c33"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 30-Jan-2024 23:36:02 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2478:u=1:x=1:i=1675121762:t=1675208162:v=2:sig=AQGMrjVrjjdLQiO8qFarxhQt5k1mG3bk"; Expires=Tue, 31 Jan 2023 23:36:02 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzg62dUU0/r0huWfvy0Q==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: A171A2A4B6F4438FB38461EA87EA0854 Ref B: OSL30EDGE0309 Ref C: 2023-01-30T23:36:02Z
date: Mon, 30 Jan 2023 23:36:02 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:36:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

api.howuku.com/widget/test

54.179.116.115

200 OK

2 B

URL HTTP/1.1
api.howuku.com/widget/test
IP
54.179.116.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

HTTP Headers

POST /widget/test HTTP/1.1
Host: api.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 55
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 30 Jan 2023 23:36:02 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"2-l9Fw4VUO7kr8CvBlt4zaMCqXZ0w"

api.howuku.com/widget/init/zb2omn9LYogwWYkpNeDEl8

54.179.116.115

200 OK

576 B

URL HTTP/1.1
api.howuku.com/widget/init/zb2omn9LYogwWYkpNeDEl8
IP
54.179.116.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (1231), with no line terminators
Size
576 B (576 bytes)
Hash
d85d772cf218c9d6ad57ef064b155559
7f53e0bdd5a571c0a8c6dc920d1b32ecbea6ef55
6ba2faa7d97c0ea9ecc3a315056c463c2631be6881d29ee066ae4cd96d226842

HTTP Headers

POST /widget/init/zb2omn9LYogwWYkpNeDEl8 HTTP/1.1
Host: api.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 244
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 30 Jan 2023 23:36:02 GMT
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"4cf-Cx1OGigIwkmN/s5adei4XD7S/oQ"
Content-Encoding: gzip

api.howuku.com/widget/cookie

54.179.116.115

200 OK

0 B

URL HTTP/1.1
api.howuku.com/widget/cookie
IP
54.179.116.115:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /widget/cookie HTTP/1.1
Host: api.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.saleshandy.com/
Origin: https://www.saleshandy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 30 Jan 2023 23:36:02 GMT
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Vary: Access-Control-Request-Headers
Access-Control-Allow-Headers: content-type
Access-Control-Max-Age: 3600000

www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D310290%26time%3D1675121776249%26url%3Dhttps%253A%252F%252Fwww.saleshandy.com%252Fspam-police%252F%26liSync%3Dtrue

13.107.42.14

302 Found

0 B

URL HTTP/2
www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D310290%26time%3D1675121776249%26url%3Dhttps%253A%252F%252Fwww.saleshandy.com%252Fspam-police%252F%26liSync%3Dtrue
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D310290%26time%3D1675121776249%26url%3Dhttps%253A%252F%252Fwww.saleshandy.com%252Fspam-police%252F%26liSync%3Dtrue HTTP/1.1
Host: www.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.saleshandy.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 302 Found
cache-control: no-cache, no-store
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=310290&time=1675121776249&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&liSync=true
set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None
bcookie="v=2&0266bcbe-d67a-4ae4-841d-44038382e10c"; Domain=.linkedin.com; Expires=Tue, 30-Jan-2024 23:36:02 GMT; Path=/; Secure; SameSite=None
bscookie="v=1&20230130233602911a4d96-993f-4c95-8479-efb9cbce33a0AQElPDc6bed2L4DPA3ziDqRNmeanxEwb"; Domain=.www.linkedin.com; Expires=Tue, 30-Jan-2024 23:36:02 GMT; Path=/; HttpOnly; Secure; SameSite=None
li_gc=MTswOzE2NzUxMjE3NjI7MjswMjEyJ8uGGFbkZXk77IWfitgEQdMVw+U+ip++Vl5+8FoSQA==; Domain=.linkedin.com; Expires=Sat, 29 Jul 2023 23:36:02 GMT; Path=/; Secure; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2478:u=1:x=1:i=1675121762:t=1675208162:v=2:sig=AQGMrjVrjjdLQiO8qFarxhQt5k1mG3bk"; Expires=Tue, 31 Jan 2023 23:36:02 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
content-security-policy: default-src *; connect-src 'self' *.licdn.com *.linkedin.com wss://*.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/ linkedin.sc.omtrdc.net/b/ss/ *.qualtrics.com *.adyen.com *.microsoft.com; img-src data: blob: *; font-src data: *; style-src 'unsafe-inline' 'self' static-src.linkedin.com *.licdn.com; script-src 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com *.ads.linkedin.com *.licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: *; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' *.linkedin.com teams.microsoft.com client.learningapp.microsoft.com; report-uri /security/csp?e=p&f=t
x-frame-options: sameorigin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct"
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzg62hhaUuTshuE3uedg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 24DE567CA1ED428599B659C89B3A024D Ref B: OSL30EDGE0309 Ref C: 2023-01-30T23:36:02Z
date: Mon, 30 Jan 2023 23:36:02 GMT
content-length: 0
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ffd5df5204bbc71cbe732b7f4decafc0
0eedc71193115df2c14c22cc0c606f6212bee559
13ec87a8dfba2bc5c0f2f57308efb637b86a9cd65f20bb52b20a7deb00f41fac

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=124959
Date: Mon, 30 Jan 2023 23:36:02 GMT
Etag: "63d78765-1d7"
Expires: Wed, 01 Feb 2023 10:18:41 GMT
Last-Modified: Mon, 30 Jan 2023 09:01:25 GMT
Server: ECS (bsa/EB22)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7CBTZxcwrcFYNIGAK6jRwOtmyJGexZ-OpTa17ROo3LwIFIWF-xDpDQ==
Age: 4636

api.howuku.com/widget/cookie

54.179.116.115

200 OK

2 B

URL HTTP/1.1
api.howuku.com/widget/cookie
IP
54.179.116.115:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /widget/cookie HTTP/1.1
Host: api.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 158
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 30 Jan 2023 23:36:02 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"

api.howuku.com/widget/test

54.179.116.115

200 OK

2 B

URL HTTP/1.1
api.howuku.com/widget/test
IP
54.179.116.115:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

HTTP Headers

POST /widget/test HTTP/1.1
Host: api.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 55
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 30 Jan 2023 23:36:03 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"2-l9Fw4VUO7kr8CvBlt4zaMCqXZ0w"

cdn.howuku.com/js/form.js?v=1000004994

54.230.111.123

200 OK

1.0 kB

URL HTTP/2
cdn.howuku.com/js/form.js?v=1000004994
IP
54.230.111.123:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (2059), with no line terminators
Size
1.0 kB (1028 bytes)
Hash
a0fb92c32bf74c669b771e51eb82d362
5815a8eebd4a55760c0d61da2e34e7d68be1e1f9
a628f94dd652463b2e02e7830ce89c901ebe2bccd7f6bca5ca3f1e077b6c28cd

HTTP Headers

GET /js/form.js?v=1000004994 HTTP/1.1
Host: cdn.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 09 Dec 2022 05:57:39 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 07:58:45 GMT
etag: W/"f51de977b9934fa2a3549828d2e82cb6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: CJZYMsELIpuMxIENrFUzJi8j0wFkfiKqnI2e3tey-Mm02j5fo4wlHQ==
age: 56238
X-Firefox-Spdy: h2

api.segment.io/v1/p

35.166.186.8

200 OK

21 B

URL HTTP/2
api.segment.io/v1/p
IP
35.166.186.8:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text
Size
21 B (21 bytes)
Hash
90749a50019a27e1f32cebdbaa7a1bc1
8329e3339f928f8591024bb0f938dab99c0ad4b8
12f71cb993958eefc4bdb41d7dbbda490779a9c7aba448f7be52bb63912e0254

HTTP Headers

POST /v1/p HTTP/1.1
Host: api.segment.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.saleshandy.com/
Content-Type: text/plain
Origin: https://www.saleshandy.com
Content-Length: 839
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 30 Jan 2023 23:36:03 GMT
content-type: application/json
content-length: 21
access-control-allow-origin: https://www.saleshandy.com
strict-transport-security: max-age=31536000
vary: Origin
X-Firefox-Spdy: h2

d.clarity.ms/collect

40.76.174.66

204 No Content

0 B

URL HTTP/2
d.clarity.ms/collect
IP
40.76.174.66:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 534
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://www.saleshandy.com
access-control-allow-credentials: true
date: Mon, 30 Jan 2023 23:36:02 GMT
X-Firefox-Spdy: h2

api.howuku.com/rec/init/source

54.179.116.115

200 OK

0 B

URL HTTP/1.1
api.howuku.com/rec/init/source
IP
54.179.116.115:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /rec/init/source HTTP/1.1
Host: api.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.saleshandy.com/
Origin: https://www.saleshandy.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 30 Jan 2023 23:36:03 GMT
Content-Length: 0
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,HEAD,PUT,PATCH,POST,DELETE
Vary: Access-Control-Request-Headers
Access-Control-Allow-Headers: content-type
Access-Control-Max-Age: 3600000

api.howuku.com/rec/init/session

54.179.116.115

202 Accepted

8 B

URL HTTP/1.1
api.howuku.com/rec/init/session
IP
54.179.116.115:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
8 B (8 bytes)
Hash
382ab522931673c11e398ead1b7b1678
61a0572c4893ef34311320d84c82df88bea83e11
a00fb0c50741f81bb51d35b4475a4357f8039aabd896a21036bc516839401595

HTTP Headers

POST /rec/init/session HTTP/1.1
Host: api.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 244
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 202 Accepted
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 30 Jan 2023 23:36:03 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 8
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"8-YaBXLEiT7zQxEyDYTILfiL6oPhE"

px.ads.linkedin.com/collect?v=2&fmt=js&pid=310290&time=1675121776249&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&liSync=true

13.107.42.14

200 OK

0 B

URL HTTP/2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=310290&time=1675121776249&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&liSync=true
IP
13.107.42.14:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /collect?v=2&fmt=js&pid=310290&time=1675121776249&url=https%3A%2F%2Fwww.saleshandy.com%2Fspam-police%2F&liSync=true HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.saleshandy.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&24db15e4-c1b5-41dd-820a-28c267caff9a"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 30-Jan-2024 23:36:03 GMT; SameSite=None
lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2451:u=1:x=1:i=1675121763:t=1675208163:v=2:sig=AQErpfTKkvDWXSMgKEhLZi6ju2Suh7Tl"; Expires=Tue, 31 Jan 2023 23:36:03 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-ltx1
x-li-pop: afd-prod-ltx1-x
x-li-proto: http/2
x-li-uuid: AAXzg62pkz+47le9l0FXqw==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 15F8F2EDAFDD42C78E9BD6DF927EED78 Ref B: OSL30EDGE0309 Ref C: 2023-01-30T23:36:03Z
date: Mon, 30 Jan 2023 23:36:03 GMT
content-length: 0
X-Firefox-Spdy: h2

cdn.howuku.com/js/record.js?v=1000004994

54.230.111.123

200 OK

6.3 kB

URL HTTP/2
cdn.howuku.com/js/record.js?v=1000004994
IP
54.230.111.123:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (18608), with no line terminators
Size
6.3 kB (6294 bytes)
Hash
78af1a9f73d8ed300e9452d448cf3a71
0ffa8cb8ae1dd651e135b1be1106938587b13c1a
7752a5b7bc323d43e2a6fcd1dcb137ed391b7dfa6285b646478076fd546ae56f

HTTP Headers

GET /js/record.js?v=1000004994 HTTP/1.1
Host: cdn.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
last-modified: Sat, 07 Jan 2023 16:53:34 GMT
server: AmazonS3
content-encoding: gzip
date: Mon, 30 Jan 2023 03:42:30 GMT
etag: W/"2064d6428ade45a0b2bd6a1b371c0692"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DnN1B_NWKkO6Cc3ha6pDTFmIGpoxD_c2ZJlk1kAv2WS4vtExT9YBNA==
age: 71613
X-Firefox-Spdy: h2

www.saleshandy.com/wp-content/uploads/2021/07/Vector.png

70.32.23.111

200 OK

307 B

URL HTTP/2
www.saleshandy.com/wp-content/uploads/2021/07/Vector.png
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
PNG image data, 20 x 20, 4-bit colormap, non-interlaced\012- data
Size
307 B (307 bytes)
Hash
31c3eadd18e1df7a88f1329462354a09
7b2b67c6ed38ff147da163a5ade58cc1e9826033
f19398099f6afa84728d4da80c79b579011d29f4ccfa5f34b47d50c660f00de0

HTTP Headers

GET /wp-content/uploads/2021/07/Vector.png HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6; _gcl_au=1.1.1207494551.1675121775; shreferer=; sh_ulp=https://www.saleshandy.com/spam-police/; _pk_id.1.be65=69e2b7007b78e067.1675121775.; _pk_ses.1.be65=1; _ga_X6HKQ79V48=GS1.1.1675121775.1.0.1675121775.0.0.0; _ga=GA1.1.713577231.1675121775; _ga_65VZV193TN=GS1.1.1675121775.1.0.1675121775.0.0.0; _gd1675121775645=_gd1675121775645; poll_session_seen=[]; _gd1675121775646=_gd1675121775646; howuku_session=zyxRSjLv; pageview=1; _gd1675121775647=_gd1675121775647; unique_session=1; _gd1675121775648=_gd1675121775648; first_session=zyxRSjLv; _gd1675121775649=_gd1675121775649; created_at=1675121775649; mp_e3cf3162ba59594dc0092174fbc217fc_mixpanel=%7B%22distinct_id%22%3A%20%221860509d681b9-0556718dfa6ae68-c505425-140000-1860509d6824aa%22%2C%22%24device_id%22%3A%20%221860509d681b9-0556718dfa6ae68-c505425-140000-1860509d6824aa%22%7D; mp_253dbcc3c9cbac771923a0687bd233d4_mixpanel=%7B%22distinct_id%22%3A%20%221860509d68614-0d4b290d919a6f-c505425-140000-1860509d687302%22%2C%22%24device_id%22%3A%20%221860509d68614-0d4b290d919a6f-c505425-140000-1860509d687302%22%2C%22%24initial_referrer%22%3A%20%22%24direct%22%2C%22%24initial_referring_domain%22%3A%20%22%24direct%22%7D; ajs_anonymous_id=51952562-dc42-4412-a2ae-5cef9f3e042c; _clck=f2py4i|1|f8p|0; ln_or=eyIzMTAyOTAiOiJkIn0%3D; _gd1675121777043=_gd1675121777043; _hid=e279df5f4868ddb37852de3ac3e8652b; _gd1675121777044=_gd1675121777044; howuku_version=1000004994; _clsk=8qejsb|1675121777476|1|1|d.clarity.ms/collect
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Mon, 30 Jan 2023 23:36:05 GMT
content-type: image/png
last-modified: Sat, 29 Jan 2022 06:27:50 GMT
accept-ranges: bytes
content-length: 307
date: Mon, 30 Jan 2023 23:36:03 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

www.saleshandy.com/wp-content/uploads/2021/07/Vector.png

70.32.23.111

200 OK

307 B

URL HTTP/2
www.saleshandy.com/wp-content/uploads/2021/07/Vector.png
IP
70.32.23.111:0
ASN
#55293 A2HOSTING

File type
PNG image data, 20 x 20, 4-bit colormap, non-interlaced\012- data
Size
307 B (307 bytes)
Hash
31c3eadd18e1df7a88f1329462354a09
7b2b67c6ed38ff147da163a5ade58cc1e9826033
f19398099f6afa84728d4da80c79b579011d29f4ccfa5f34b47d50c660f00de0

HTTP Headers

GET /wp-content/uploads/2021/07/Vector.png HTTP/1.1
Host: www.saleshandy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/spam-police/
Cookie: _lscache_vary=340e60d720032216978e758e1e974bf6; _gcl_au=1.1.1207494551.1675121775; shreferer=; sh_ulp=https://www.saleshandy.com/spam-police/; _pk_id.1.be65=69e2b7007b78e067.1675121775.; _pk_ses.1.be65=1; _ga_X6HKQ79V48=GS1.1.1675121775.1.0.1675121775.0.0.0; _ga=GA1.1.713577231.1675121775; _ga_65VZV193TN=GS1.1.1675121775.1.0.1675121775.0.0.0; _gd1675121775645=_gd1675121775645; poll_session_seen=[]; _gd1675121775646=_gd1675121775646; howuku_session=zyxRSjLv; pageview=1; _gd1675121775647=_gd1675121775647; unique_session=1; _gd1675121775648=_gd1675121775648; first_session=zyxRSjLv; _gd1675121775649=_gd1675121775649; created_at=1675121775649; mp_e3cf3162ba59594dc0092174fbc217fc_mixpanel=%7B%22distinct_id%22%3A%20%221860509d681b9-0556718dfa6ae68-c505425-140000-1860509d6824aa%22%2C%22%24device_id%22%3A%20%221860509d681b9-0556718dfa6ae68-c505425-140000-1860509d6824aa%22%7D; mp_253dbcc3c9cbac771923a0687bd233d4_mixpanel=%7B%22distinct_id%22%3A%20%221860509d68614-0d4b290d919a6f-c505425-140000-1860509d687302%22%2C%22%24device_id%22%3A%20%221860509d68614-0d4b290d919a6f-c505425-140000-1860509d687302%22%2C%22%24initial_referrer%22%3A%20%22%24direct%22%2C%22%24initial_referring_domain%22%3A%20%22%24direct%22%7D; ajs_anonymous_id=51952562-dc42-4412-a2ae-5cef9f3e042c; _clck=f2py4i|1|f8p|0; ln_or=eyIzMTAyOTAiOiJkIn0%3D; _gd1675121777043=_gd1675121777043; _hid=e279df5f4868ddb37852de3ac3e8652b; _gd1675121777044=_gd1675121777044; howuku_version=1000004994; _clsk=8qejsb|1675121777476|1|1|d.clarity.ms/collect
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: max-age=604800, public
expires: Mon, 30 Jan 2023 23:36:05 GMT
content-type: image/png
last-modified: Sat, 29 Jan 2022 06:27:50 GMT
accept-ranges: bytes
content-length: 307
date: Mon, 30 Jan 2023 23:36:03 GMT
server: LiteSpeed
strict-transport-security: max-age=63072000; includeSubDomains
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

c.clarity.ms/c.gif

20.234.93.27

302 Found

0 B

URL HTTP/2
c.clarity.ms/c.gif
IP
20.234.93.27:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=6D64D6C8A1314FFB9D06BB9DA35661B0&RedC=c.clarity.ms&MXFR=295D0E7CFFC36E18309E1CD5FBC36019
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=295D0E7CFFC36E18309E1CD5FBC36019; domain=.clarity.ms; expires=Sat, 24-Feb-2024 23:36:03 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Mon, 30 Jan 2023 23:36:02 GMT
content-length: 0
X-Firefox-Spdy: h2

c.bing.com/c.gif?CtsSyncId=6D64D6C8A1314FFB9D06BB9DA35661B0&RedC=c.clarity.ms&MXFR=295D0E7CFFC36E18309E1CD5FBC36019

204.79.197.200

302 Found

0 B

URL HTTP/2
c.bing.com/c.gif?CtsSyncId=6D64D6C8A1314FFB9D06BB9DA35661B0&RedC=c.clarity.ms&MXFR=295D0E7CFFC36E18309E1CD5FBC36019
IP
204.79.197.200:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c.gif?CtsSyncId=6D64D6C8A1314FFB9D06BB9DA35661B0&RedC=c.clarity.ms&MXFR=295D0E7CFFC36E18309E1CD5FBC36019 HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.saleshandy.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=6D64D6C8A1314FFB9D06BB9DA35661B0&MUID=3C9A00B090C46EC5291D121991936F78
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=3C9A00B090C46EC5291D121991936F78; domain=c.bing.com; expires=Sat, 24-Feb-2024 23:36:03 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 4E4528C1CB2D4ADAB6A86FC90DC8052F Ref B: OSL30EDGE0318 Ref C: 2023-01-30T23:36:03Z
date: Mon, 30 Jan 2023 23:36:03 GMT
content-length: 0
X-Firefox-Spdy: h2

c.clarity.ms/c.gif?CtsSyncId=6D64D6C8A1314FFB9D06BB9DA35661B0&MUID=3C9A00B090C46EC5291D121991936F78

20.234.93.27

200 OK

42 B

URL HTTP/2
c.clarity.ms/c.gif?CtsSyncId=6D64D6C8A1314FFB9D06BB9DA35661B0&MUID=3C9A00B090C46EC5291D121991936F78
IP
20.234.93.27:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12

HTTP Headers

GET /c.gif?CtsSyncId=6D64D6C8A1314FFB9D06BB9DA35661B0&MUID=3C9A00B090C46EC5291D121991936F78 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.saleshandy.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 17 Jan 2023 20:36:49 GMT
accept-ranges: bytes
etag: "b1c8df6cb32ad91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Mon, 30-Jan-2023 23:46:03 GMT; path=/; SameSite=None; Secure;
date: Mon, 30 Jan 2023 23:36:02 GMT
content-length: 42
X-Firefox-Spdy: h2

api.howuku.com/rec/init/source

54.179.116.115

202 Accepted

8 B

URL HTTP/1.1
api.howuku.com/rec/init/source
IP
54.179.116.115:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
8 B (8 bytes)
Hash
382ab522931673c11e398ead1b7b1678
61a0572c4893ef34311320d84c82df88bea83e11
a00fb0c50741f81bb51d35b4475a4357f8039aabd896a21036bc516839401595

HTTP Headers

POST /rec/init/source HTTP/1.1
Host: api.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 80544
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 202 Accepted
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 30 Jan 2023 23:36:03 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 8
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"8-YaBXLEiT7zQxEyDYTILfiL6oPhE"

api.howuku.com/widget/cookie

54.179.116.115

200 OK

2 B

URL HTTP/1.1
api.howuku.com/widget/cookie
IP
54.179.116.115:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /widget/cookie HTTP/1.1
Host: api.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json;charset=UTF-8
Content-Length: 254
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 30 Jan 2023 23:36:04 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
ETag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"

d.clarity.ms/collect

40.76.174.66

204 No Content

0 B

URL HTTP/2
d.clarity.ms/collect
IP
40.76.174.66:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 56511
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://www.saleshandy.com
access-control-allow-credentials: true
date: Mon, 30 Jan 2023 23:36:04 GMT
X-Firefox-Spdy: h2

docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true

142.250.74.110

200 OK

0 B

URL HTTP/2
docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true HTTP/1.1
Host: docs.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-robots-tag: noindex, nofollow, nosnippet
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 30 Jan 2023 23:36:01 GMT
content-encoding: gzip
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-security-policy: base-uri 'self';object-src 'none';report-uri https://csp.withgoogle.com/csp/forms/prod;script-src 'nonce-oYt2CKHGO-qufgiWRNrx0Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval'
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
set-cookie: NID=511=qYjmO9-qTWSuUcoS1SgShjOkNGzp7cGwQpey9AjORp16l5wj_MGvbNXAr6Wucklna104T1yYQtcpNhR1QDmGy3jtJX3F75iki6OrjrvvNstx8uOFA8ov9wfJb1yxEFIIv-VqoKLOV3JEf0TCOSMkeaK5j2wE8NZ3ssIpXLSccRw; expires=Tue, 01-Aug-2023 23:36:00 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted

docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true

142.250.74.110

200 OK

0 B

URL HTTP/2
docs.google.com/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw/viewform?embedded=true HTTP/1.1
Host: docs.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-robots-tag: noindex, nofollow, nosnippet
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 30 Jan 2023 23:35:59 GMT
content-encoding: gzip
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
referrer-policy: strict-origin-when-cross-origin
content-security-policy: base-uri 'self';object-src 'none';report-uri https://csp.withgoogle.com/csp/forms/prod;script-src 'nonce-QCgFUGRFg6MjY6LU8N9OjA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval'
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
set-cookie: NID=511=HzX-Dwqazu6V95ovsfGWZqLKVJjJmY6p17NUWeTfxmm8CaP_Q5omywaU2qIUvJ_8li-bLoTm-BZvAFA_KjsNrhl6DY3ZVaDK9K6ZiYGtA3xGo4FJBbq2-jyFB_ZXG5KaW4B1et4AWo_CFVRZeOtGEkMRuxNUoQPV-My6XLSViuE; expires=Tue, 01-Aug-2023 23:35:59 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
S=spreadsheet_forms=nVa3sgwFM57qZEH0s0DRS646yGcCqMDkM6-A--Asf5s; Domain=.docs.google.com; Expires=Tue, 31-Jan-2023 00:35:59 GMT; Path=/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw; Secure; HttpOnly; SameSite=none
COMPASS=spreadsheet_forms=CjIACWuJV7_fceaSDO_e4r3fkCL-Tx9UosbYv1uJRS7g0axt95U1mtCk9XjwX4yFweiVyhDvxOGeBho0AAlriVdfjLMJnbiv6CaL5zCzSE5ppuA9cDFn6YCgmoWN2oJAXjbxNy8nqKhBjoC_WAIjWA==; Domain=.docs.google.com; Expires=Tue, 31-Jan-2023 00:35:59 GMT; Path=/forms/d/e/1FAIpQLSewvRzPPWbGS6tz6AzLPvbEJ0TxauF6HtmxNZwrlSsPRKAiYw; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.clarity.ms/tag/ads865x4qt?ref=gtm2

13.107.238.53

200 OK

0 B

URL HTTP/2
www.clarity.ms/tag/ads865x4qt?ref=gtm2
IP
13.107.238.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /tag/ads865x4qt?ref=gtm2 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=3cef13fecceb40bbaebea86d81616c20.20230130.20240130; expires=Tue, 30 Jan 2024 23:36:01 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:3f60b293-70d6-4805-b0bb-3484f0a73bf0
x-cache: CONFIG_NOCACHE
x-azure-ref: 0YVTYYwAAAAC6JMhJJnS2TLhONXNKx1VwQ1BIMzBFREdFMDQxMQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Mon, 30 Jan 2023 23:36:01 GMT
X-Firefox-Spdy: h2

cdn.segment.com/analytics.js/v1/DY2AnAvl9M85q9NEi9Bizyw5amtFuK2Z/analytics.min.js

54.230.219.201

200 OK

0 B

URL HTTP/2
cdn.segment.com/analytics.js/v1/DY2AnAvl9M85q9NEi9Bizyw5amtFuK2Z/analytics.min.js
IP
54.230.219.201:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /analytics.js/v1/DY2AnAvl9M85q9NEi9Bizyw5amtFuK2Z/analytics.min.js HTTP/1.1
Host: cdn.segment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Wed, 19 Oct 2022 21:04:47 GMT
x-amz-version-id: bqs_OV6O047Ga9nyG1lnW1CBslocD3nW
server: AmazonS3
content-encoding: br
date: Mon, 30 Jan 2023 23:36:02 GMT
cache-control: public, max-age=120
etag: W/"34d91e80805a5aa8b1458e3457139030"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 17ZWOpygJS6idOu_Mv-10WUGK5JM6WG9h9rJ2ZKnKgraCBXez2r8Cg==
X-Firefox-Spdy: h2

tc4.shxtrk.com/

172.67.204.98

302 Found

0 B

URL HTTP/2
tc4.shxtrk.com/
IP
172.67.204.98:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: tc4.shxtrk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
date: Mon, 30 Jan 2023 23:35:58 GMT
location: https://www.saleshandy.com/spam-police/
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HwMmH4jVR0D1Ew4GqFynq285SBWvb8yLX54xVRw%2BTypvRZTsKq0aNtG3OgJrEQ9L22EbEsAEF34CKQCCuzlii6qisC7lmUQ%2FEmQmaNZ9n8lDfjHkKGoGtSxJMiPImzRwcA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 791e06effa920b65-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.clarity.ms/eus/s/0.7.1/clarity.js

13.107.238.53

200 OK

0 B

URL HTTP/2
www.clarity.ms/eus/s/0.7.1/clarity.js
IP
13.107.238.53:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /eus/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d933d16af8439e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-azure-ref-originshield: 0b8rXYwAAAACXKaxCtf+qTpdydoK8z4WCRlJBMjMxMDUwNDE4MDE3ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 0YlTYYwAAAAAHzWyG6RDKTYZsJPjzm/BeQ1BIMzBFREdFMDQxMQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Mon, 30 Jan 2023 23:36:01 GMT
X-Firefox-Spdy: h2

cdn.howuku.com/js/control.js?v=1675121775595

54.230.111.123

200 OK

0 B

URL HTTP/2
cdn.howuku.com/js/control.js?v=1675121775595
IP
54.230.111.123:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/control.js?v=1675121775595 HTTP/1.1
Host: cdn.howuku.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 07:20:41 GMT
last-modified: Mon, 30 Jan 2023 06:30:30 GMT
etag: W/"c49c3cff5fe06411b4e4cd62b98fde0c"
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NPBqngGFmX4g59GPiCUQ_rJSE9OPLPiBBJgJj3atOIg1ZQJXmjAjeA==
age: 58521
X-Firefox-Spdy: h2

cdn.linkedin.oribi.io/partner/310290/domain/saleshandy.com/token

54.230.111.42

200 OK

0 B

URL HTTP/2
cdn.linkedin.oribi.io/partner/310290/domain/saleshandy.com/token
IP
54.230.111.42:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /partner/310290/domain/saleshandy.com/token HTTP/1.1
Host: cdn.linkedin.oribi.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: *
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.saleshandy.com
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/json
date: Mon, 30 Jan 2023 23:21:23 GMT
access-control-allow-origin: *
cache-control: public, max-age=3600
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: BUF-mKF47TneyRbPL5ugsP5uXcL05lsJBiSZmHc7S1CKaSPr6HcQtA==
age: 879
X-Firefox-Spdy: h2

r.wdfl.co/rw.js

54.230.111.116

200 OK

0 B

URL HTTP/2
r.wdfl.co/rw.js
IP
54.230.111.116:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /rw.js HTTP/1.1
Host: r.wdfl.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.saleshandy.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript
date: Mon, 30 Jan 2023 22:39:30 GMT
last-modified: Sat, 28 Jan 2023 08:48:28 GMT
etag: W/"0f3e7f9de9004843b194d152d8de5c15"
cache-control: max-age=3600
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YSz0A_2KmIIwUqmwgScNuJIUUEWnu718VxSBbc4YSFOcDVtXdh_bvg==
age: 3392
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (44)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML