Report - fixmyglass.safelite.com/FixMyGlass/default.aspx?sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite

Report Overview

Submitted URL
fixmyglass.safelite.com/FixMyGlass/default.aspx?sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage
IP
206.131.216.72
ASN
#17339 SAFELITE
Submitted
2022-11-26 22:09:20
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
s.amazon-adsystem.com	283	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	3.1 kB	52.46.155.104
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.9 kB	698 B	31.13.72.36
cdn.cookielaw.org	502	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	114 kB	104.16.148.64
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.8 kB	8.0 kB	143.204.42.165
l.hrzn-nxt.com	28045	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	523 B	54.230.111.28
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
s.adroll.com	2553	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	3.5 kB	143.204.55.31
p.tvpixel.com	1352	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	766 B	54.165.199.227
cdn.quantummetric.com	2877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	78 kB	104.22.52.252
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	903 B	570 B	216.239.32.36
insight.adsrvr.org	631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	3.2 kB	52.223.40.198
fixmyglass.safelite.com	376110	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	43 kB	517 kB	206.131.216.72
www.googleadservices.com	107	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	20 kB	142.250.74.162
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	29 kB	31.13.72.12
analytics.twitter.com	526	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	613 B	104.244.42.131
c.tvpixel.com	8255	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	434 B	50 kB	54.230.111.73
js.adsrvr.org	1664	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	5.1 kB	143.204.45.46
t.co	569	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	593 B	104.244.42.5
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	106 kB	142.250.74.168
dntcl.qualaroo.com	6246	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	485 B	614 B	194.242.11.186
region1.analytics.google.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	570 B	216.239.34.36
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	680 B	1.9 kB	172.64.155.188
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.9 kB	16 kB	142.250.74.3
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	380 B	21 kB	142.250.74.174
ad.doubleclick.net	186	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.1 kB	142.250.74.102
ocsp.r2m01.amazontrust.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	1.0 kB	54.230.80.227
safelite.my.salesforce.com	243329	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	400 B	9.3 kB	13.109.191.1
service.force.com	4162	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.9 kB	32 kB	161.71.0.166
participants.evolv.ai	18989	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.8 kB	5.5 kB	143.204.55.113
sp.analytics.yahoo.com	816	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	445 B	949 B	212.82.100.181
znekhevzr8y8owz94-safeliteux.siteintercept.qualtrics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	429 B	3.9 kB	104.17.209.240
u360.d-bi.fr	114255	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	374 B	258 B	34.249.81.80
safelite-app.quantummetric.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.5 kB	3.2 kB	35.194.63.195
d.la1-c1-ia4.salesforceliveagent.com	73986	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	1.3 kB	13.110.60.53
siteintercept.qualtrics.com	1163	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	1.5 kB	104.17.209.240
b.videoamp.com	5174	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	480 B	439 B	54.205.94.9
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.6 kB	6.7 kB	142.250.74.34
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	5.2 kB	142.250.74.164
static.ads-twitter.com	614	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	376 B	16 kB	151.101.84.157
alb.reddit.com	1521	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	552 B	151.101.85.140
nytrng.com	3752	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	525 B	573 B	75.2.91.175
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.5 kB	12 kB	93.184.220.29
safelitees.mpeasylink.com	483776	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.6 kB	6.9 kB	44.197.47.122
d.adroll.com	1530	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	871 B	63.32.155.187
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
ocsp.usertrust.com	899	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	342 B	1.0 kB	172.64.155.188
adservice.google.com	76	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	2.1 kB	142.250.74.2
shopper.shop.pe	12886	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	367 B	9.8 kB	35.190.54.17
s3.amazonaws.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	51 kB	54.231.197.224
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	36 kB	216.58.207.195
adservice.google.no	96969	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	838 B	1.4 kB	142.250.74.130
media.evolv.ai	21306	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	404 B	24 kB	54.230.111.89
tags.w55c.net	3703	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	905 B	1.1 kB	52.57.54.93
safelite-capi.spire.horizonmedia.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	970 B	542 B	3.234.139.2
addshoppers.s3.amazonaws.com	15696	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	896 B	6.1 kB	3.5.1.213
rl.quantummetric.com	6808	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	995 B	758 B	34.66.3.160
cdn.nytrng.com	25486	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	357 B	481 B	143.204.55.112
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	56 kB	34.120.237.76
d3rr3d0n31t48m.cloudfront.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	54 kB	143.204.55.112
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.7 kB	142.251.1.154
c.hrzn-nxt.com	28870	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	383 B	562 B	54.230.111.19
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.39.62.124
6279403.fls.doubleclick.net	403933	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	3.9 kB	142.250.74.70
d.la4-c2-dfw.salesforceliveagent.com	27246	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	946 B	136.147.108.130
www.redditstatic.com	1440	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	376 B	8.5 kB	151.101.85.140
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	9.1 kB	23.36.77.32
shop.pe	10635	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	373 B	652 B	35.227.244.1
secure.adnxs.com	396	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	3.7 kB	185.89.210.212

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-26	medium	mpeasylink.com	Sinkholed
2022-11-26	medium	mpeasylink.com	Sinkholed
2022-11-26	medium	mpeasylink.com	Sinkholed
2022-11-26	medium	mpeasylink.com	Sinkholed
2022-11-26	medium	mpeasylink.com	Sinkholed

JavaScript (134)

	URL	Size	First Seen	Last Seen
	6279403.fls.doubleclick.net/ddm/fls/r/src=6279403;type=safel0;cat=safel000;ord=1;num=3860181539556;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired	209 B	2023-03-07	2023-03-11
Pretty URL 6279403.fls.doubleclick.net/ddm/fls/r/src=6279403;type=safel0;cat=safel000;ord=1;num=3860181539556;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:56 Last Seen2023-03-11 20:58:53 Times Seen1 Hash 9f3c88a7008e6f526b27772785411d4e 2ef8c3f27461160f9c02e7e1c0f09464c65e3387 2a4f6edf2522bfa97e3b3d194e0d7d406caf87f8277b7508141a13af42ed4eb3 Loading...

	secure.adnxs.com/px?id=1032272&seg=14604971&t=1	550 B	2023-03-07	2023-03-11
Pretty URL secure.adnxs.com/px?id=1032272&seg=14604971&t=1 IP 185.89.210.212 ASN #29990 ASN-APPNEX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:56 Last Seen2023-03-11 20:58:53 Times Seen1 Hash 0efcdafa1831bff0ce2e71e1bb9ba0cb f75ae4568916390b3fa3e08f90cd0dbf90119536 a6a719842e2d6c07c7a139964e73eb559702da582bcbb34e74f30ef9554bc11c Loading...

	d.adroll.com/consent/check/O53UANQX5BAIBBI2PJDMVV?pv=59348104145.25331&arrfrr=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&_s=9c408deebc24123a2e52f0792a802ba5&_b=2	462 B	2023-03-08	2023-03-11
Pretty URL d.adroll.com/consent/check/O53UANQX5BAIBBI2PJDMVV?pv=59348104145.25331&arrfrr=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&_s=9c408deebc24123a2e52f0792a802ba5&_b=2 IP 63.32.155.187 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:19:36 Last Seen2023-03-11 23:48:38 Times Seen1 Hash 48a04c07be8054e994116cbf1fe80d5a e7377756b4b7c97369b46e052838e17c7198d641 9d1c705acbaf0171688a9806c8497c6ccca41c073100585220bf2006a096177f Loading...

	service.force.com/embeddedservice/5.0/frame/session.esw.min.js	2.4 kB	2023-03-07	2023-03-17
Pretty URL service.force.com/embeddedservice/5.0/frame/session.esw.min.js IP 161.71.0.166 ASN #14340 SALESFORCE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:26 Last Seen2023-03-17 12:45:54 Times Seen1 Hash 5208553914123db6cf68f104a719b14e 3a36d65bee6cc3f11ba22c6e767f7ff321913379 fa305b054bf6a60bd1a87abbca8f52553bbb54e6e8929564c704b85313d23790 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	5.2 kB	2023-03-11	2023-03-11
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:53 Last Seen2023-03-11 20:58:53 Times Seen1 Hash aff23b3e7f632e08690531307480c328 1fabaa79719a37ad20308e9b6df9d528ee6a15fa 8d1c85f2d851418692273247a33fd4f660672a4a724022b84e515dd440509570 Loading...

	c.tvpixel.com/js/current/dpm_pixel_min.js?aid=safelite-c77046f9-625f-4866-9c75-be39870f6479	105 kB	2023-03-07	2024-01-07
Pretty URL c.tvpixel.com/js/current/dpm_pixel_min.js?aid=safelite-c77046f9-625f-4866-9c75-be39870f6479 IP 54.230.111.73 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:18 Last Seen2024-01-07 13:43:05 Times Seen95 Hash 08e770c8a17bf087d50cec01af0892c2 15f6bd70687eeff26cd6e72f647b80894b855e7f 61d8137d275f12306e177bc726c2b3e072f9efa4743a0ace6ecbcf7a0932fd07 Loading...

	service.force.com/embeddedservice/5.0/frame/chasitor.esw.min.js	23 kB	2023-03-07	2023-03-17
Pretty URL service.force.com/embeddedservice/5.0/frame/chasitor.esw.min.js IP 161.71.0.166 ASN #14340 SALESFORCE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:26 Last Seen2023-03-17 12:45:54 Times Seen1 Hash bd5787ff8a2231de0a1cc5e3543d8157 c81453527ad97d6d8f751046bbcc88860f7f6675 168cba9e56deeeb7a1eff609228256a07dcb9a6dec5f2b2023567a8ee2f19c39 Loading...

	d.la4-c2-dfw.salesforceliveagent.com/chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D30000001H7EF&EmbeddedServiceConfig.configName=Sales_Central_Snap_in&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48	163 B	2023-03-11	2023-03-11
Pretty URL d.la4-c2-dfw.salesforceliveagent.com/chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D30000001H7EF&EmbeddedServiceConfig.configName=Sales_Central_Snap_in&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48 IP 136.147.108.130 ASN #14340 SALESFORCE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:01:23 Last Seen2023-03-11 20:58:53 Times Seen1 Hash 378e869482bba33fe875cc032d8004b9 31914811d2386db0b4809fadeb294e283dbf93e3 025275c72e37a0fbdc5a559e89af18e225444263e4fb5e9b3a62f330c329e78c Loading...

	safelitees.mpeasylink.com/mpel/mpel_ssd.js	3.2 kB	2023-03-10	2023-11-15
Pretty URL safelitees.mpeasylink.com/mpel/mpel_ssd.js IP 44.197.47.122 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:24 Times Seen2 Hash efa3b6d1fc6b8a8aeb06e88657d24fd0 9e104dd66ef44f48d35c104809bc074b4d02ab35 97150f1db750f5b269f9eabba306ba3f062d80ac90ebcd25c17e3da910c0cc46 Loading...

	js.adsrvr.org/up_loader.1.1.0.js	4.6 kB	2023-03-07	2023-11-04
Pretty URL js.adsrvr.org/up_loader.1.1.0.js IP 143.204.45.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:29 Last Seen2023-11-04 15:38:59 Times Seen1096 Hash 98d98b3499058b76d58073cf8ede2f10 2ec5bc839a187c2a4d93499567e8fff091a6bcc4 ee3a7301fe1e0c0f6bf6acff0d7a8d107f5cb3f62a2566740c0416d8e61f00b9 Loading...

	safelitees.mpeasylink.com/mpel/mpel.js	4.9 kB	2023-03-07	2024-02-12
Pretty URL safelitees.mpeasylink.com/mpel/mpel.js IP 44.197.47.122 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:31 Last Seen2024-02-12 05:50:27 Times Seen4 Hash ce920c340dd52868aacfc55c058b6ef5 1b4f90a217e85d186b0f2fb575c233ce5440d904 57d0e0cb411ab35a8c566c586aa15ecf1419927179c1c869bf966a3b6beb920a Loading...

	znekhevzr8y8owz94-safeliteux.siteintercept.qualtrics.com/SIE/?Q_ZID=ZN_eKHeVZr8y8owZ94	7.3 kB	2023-03-11	2023-03-11
Pretty URL znekhevzr8y8owz94-safeliteux.siteintercept.qualtrics.com/SIE/?Q_ZID=ZN_eKHeVZr8y8owZ94 IP 104.17.209.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:53 Last Seen2023-03-11 20:58:53 Times Seen1 Hash 4eebd2d2baf84654992b39e0978c35d4 baef8c0ce18ea104fc38aceb6d93f406a54ed2ee 8acbd63ef6a9645acc1a4baada41f574edae58a514fa182267ef99861f706c52 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	351 B	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:25 Times Seen2 Hash 3ea883003ffa83a1a28a499bfb6dc825 a52e261d380ef4b0f1706d4949a1febd95455135 99a0a7ab2350e58a311ccfc23b2bc51176536a9d99d9a2c1b6cf27bd3eb7eaac Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	10 kB	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:25 Times Seen2 Hash 236b1e68474df15f1270453ab698239c 259e458fce8bcea4bc13f45cbce517eb3786da06 9e00353af38dc14d3d5e54c28abbecaae75f3a5dc105a048ae3010c783c066ad Loading...

	service.force.com/embeddedservice/5.0/client/liveagent.esw.min.js	20 kB	2023-03-07	2023-03-17
Pretty URL service.force.com/embeddedservice/5.0/client/liveagent.esw.min.js IP 161.71.0.166 ASN #14340 SALESFORCE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:26 Last Seen2023-03-17 12:45:52 Times Seen1 Hash 8754e7508271a3f65d9a24fcb5bb1a3f 5ad0bace785a8b2aa5e6f08008378e3d936b5d4c 065cc2a79ed5890cf8ac453fa6c5649226a0b7c920427f3bf7be8eed9c88cdd2 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	495 B	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:25 Times Seen2 Hash d02d7f7608e7b208d8ecd5cb3bfb0fbf 58e2dde71151f71c3520714392199158d7226354 881439dc7f940ad2e7b751862ff6185520783fa05785b75ddca103101a038837 Loading...

	www.googletagmanager.com/gtag/js?id=G-1HXHB1LN8S&l=dataLayer&cx=c	219 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=G-1HXHB1LN8S&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:53 Last Seen2023-03-11 20:58:53 Times Seen1 Hash 85fc4441d543075d3b13d6bc24c2e9ee d58243dd7921a1067341110fcfc2e63e9d5e91a3 6e9f1b7c9e8026b643299771f0bacabd55a52ccc26e584cf7d2b2f24a2c3ea9a Loading...

	www.googleadservices.com/pagead/conversion.js	46 kB	2023-03-08	2023-11-03
Pretty URL www.googleadservices.com/pagead/conversion.js IP 142.250.74.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:58 Last Seen2023-11-03 22:15:30 Times Seen3 Hash d6c8b769f77ac1adb13dca78fe1ad0f6 e030a3b320db3d7b059af408d32a7a3d26c12859 3bd916949aeea3ea0d8c943ffe67060a38c2902c9533a94d36650bc176e322af Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/955792435/?random=1669500551613&cv=11&fst=1669500551613&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&tiba=Welcome%20-%20Safelite%20AutoGlass%C2%AE&auid=549793862.1669500552&rfmt=3&fmt=4	2.3 kB	2023-03-11	2023-03-11
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/955792435/?random=1669500551613&cv=11&fst=1669500551613&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&tiba=Welcome%20-%20Safelite%20AutoGlass%C2%AE&auid=549793862.1669500552&rfmt=3&fmt=4 IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:53 Last Seen2023-03-11 20:58:53 Times Seen1 Hash 0375a6a0f1d07f40b45f1f1167197771 af723ed9f367acee49b9196c1be4fe954901335a fb198a56577186517af490dbb26165112bd387102ae8a74761441249112862aa Loading...

	d3rr3d0n31t48m.cloudfront.net/widget/triggerRunner.js?v=c317b78	11 kB	2023-03-07	2023-03-17
Pretty URL d3rr3d0n31t48m.cloudfront.net/widget/triggerRunner.js?v=c317b78 IP 143.204.55.112 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:57 Last Seen2023-03-17 18:53:20 Times Seen1 Hash c317b7852cd920e51fb9818dd2739faf 6ea03f97b8b2832a0bf95f3e2bd49310c69095fc e124bd334341346ad05a5b3a92f27a1b5b7c7fda0d7a78f8f9d1101b24d115ae Loading...

	service.force.com/embeddedservice/5.0/utils/inert.min.js	8.3 kB	2023-03-07	2024-04-23
Pretty URL service.force.com/embeddedservice/5.0/utils/inert.min.js IP 161.71.0.166 ASN #14340 SALESFORCE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:26 Last Seen2024-04-23 22:10:55 Times Seen2808 Hash b9cc312f6aa625061b4c9aea76e9ad88 722673fea59409aa0c2db2e6d70ce8d38ae6d8be 12834f596f899e7e17cc2a4a76a1ee77ea0f1ebbfb61e8a33dafe426327c71a3 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	381 B	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:25 Times Seen2 Hash 05c8184282375f22e5562bbc391c88a5 758f74400fbc09acaeb58d03b925e650371ddfbc 799ece414bf1235cea44c87f5005fdbd8caa94d87b4f4a11e1080ef8a99ef87c Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	264 B	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:24 Times Seen2 Hash 29c5721a261e9c0a8eddadb750f16104 a8d93e1113519f6ce37c63965c12abc926e0249d 366ff3895d82681a37315c23b1939c2b93b9c439581c51e84d03a18e82e6d0a6 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	666 B	2023-03-07	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:56 Last Seen2023-11-15 18:20:25 Times Seen3 Hash 51eac4b81c9fc81ace6feb92dd738e83 e8a920bddcabed3116b3cf8b44c7ca25376d5263 103f24816f4f6f0747fe60f0169a50d3492d96c0a54f0463b3001bd44b93fd3a Loading...

	service.force.com/embeddedservice/5.0/frame/broadcast.esw.min.js	2.3 kB	2023-03-07	2024-04-23
Pretty URL service.force.com/embeddedservice/5.0/frame/broadcast.esw.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:26 Last Seen2024-04-23 22:10:55 Times Seen2750 Hash ee45086cdb484e3cdb2073e8ba9b2f45 214f90ba7278c2e5d5301cf4948355382da4fca7 ecb244f676677252c58d2eccb58f1b0b87b5dd6baab45d29d46dba74c823b7f2 Loading...

	service.force.com/embeddedservice/5.0/frame/filetransfer.esw.min.js	473 B	2023-03-07	2024-04-23
Pretty URL service.force.com/embeddedservice/5.0/frame/filetransfer.esw.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:26 Last Seen2024-04-23 22:10:55 Times Seen2546 Hash 6d324159aa7864efd46ce66f36be74f1 e0fbcfcddfd80e7c6de85423a05cffd0e2e53f25 34172e3b2c0f93498a2730933bc90740b38178cf10bd81b3164289d0445644a9 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	2.2 kB	2023-03-11	2023-03-11
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash dc0c57e0a5a00dc0a1220140ceed4c00 1a9665559b360bc819b18d0c6ad0512fb5c6e74a b78a48dd29798373458a0040710bf58558d30b232b8f26fa234471b91fa6860f Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	1.3 kB	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:25 Times Seen2 Hash faacb2a94a714449be5b325c57ec3fa4 a2797d05ab92ce6c239f3db4fbdd81b9c7cb5d08 4ca4b113071a71bb930fb332d836eeff2e2851e8fa5ef7f60628dc84c715fa6a Loading...

	shop.pe/widget/widget_async.js#5d484d7ed559304db178fbd5	2.1 kB	2023-03-08	2023-03-11
Pretty URL shop.pe/widget/widget_async.js#5d484d7ed559304db178fbd5 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:49:58 Last Seen2023-03-11 23:52:33 Times Seen1 Hash 727dbedfbc7fdce744c2455857e8cea1 60694eeb054d58a67609c66917f9162d9641202f e0ca5d84d0ce61690a77edcd8c4d3ceec3855d6d1d30741b1b8a794fe05fd492 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	511 B	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:25 Times Seen2 Hash 089c217684c40ebdf12dc79b929c3a30 c61f156d6a6f691fb7c22aed64a3f170dcb9f8e6 ac38a889242550438ae316d1a559fa01be4a14b3f49abde055eeefe2afb3d019 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	263 B	2023-03-07	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:56 Last Seen2023-11-15 18:20:24 Times Seen3 Hash 9e125b82bb342a5fb5a0d0064382877c ed815819270912419186c90f39dc2317df7463c5 f62b9f15fa34e8379ad34bd9ca9789ec8da11addc621fe8d4b3eb9b95248d7b7 Loading...

	ssl.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL ssl.google-analytics.com/ga.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-24
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-24 18:41:20 Times Seen1526 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	28 B	2023-03-07	2024-04-25
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-04-25 15:56:23 Times Seen4198 Hash 5b367dd02e41abc8dbc0190dcb35ff61 5e24ba41be5efe4af6dd970e101bc24acea46a7c 22031038e39e75078c3c197b952ade3153e626f53ad9b73a97c1dcb065e76d67 Loading...

	safelitees.mpeasylink.com/mpel/mpel?href=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&ref=&lang=&country=undefined&curr=undefined&region=undefined&osl=en-US	992 B	2023-03-10	2023-11-15
Pretty URL safelitees.mpeasylink.com/mpel/mpel?href=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&ref=&lang=&country=undefined&curr=undefined&region=undefined&osl=en-US IP 44.197.47.122 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:26 Times Seen3 Hash 2c7b62c899a5713b05af1e654b1e3b5f 6998902a76405997fc074c6c7745181437c4fc7f cdd3d4962a805a12ddde80aaf421928e0c7fee6024a6e2e304ee836d5505e1f3 Loading...

	6279403.fls.doubleclick.net/ddm/fls/r/src=6279403;type=fixmy0;cat=finds0;ord=2302056894543;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired	403 B	2023-03-07	2023-03-11
Pretty URL 6279403.fls.doubleclick.net/ddm/fls/r/src=6279403;type=fixmy0;cat=finds0;ord=2302056894543;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:56 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 70a4c9c035fe18fcdbee1d846fddd3fe d3d06498bd5b1a02a06d2cc2edba0140de23eaef e2bf2ae0b1582f20ce02626f2ab71a9aa04fe6c13de717a756c670afffb6bf47 Loading...

	nytrng.com/iframe?vcp=4dd5h0np&as_id=4d85aa7b28f546b585bfd4da2629c1ba	343 B	2023-03-11	2023-03-11
Pretty URL nytrng.com/iframe?vcp=4dd5h0np&as_id=4d85aa7b28f546b585bfd4da2629c1ba IP 75.2.91.175 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash bbe3419b1568b068a0b7f3ce365c4f1d ffc6e57b78c398c5bdff1861cb4f495f1fb678f7 8fd53d088bf6c810379820f7e8f955d9edaf9ecb124e69300a5e85f8fe952b69 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	10 B	2023-03-10	2024-01-26
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 00:21:36 Last Seen2024-01-26 08:02:30 Times Seen25 Hash 808c3fd6172c845c203a589ec2ba756f 92a7356b3a344947cc08794bdaed3736259aff73 b6e984051b9f805c6dfba1889343a2ea091c22178a7e280ad8e0eca077e0d172 Loading...

	u360.d-bi.fr/hmx000000000593.js	11 kB	2023-03-07	2023-06-30
Pretty URL u360.d-bi.fr/hmx000000000593.js IP 34.249.81.80 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:56 Last Seen2023-06-30 21:54:30 Times Seen3 Hash 166ffd3a976bbcd1a3116ff0e2caf14c 8f0b3d17283bf627d31bbf8089451d6bcdc30bb0 57dc8663183a3df51e1a713904698e25e63c520ee8aa489cfdbbca8297004145 Loading...

	fixmyglass.safelite.com/Shared/js/OmniExperimentSearchAndCookie?v=C4k_BQwnpGkx_zHggboFQ2WN94bRBiNWDlidH7bubUQ1	22 kB	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/Shared/js/OmniExperimentSearchAndCookie?v=C4k_BQwnpGkx_zHggboFQ2WN94bRBiNWDlidH7bubUQ1 IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:26 Times Seen3 Hash 199268470ab34dfab5d2dd256fbfe730 d5c1bf204e089cb6ae9d2e6c512e317a4105c97a 79778f07a4df66c9095239d9cf756dc1bca1e95da7ff27f75b6528453302eef3 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	1.1 kB	2023-03-10	2023-03-11
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 05ac459f921d2b062c0f5f01c1eed67f f32e90b4afbd1b25604ed3c44c4219f2a56f69db b33afbfb23ee255b75b1b7aee2bb956d205a6c2020867e002ad14ef7d00ae37c Loading...

	cdn.cookielaw.org/scripttemplates/otSDKStub.js	22 kB	2023-03-07	2024-03-05
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.16.148.64 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:58:52 Last Seen2024-03-05 19:00:25 Times Seen96 Hash a750a84d2cd5eb69aa0b8b1b94db6da8 56fd3e55c49aa5f3e48e525ae794da9b070cfa6c bbc4456bca95006683a8f081d0d2ed645eef5b14c62eca12c70f7e1cec26c1a0 Loading...

	c.hrzn-nxt.com/js/v2.12.0/connect.min.js	102 kB	2023-03-07	2023-07-19
Pretty URL c.hrzn-nxt.com/js/v2.12.0/connect.min.js IP 54.230.111.19 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:39 Last Seen2023-07-19 15:35:04 Times Seen67 Hash 237f31c1c4f949ec68d5e446713a7630 684873c8e33abb1d79eaa4b4753de2a2bb0b02a5 86257d5730e393e078acc789a2ac5253f409f015648bec4231fd9b8e4fe32acd Loading...

	6279403.fls.doubleclick.net/ddm/fls/r/src=6279403;type=safel0;cat=safel000;ord=1;num=3860181539556;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired	627 B	2023-03-07	2023-03-11
Pretty URL 6279403.fls.doubleclick.net/ddm/fls/r/src=6279403;type=safel0;cat=safel000;ord=1;num=3860181539556;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:56 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 727ea7a62e9ae0a11605f87e1d2f9197 62bd2cc35b7806115afe382a2077872bede20a8d e73c6addba04b37207a031a0b6fcb823c4b1b844952d8a0019225b6e446cfea3 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	359 B	2023-03-10	2023-03-11
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 87b3b94bc04b0a0e6cac0c6630c8bc4c 971f35f9cff6ff971d0023f2f5dd52349535d36c a2a3dd94e795380ad69f3be5a3fa20638fe8eb247ffd9b53f36d6012bab11805 Loading...

	fixmyglass.safelite.com/ruxitagentjs_A2NVfjqru_10219210719121502.js	163 kB	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/ruxitagentjs_A2NVfjqru_10219210719121502.js IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:26 Times Seen3 Hash fb88d41cc2ae1b62236ee9651ad597d1 5419876733b7b35074b48bee8020fbbc2191351d 6a062d26d5b165a84b442b30f3fc932c7ddf7d9abb4d3cab3106aca35c2ebc78 Loading...

	fixmyglass.safelite.com/Shared/js/modernizr?v=pMEfrhyKIGK2k7Vn4v0N2P83GeAMcmZHr0587V19V_c1	10 kB	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/Shared/js/modernizr?v=pMEfrhyKIGK2k7Vn4v0N2P83GeAMcmZHr0587V19V_c1 IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:26 Times Seen3 Hash 62e7a659654f473c15d6d4f3ad6dd7b5 0bb1e35fd90934c5225807b69e97b5ca04017670 94401fb6f91d3664c838c73f89cd2aa7719774f8d3e5797dd983172a3438a1a5 Loading...

	connect.facebook.net/signals/config/951042898361822?v=2.9.89&r=stable	493 kB	2023-03-11	2023-03-11
Pretty URL connect.facebook.net/signals/config/951042898361822?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 71f9df21fded2db0ad90e2891d87bdfb d9ad664936adefaa5b9464cba63ab8e5268055de 9037dfab5ea1560e8cfc2c44e4713bbf3b7d6c9c003ab413976bf6178f1a2392 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/1067141890/?random=1669500551574&cv=11&fst=1669500551574&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&label=vAv6CNKs2AQQgpbt_AM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&tiba=Welcome%20-%20Safelite%20AutoGlass%C2%AE&rdp=1&auid=549793862.1669500552&data=gls_dmg%3D%3Bacct_type%3D%3Border_id%3D&rfmt=3&fmt=4	43 B	2023-03-07	2024-04-20
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/1067141890/?random=1669500551574&cv=11&fst=1669500551574&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&label=vAv6CNKs2AQQgpbt_AM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&tiba=Welcome%20-%20Safelite%20AutoGlass%C2%AE&rdp=1&auid=549793862.1669500552&data=gls_dmg%3D%3Bacct_type%3D%3Border_id%3D&rfmt=3&fmt=4 IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2024-04-20 17:48:03 Times Seen63949 Hash ad8b6f08655797587cdec719a94efe59 182adf5a140796f81e930649d05654dbf22fd5b7 77d5fe96defd6c8c1e3b0466b4827cf83dc7e5c727a10177e115d25132fa86f6 Loading...

	static.ads-twitter.com/uwt.js	58 kB	2023-03-08	2024-04-20
Pretty URL static.ads-twitter.com/uwt.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:46 Last Seen2024-04-20 17:48:03 Times Seen4329 Hash 32ad004436155ec972bc50e6238b5b67 9b2cdb645c2fa5b98a9d05dcdca521fed4a17b7b cf7fcc9f75c8717897bfaef72f303fab423ce1b70c98512aeb3677e4af988dee Loading...

	fixmyglass.safelite.com/External/js/MotionPointLinkCode?v=SYDxgRYxI6pJvpmko9blkA7l8l9EHVWTDThW3jvXA4c1	1.5 kB	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/External/js/MotionPointLinkCode?v=SYDxgRYxI6pJvpmko9blkA7l8l9EHVWTDThW3jvXA4c1 IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:26 Times Seen3 Hash ae26332e7f91f5bf86a60feaac2ad411 1d186050e46febb57885f9569b552747285282a8 b00b5355a59d94071a51ed87cadabcc0d09b6864adb7eb85049053a6bcbc7884 Loading...

	6279403.fls.doubleclick.net/ddm/fls/r/src=6279403;type=fixmy0;cat=fixmy005;ord=1;num=6367672819210;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired	626 B	2023-03-10	2023-03-11
Pretty URL 6279403.fls.doubleclick.net/ddm/fls/r/src=6279403;type=fixmy0;cat=fixmy005;ord=1;num=6367672819210;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-03-11 20:58:54 Times Seen1 Hash b768ea0e98e064dd99fb297ae368a68b 44592a5dc48d01d966168cbd7b023deb99e83a8a 0444492d378b46b5d4005b52a7d79faa8724a2bebe05e197659f1b6016ba6ee6 Loading...

	6279403.fls.doubleclick.net/ddm/fls/r/src=6279403;type=fixmy0;cat=fixmy005;ord=1;num=6367672819210;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired	209 B	2023-03-10	2023-03-11
Pretty URL 6279403.fls.doubleclick.net/ddm/fls/r/src=6279403;type=fixmy0;cat=fixmy005;ord=1;num=6367672819210;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 28f9c3f6aa5b2ef138ab3ccf79f1f2e9 5c08630b36e8173e26e5093d43808f602eca6334 0e4643263fff574a5da8f187794ef5c55cc77ff6189317e1d99a3e4c7abfe8ec Loading...

	www.redditstatic.com/ads/pixel.js	25 kB	2023-03-08	2023-12-01
Pretty URL www.redditstatic.com/ads/pixel.js IP 151.101.85.140 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2023-12-01 19:12:11 Times Seen28 Hash c1c34430d39fb43c9612aebe7ab8a9db 4d7f5cb7b29685a3a5a51c140288465e9553a0a7 4b4e80032e1c164685d3ff6eb4c606785ebaebaa648d3984478b0cc8d114190b Loading...

	s.adroll.com/j/exp/O53UANQX5BAIBBI2PJDMVV/index.js	28 B	2023-03-07	2024-03-14
Pretty URL s.adroll.com/j/exp/O53UANQX5BAIBBI2PJDMVV/index.js IP 143.204.55.31 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:31 Last Seen2024-03-14 05:34:18 Times Seen254 Hash 5816cced8568d223aa09d889f300692b 95cab5e474d7391762c3da5c7dc50fcf05df529f f59e5f34a941183aacaed25322ac0856628493c2cfd936ded3fddc0a49510e52 Loading...

	d.la1-c1-ia4.salesforceliveagent.com/chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5730c000000CwDk]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=5720c0000008jxz&org_id=00D30000001H7EF&version=48	346 B	2023-03-11	2023-03-11
Pretty URL d.la1-c1-ia4.salesforceliveagent.com/chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5730c000000CwDk]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=5720c0000008jxz&org_id=00D30000001H7EF&version=48 IP 13.110.60.53 ASN #14340 SALESFORCE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash f4a33690071851f8b997b087d3ac9782 b1901b33714b8debc2e9f19bcdfbff2325f3c506 d98bf96da584d28afd7ae0ae538bbd5705e48a3ea2b88dc7983e82b869a4609e Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	34 kB	2023-03-11	2023-03-11
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 513304911271d4fd59bffe0d19a14749 696283562354f2998f43e02ca0da09252c0a420f abcb34401d8c7d43ebe22245411deb4d3e83878993519e95e0f76e2219b732b2 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	2.1 kB	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:25 Times Seen2 Hash ab95b16b67ef95dd065ae9b9ac996b37 ccd46b8dd852898993427e7694967a581180785b b35dc4503833f187865f6819092d4ec8a7a6e762c284aeeda8d24a9f2bf4dc93 Loading...

	service.force.com/embeddedservice/5.0/eswFrame.min.js	5.2 kB	2023-03-08	2023-03-13
Pretty URL service.force.com/embeddedservice/5.0/eswFrame.min.js IP 161.71.0.166 ASN #14340 SALESFORCE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:35:24 Last Seen2023-03-13 21:28:43 Times Seen1 Hash a2964af4f719a41ab699eb32a5c0926e 418b9dd33faba3b01ee72af24a4e2739b12bb6b2 9ba7853e578c8036077b1780006fc85ee9ba730046884b4f20ebc25e887c6a6e Loading...

	shop.pe/widget/main/init/params?siteid=5d484d7ed559304db178fbd5&product=Welcome%20-%20Safelite%20AutoGlass%C2%AE&product_url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx&image=&price=&currency=undefined&rating=0&rating_count=0&review_count=0&stock_status=&description=&update_product=true&subcategory=&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&callback=AddShoppersWidget.load_widget&no_cookie_callback=AddShoppersWidget.load_no_cookie&rand=89394&cookie=&referer=	260 B	2023-03-11	2023-03-11
Pretty URL shop.pe/widget/main/init/params?siteid=5d484d7ed559304db178fbd5&product=Welcome%20-%20Safelite%20AutoGlass%C2%AE&product_url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx&image=&price=&currency=undefined&rating=0&rating_count=0&review_count=0&stock_status=&description=&update_product=true&subcategory=&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&callback=AddShoppersWidget.load_widget&no_cookie_callback=AddShoppersWidget.load_no_cookie&rand=89394&cookie=&referer= IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 464ba6246d2e60838e48a4ed595d8a1f dcde6ece47ff7d773c3c377839d1dab3f3614430 bec3d833f0db6b491d72af3d4306e70b2241aedee0e28274ee9fb6c86a010d2b Loading...

	shopper.shop.pe/input.js	27 kB	2023-03-07	2023-05-17
Pretty URL shopper.shop.pe/input.js IP 35.190.54.17 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:57 Last Seen2023-05-17 15:55:58 Times Seen491 Hash 127fab1b0432a8882b898ccbd22892da cf4347ffabcc3bad1cc7a9d7f5fdfa1e5013eadf bc1f719ad8a9fb36c5f164463ae53ad79a27e84143b027da42c6ee08021ff399 Loading...

	fixmyglass.safelite.com/FixMyGlass/js/core?v=BXYiruYiJyntEu7pSc9LYTHOA0fx1kNuAdsVrtJDOeE1	429 kB	2023-03-11	2023-03-11
Pretty URL fixmyglass.safelite.com/FixMyGlass/js/core?v=BXYiruYiJyntEu7pSc9LYTHOA0fx1kNuAdsVrtJDOeE1 IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 6e9ddd6bbfbac8a05e6cbaa323169095 4bf4367936c70ca390e5036918a05582b7a36cb6 2c9e1f7092393f839784e1fdaf62b30b6adada5f5827c3c0c4728c48549928cd Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	172 B	2023-03-07	2023-03-11
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:56 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 8b33671c2a87a4116405b8a98338750d dcd5ce4ef0cbedae537bde9fb8796010563e5528 f0497334752222faaaef4a207fc2d7e9c706a4b34f3d0a6681ab5f2042303d63 Loading...

	d.la4-c2-dfw.salesforceliveagent.com/chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5730c000000CwDk]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=5720c0000008jxz&org_id=00D30000001H7EF&version=48	166 B	2023-03-11	2023-03-11
Pretty URL d.la4-c2-dfw.salesforceliveagent.com/chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5730c000000CwDk]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=5720c0000008jxz&org_id=00D30000001H7EF&version=48 IP 136.147.108.130 ASN #14340 SALESFORCE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:01:23 Last Seen2023-03-11 20:58:54 Times Seen1 Hash e86ab81b2d93afd295851032351fb7d7 587108afe82b14b05c28c8a6541d6a6b40c1ad9f ce6817d0c219cb13c1ac01c92d0b65f046f6bf6710416006de36bc7d4e4d680a Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	313 B	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:25 Times Seen2 Hash 2c4d63e12a12341583ca8f37fd1ca996 a452255289326adb8604406faf5ae4ffce6497cd de1761be073f17954c8ab92a48458f905a2e47648fd2c1ceeefdb57d14c20657 Loading...

	addshoppers.s3.amazonaws.com/customize/5d484d7ed559304db178fbd5/369bd1f2e9c541dd9e40ec9b97a737d1.js?_t=1663087462	1.9 kB	2023-03-11	2023-03-11
Pretty URL addshoppers.s3.amazonaws.com/customize/5d484d7ed559304db178fbd5/369bd1f2e9c541dd9e40ec9b97a737d1.js?_t=1663087462 IP 3.5.1.213 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 3cbe713bf8db671781eece178c205b82 86f34ecf2e47a4068b628e786244f950d2e96170 9d55edca8649c4e687cbe3ea515bcf538cc8ba620160320c4688560e861fea35 Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 16:12:23 Times Seen37066466 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	379 B	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:24 Times Seen2 Hash 35c4ee1278a9f0f900e9b89ed46a6987 c69674820a3ed7078f7074deb59a571dd9845581 7c8610875d0b8dff89f1873369db6ff141705bc06e148d760ec95038c7a0f1b0 Loading...

	cdn.quantummetric.com/qscripts/quantum-safelite.js	268 kB	2023-03-11	2023-03-11
Pretty URL cdn.quantummetric.com/qscripts/quantum-safelite.js IP 104.22.52.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 4d5698d4f47a37db4417ce943a4e7b23 8eb0e3038ab49df98cf1231e1bf6da8e66772bd3 6626f59321a0bfcd7eedac1b7750a230360d12058e37c4dcc240e123cfe18ad3 Loading...

	s3.amazonaws.com/ki.js/47127/9vK.js	141 kB	2023-03-10	2023-11-15
Pretty URL s3.amazonaws.com/ki.js/47127/9vK.js IP 54.231.197.224 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:26 Times Seen3 Hash 60cca434ad69c1a3687d0255acbfb6ad c9a9b5b02782a2f47955f79f7fab6491f54342b3 ebdcd9025dde0f68b231caf20160af0e818590190f15fde89d04cc2dac1d55f2 Loading...

	fixmyglass.safelite.com/Shared/js/jquery?v=ZhOIA94bAT8aDo-tLET59Zp9le8AA7GI8bUaayI3oJM1	84 kB	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/Shared/js/jquery?v=ZhOIA94bAT8aDo-tLET59Zp9le8AA7GI8bUaayI3oJM1 IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:26 Times Seen5 Hash 9431b3c8d866c402a4f0ac974fb1c749 edb233b456ab9efa929ea3031ec16cf18e959bad ab28a0e8c5605ca75641f3660d71a27edac81d1cdb30f702aed8493ce91c29e6 Loading...

	safelite.my.salesforce.com/embeddedservice/5.0/esw.min.js	31 kB	2023-03-08	2023-03-13
Pretty URL safelite.my.salesforce.com/embeddedservice/5.0/esw.min.js IP 13.109.191.1 ASN #14340 SALESFORCE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:35:24 Last Seen2023-03-13 21:24:21 Times Seen1 Hash fff58f5e09fadbd945ce4493eb52d522 396344c8865f4fbb8dadfa6b2889dd223a36ec00 598684d34af3e0b2f2be1338d0bd066877b6df4e4588c3daae0813f59bd1f419 Loading...

	safelitees.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired	2.5 kB	2023-03-07	2023-03-14
Pretty URL safelitees.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired IP 44.197.47.122 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:31 Last Seen2023-03-14 02:29:32 Times Seen1 Hash fb3454920f643c6bfbe11d48d2461726 8349827dc6d0b4d14dd6e05ce55b69ec1087d619 4fa1c2ea2deb3a2b3f0af5c70600ffb0317c360fe1691e3f08f9356486b9760c Loading...

	service.force.com/embeddedservice/5.0/utils/common.min.js	4.9 kB	2023-03-07	2024-04-23
Pretty URL service.force.com/embeddedservice/5.0/utils/common.min.js IP 161.71.0.166 ASN #14340 SALESFORCE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:26 Last Seen2024-04-23 22:10:54 Times Seen2760 Hash c5d3cedc1b074f2f25895feefb72a2df 5c02d1eee3361874a3406c617856effcb259d338 7c273510050e27ad1e0a533b0a766c6c597575710d578a104e60d4810e173648 Loading...

	www.googletagmanager.com/gtag/js?id=G-W987R4HVH1&l=dataLayer&cx=c	191 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=G-W987R4HVH1&l=dataLayer&cx=c IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 27af7056e9533730635e4af5ee19635a 104c8a4f239cc0cd7480298b144d58b47362da47 55a9910a75189cbbbb5190719bf12a438e8815341b07f9a233756cabb31e538b Loading...

	participants.evolv.ai/v1/48ce15a4d0/96042948_1669500551822/assets.js	6.1 kB	2023-03-11	2023-03-11
Pretty URL participants.evolv.ai/v1/48ce15a4d0/96042948_1669500551822/assets.js IP 143.204.55.113 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash bbdf1ce95c662eafa88aa567e26ec080 6cba3f21fe4b2d6920a4043203d9c23a4f30c2bd f3a33595bf068753e0b62bdaa688732c6f81ca3e42d8d5ab41a344d7bc63a2f0 Loading...

	secure.adnxs.com/px?id=1032274&seg=14604974&t=1	549 B	2023-03-10	2023-03-11
Pretty URL secure.adnxs.com/px?id=1032274&seg=14604974&t=1 IP 185.89.210.212 ASN #29990 ASN-APPNEX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-03-11 20:58:54 Times Seen1 Hash d5bfaa442e366927831652107028c219 375de64a7c8edc2dbcd93a276965acdd72fef89e 98d0b66245830f9163adda3ed4b9f2c773b96df18380d7334319994ba164c928 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	265 B	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:25 Times Seen2 Hash 6a242a186792a86a359f9a47037ccf2a 6ead1d25e5c1c6eba87123fc7f506f6c460be739 9922f84d3c2287a016bc8a9fabd35fdce750235ec2b7b5b7984dfc80785b6261 Loading...

	fixmyglass.safelite.com/FixMyGlass/js/ServiceDetails?v=AM1hDJkorwKHzKxiyCOx0-rzqLN98EkbE-o2029Th0g1	18 kB	2023-03-10	2023-03-11
Pretty URL fixmyglass.safelite.com/FixMyGlass/js/ServiceDetails?v=AM1hDJkorwKHzKxiyCOx0-rzqLN98EkbE-o2029Th0g1 IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 9c3246da83369de184c6eb0d4ad3f7f8 6c9695afbabd89b7c3c45649dcd0b885650c7a5d 9895a18a6a6ba6ee5c42d53b6681420ac3175f8ce8a780def92a67af1902c160 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	1.7 kB	2023-03-10	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-11-15 18:20:25 Times Seen2 Hash 6087265ffeef18cfb51c69904ebd5b1e 938ec54b619a91edf69b2f809555954ad95ca866 99118f54cbf1d3245adc2a0567a0f1d0b5a1711a63cca06c8996f724c53dc913 Loading...

	d.la1-c1-ia4.salesforceliveagent.com/chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D30000001H7EF&EmbeddedServiceConfig.configName=Sales_Central_Snap_in&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48	16 kB	2023-03-11	2023-03-11
Pretty URL d.la1-c1-ia4.salesforceliveagent.com/chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D30000001H7EF&EmbeddedServiceConfig.configName=Sales_Central_Snap_in&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48 IP 13.110.60.53 ASN #14340 SALESFORCE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 5bcc52819acf98571628beb9347aa549 5bcfb813083db429663e96248c363037792d70f8 4c1959b08768a6838692126772efc0f65c2820c805399774af6037408e7fad89 Loading...

	service.force.com/embeddedservice/5.0/client/invite.esw.min.js	19 kB	2023-03-07	2024-04-23
Pretty URL service.force.com/embeddedservice/5.0/client/invite.esw.min.js IP 161.71.0.166 ASN #14340 SALESFORCE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:26 Last Seen2024-04-23 22:10:55 Times Seen2872 Hash 8e73fccb65276ab65c2366bfac6b5862 984fa75ea1aab51188d087a7afd8f67c7103ff36 11b97392fe91256a463d66e0a68f1ed068dd3ba2200289fa89e0afb2b0558b12 Loading...

	siteintercept.qualtrics.com/dxjsmodule/11.6d6c5ef8794769da04fd.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=fixmyglass.safelite.com	63 kB	2023-03-08	2023-05-10
Pretty URL siteintercept.qualtrics.com/dxjsmodule/11.6d6c5ef8794769da04fd.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=fixmyglass.safelite.com IP 104.17.209.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:52 Last Seen2023-05-10 22:14:08 Times Seen2 Hash 27441729c7b7c4aad5744a87cf9a9b07 e01e945cd61c0dd22169d9425a5323e792f4da00 8bbd322d5b22764f29e7ff91003f0a7a25af17af76cbee3ff46e95a3d4d80b4f Loading...

	www.googleadservices.com/pagead/conversion/845361201/?random=1669500552308&cv=9&fst=1669500552308&num=1&npa=1&label=2ZVdCKzdyd0BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfixmy005%3Bord%3D1%3Bnum%3D6367672819210%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4	2.2 kB	2023-03-11	2023-03-11
Pretty URL www.googleadservices.com/pagead/conversion/845361201/?random=1669500552308&cv=9&fst=1669500552308&num=1&npa=1&label=2ZVdCKzdyd0BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfixmy005%3Bord%3D1%3Bnum%3D6367672819210%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 IP 142.250.74.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash c372b2412a977eeefdefd93053aa6b9c 8102272ec94d2bcf3183f3488a7d3f24615a7cf2 53de27beef8d8be9baf1e184f0ec06646fb1b298e529df761f75a23a0ca8c1a9 Loading...

	s.adroll.com/j/roundtrip.js	56 kB	2023-03-08	2023-03-11
Pretty URL s.adroll.com/j/roundtrip.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:55 Last Seen2023-03-11 23:47:21 Times Seen1 Hash 180f14486064cffef491cd1b7b69c069 2942556da45a72619f0b2e91bf5b8199d63a7224 08aae9a8ab692ff09afb7d64586796411846f542beb71cbac84652c841e3e4b3 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	364 B	2023-03-07	2023-03-11
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:56 Last Seen2023-03-11 20:58:54 Times Seen1 Hash ef21674317a7b9b92199fe861256c462 855c9ba4170982e65367a8e8df22aca2f7a9f368 f7e6eb41a754774ce02e05a0ea7a6a1f69a3546511376ac74b97eead5a8e0627 Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-08	2023-11-28
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-11-28 17:55:58 Times Seen32 Hash a6ef7927128284961f4cadd572969f09 57e21033749687e69de710a0be6d4244edf1fe51 d5c905d7ce4679b183eb11f7c6811682ddffbf0f037590360ae2b1a84a51ef1b Loading...

	www.googleadservices.com/pagead/conversion/845361201/?random=1669500552295&cv=9&fst=1669500552295&num=1&npa=1&label=pI2aCPTAv90BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dsafel0%3Bcat%3Dsafel000%3Bord%3D1%3Bnum%3D3860181539556%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4	2.2 kB	2023-03-11	2023-03-11
Pretty URL www.googleadservices.com/pagead/conversion/845361201/?random=1669500552295&cv=9&fst=1669500552295&num=1&npa=1&label=pI2aCPTAv90BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dsafel0%3Bcat%3Dsafel000%3Bord%3D1%3Bnum%3D3860181539556%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 4eda5dfd9ee8abe751b457af1663f8fe eac603a47d9cca0608e90e7fa16c7e63ce1ad0ea 723a10952dd2759ad268294df5c9d05243e59f568826927c440e1731cc7d9ce1 Loading...

	d3rr3d0n31t48m.cloudfront.net/widget/widget.js?v=90709db	187 kB	2023-03-08	2023-03-11
Pretty URL d3rr3d0n31t48m.cloudfront.net/widget/widget.js?v=90709db IP 143.204.55.112 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:55:55 Last Seen2023-03-11 23:52:33 Times Seen1 Hash 90709db38c119be3e361a85c6282afdb 89ad60e84da43e59e2894353cf4055d5336a0d5e b2b726792165ef1182e0c569ece2eb6ca67b692d9657fd68a2c5b773d52ba7c6 Loading...

	fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired	337 B	2023-03-07	2023-11-15
Pretty URL fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired IP 206.131.216.72 ASN #17339 SAFELITE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:56 Last Seen2023-11-15 18:20:25 Times Seen3 Hash f558de516bc7e2440f29fbb34792283a 569ecc31523f659a142e0f07d8e7788baba0d5c8 5a7fc53ac3a83e6263ace42e822ed43fd703fc256f32e77dbca53079db3d29f5 Loading...

	media.evolv.ai/asset-manager/releases/latest/webloader.min.js	78 kB	2023-03-10	2023-03-12
Pretty URL media.evolv.ai/asset-manager/releases/latest/webloader.min.js IP 54.230.111.89 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 11:36:16 Last Seen2023-03-12 20:05:31 Times Seen1 Hash 58c472037f62ec856a17bcd5d0c4e8cd 0630450285517480d49baef0ea0089d40d8cd486 79e60d16321565987ef70a76ca857b32f12b795a72532a72ddee703f16aba881 Loading...

	addshoppers.s3.amazonaws.com/5d484d7ed559304db178fbd5/5d518d5fe694aa0abf723018/A.js?_t=1660689297	15 kB	2023-03-07	2023-03-11
Pretty URL addshoppers.s3.amazonaws.com/5d484d7ed559304db178fbd5/5d518d5fe694aa0abf723018/A.js?_t=1660689297 IP 3.5.1.213 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:56 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 6b15dcfb17b569ec1b1c887f30e01066 296c69462623c5b7d39ea4a1430294d8b9b9f03e 16768c319ecd77cda49420c75fc6556bef658a943220419cf196e4330c9374cb Loading...

	shop.pe/widget/main/init/params?siteid=5d484d7ed559304db178fbd5&product=Welcome%20-%20Safelite%20AutoGlass%C2%AE&product_url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx&image=&price=&currency=undefined&rating=0&rating_count=0&review_count=0&stock_status=&description=&update_product=true&subcategory=&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&callback=AddShoppersWidget.load_widget&rand=61126&cookie=2%7C1%3A0%7C10%3A1669500553%7C15%3Aaddshoppers.com%7C44%3ANGQ4NWFhN2IyOGY1NDZiNTg1YmZkNGRhMjYyOWMxYmE%3D%7C11029f1406d9cca891bb2458e8fe6e3b577a28f35682a0665e110394a1e30a88&referer=	1.3 kB	2023-03-11	2023-03-11
Pretty URL shop.pe/widget/main/init/params?siteid=5d484d7ed559304db178fbd5&product=Welcome%20-%20Safelite%20AutoGlass%C2%AE&product_url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx&image=&price=&currency=undefined&rating=0&rating_count=0&review_count=0&stock_status=&description=&update_product=true&subcategory=&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&callback=AddShoppersWidget.load_widget&rand=61126&cookie=2%7C1%3A0%7C10%3A1669500553%7C15%3Aaddshoppers.com%7C44%3ANGQ4NWFhN2IyOGY1NDZiNTg1YmZkNGRhMjYyOWMxYmE%3D%7C11029f1406d9cca891bb2458e8fe6e3b577a28f35682a0665e110394a1e30a88&referer= IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 62c98df32b3283ba053aeb238bff455c 2f96402073b36ae551ca4dc667407b08c50ce92a 00af7f62390ef4c64d6c639bfe279017d2561d315a82ec727c573d3ce59a6ca5 Loading...

	dntcl.qualaroo.com/frame.html	250 B	2023-03-07	2023-04-05
Pretty URL dntcl.qualaroo.com/frame.html IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:35:56 Last Seen2023-04-05 02:02:36 Times Seen3 Hash 960b5f5eb86cb4d61535567770bb8d52 cf29905d9c473722f6862cdb79aa0a2e15387a32 516bfb73ed9db4c16e693b8d888a341e55418faef5a652ecb5376e94b6c18d4d Loading...

		Size	First Seen	Last Seen
	#1 Eval - 47e11fac4a7ca3c881fb91145f988880	14 kB	2023-03-07	2023-03-11
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 47e11fac4a7ca3c881fb91145f988880 4d78c65e84becbc56e9a3e57db67bd85a6539eb4 6b573b07abb9c6a4d854e606f6ab464182c0f81f1712c5c60c8342cf6a636da6 Loading...

	#2 Eval - 1481b52d83eb9aa3ef6e227a604ac0fe	118 B	2023-03-07	2024-02-28
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2024-02-28 17:35:28 Times Seen7 Hash 1481b52d83eb9aa3ef6e227a604ac0fe 070ed7bc7c90ce1176242f53680839b7573aeb75 ef40380994ee1e4144055c49155c6a5488b7788d92d7c2ae6d295bdd5d379e3c Loading...

	#3 Eval - 1b06df05b6c8136b52d89d8f744618f2	374 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2023-11-15 18:20:25 Times Seen3 Hash 1b06df05b6c8136b52d89d8f744618f2 f7058678408a5538cec6447aeb4576dbbc5c6f52 7a160e43f038e6d1dc7866f6cbce4d82d7b08be602ed3f7a6486e2ddc1df2156 Loading...

	#4 Eval - e92b66fad95a7f3a895e28a8ba874e34	368 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash e92b66fad95a7f3a895e28a8ba874e34 cc4dec361ff80260495760e51259bd378590f850 2f592af954ca81f2930686617046b65893922644a364a1cc5a79981babdf25bf Loading...

	#5 Eval - b54148861b76267dad528170876cfa47	370 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash b54148861b76267dad528170876cfa47 739f0594cd07e8f1c8daf3c548c97e9001c66409 a8d4fc3eb02d0f71933ce8015d7b542a0b7703a508bb084e7de004ea7e3bd9e6 Loading...

	#6 Eval - 913d41f1da4059c001f9bf06e665c830	370 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 913d41f1da4059c001f9bf06e665c830 9b63f2319a58e60302184c24ebf4733b2a9c3b91 448ab9f102368fc9b25d9ccf7b6676fd3eb1ea30138a49b8308e050f162fd174 Loading...

	#7 Eval - cf071e4cbcaf79b4b88e8246e4a78c64	370 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash cf071e4cbcaf79b4b88e8246e4a78c64 febd9bf8e9eba9502a94a4e415cfe53b9bd05cbf e8d8953751d4cf072c07540bc023607ebc2719b9b05bce847db466abef6dfd51 Loading...

	#8 Eval - 3e00aa001bd20238e98876552f040812	125 B	2023-03-11	2023-11-15
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-11-15 18:20:26 Times Seen2 Hash 3e00aa001bd20238e98876552f040812 c3ed657b5947f212d43ddbfcedcaea34b7f2c71b ebdcd7d7970470467d6aea3ac6c8d703d1ce8346c3d10b4b5983f6564849e9c5 Loading...

	#9 Eval - b1c3777f554a511ec457d78e3adc3a63	368 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash b1c3777f554a511ec457d78e3adc3a63 9685e540aaad593f96f77f25f97f8fbf384619d7 c94084b6a08a174ebfeb3ddbfe209498552379b4de4533d10bb552e3e615d61b Loading...

	#10 Eval - 725504b2361748fa72200c3432335d55	104 B	2023-03-11	2023-06-30
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-06-30 21:54:30 Times Seen4 Hash 725504b2361748fa72200c3432335d55 340e512dbff2610ef1faba06bed21ea203ce180f 1753e392e05aeaec24a11d36097e5134d696680514a389b9c92b050cd7fa099b Loading...

	#11 Eval - 36746cb145ed597030e8445d50dd1969	116 B	2023-03-07	2024-02-28
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2024-02-28 17:35:28 Times Seen7 Hash 36746cb145ed597030e8445d50dd1969 4acd859ff5eab3076eec3b38f6f08fea7e4f8d25 d4286e33bcc1149d08c517cb70da764f42763f609576a5a40b40a50ff29e5956 Loading...

	#12 Eval - 0672345e5e00bd4f9aa0d0c0467ce4b6	116 B	2023-03-07	2024-02-28
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2024-02-28 17:35:29 Times Seen7 Hash 0672345e5e00bd4f9aa0d0c0467ce4b6 f60c730a2510b21d94521e097fcd4d62e33bee1f 56bb4cbae36c2a24c14c79d9a22254b5853da8a71c47257cfe644e6e6fa7f92f Loading...

	#13 Eval - 34ddc91a0f8c2d44568a9595304219b4	350 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2023-11-15 18:20:26 Times Seen3 Hash 34ddc91a0f8c2d44568a9595304219b4 91d6489ed5ff4d0f580f58ddc1d369b004c1fdbc ef2a65bb64c406e68a3d615fe52296ee92b680a4253817dc8866467e5b74d914 Loading...

	#14 Eval - dd33f49cc3f2ad3fe6f462d8815e8142	9 B	2023-03-07	2024-04-24
Pretty Observations First Seen2023-03-07 12:06:18 Last Seen2024-04-24 21:24:28 Times Seen1305 Hash dd33f49cc3f2ad3fe6f462d8815e8142 ecceca25f405c8e7c954387d5e13223c4d92db34 c1507fa24f203c335ed99d9b017d38826a19f43f0cf01873bebce2a031cb2e72 Loading...

	#15 Eval - 849172a291bf27d72bc3d312bea98870	311 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 12:03:32 Last Seen2024-04-25 15:03:17 Times Seen2860 Hash 849172a291bf27d72bc3d312bea98870 a428bce2774cfb221ebef3a44ebe48042fe32a47 f23377476f3e798ff6e03a399b3a0f275a09b79afdfd766e87aae1e42787aa73 Loading...

	#16 Eval - bd15663388eaf32de7208ecfcae7edd0	198 B	2023-03-10	2023-11-15
Pretty Observations First Seen2023-03-10 11:36:17 Last Seen2023-11-15 18:20:26 Times Seen2 Hash bd15663388eaf32de7208ecfcae7edd0 00cefea2935c25e7e4d349913bdcb321fcacec50 c14003651b41f8890446adc6be011beb1f62e0c7cbe034eca6f3a543405201d8 Loading...

	#17 Eval - d95c6d8771f1546689e0d0b4a179598a	168 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2023-11-15 18:20:26 Times Seen3 Hash d95c6d8771f1546689e0d0b4a179598a 95096f7007ccd5c26c0765d0275cc6ac7992ad6f bcc177bc4cdaeb178caedfb82e41ddb96a31ea261296b9ad7478cd870eb32236 Loading...

	#18 Eval - ece969a9bb2789bccd6f5cde7056d8f9	218 B	2023-03-11	2023-11-15
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-11-15 18:20:26 Times Seen2 Hash ece969a9bb2789bccd6f5cde7056d8f9 3e66728116ed04aa5b02b23205da7bae2d396487 8e6a9375c3ee90fa1058af55b05b910dbc3c0f8584f2830e9a8f3d8cb1c5d09b Loading...

	#19 Eval - 89a4d98d53595714e642ed7d37d0c51e	105 B	2023-03-09	2024-02-06
Pretty Observations First Seen2023-03-09 21:12:06 Last Seen2024-02-06 23:03:43 Times Seen35 Hash 89a4d98d53595714e642ed7d37d0c51e 4f91e4eeec14fe43870d36c141caa5f40319e0b6 0dca13c3a31f2889acbad4e8d8f2b04147530a7d3856bef8c4121417b32d655d Loading...

	#20 Eval - 7b16167e366060906ea50bade2156f85	117 B	2023-03-07	2024-02-28
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2024-02-28 17:35:29 Times Seen7 Hash 7b16167e366060906ea50bade2156f85 ecbc2208916360f7d3c3b9625386a6382d9926bf 0460ce7bd0ee404ec8e69ac3856241080e129e6bd1fc416f6591ac5eadbe30eb Loading...

	#21 Eval - ca9c51eedab6a0ab58f0601decc94734	103 B	2023-03-09	2024-02-06
Pretty Observations First Seen2023-03-09 21:12:07 Last Seen2024-02-06 23:03:43 Times Seen35 Hash ca9c51eedab6a0ab58f0601decc94734 620aa44b3e91566b88d94f57616d735acfae27e1 7b4720489cf3fa18fbc24533732579d15dc7b926805466608c8ac17db88f95cf Loading...

	#22 Eval - b748a69ccfabcfbb0152e16f4d8e7869	414 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2023-11-15 18:20:26 Times Seen3 Hash b748a69ccfabcfbb0152e16f4d8e7869 1dd8990faa769ca3486c9111ba825c8a0e54171c 7e83642fb0279ac2fccb293ed722c6e02af02065938eda8ef6d32c691b420375 Loading...

	#23 Eval - 001da553893c73dd6dd51a4494960622	368 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 001da553893c73dd6dd51a4494960622 70780b9cd1091cb895de99db6811a6efef694a03 b9dcb755949f431c72f2d873a4c03a43e0ed096ff94a85f42c2136423dd5045d Loading...

	#24 Eval - ab04d21b41158b17cfdc2af836dc38ef	370 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash ab04d21b41158b17cfdc2af836dc38ef 935bc82631d18c6d1bcb5c8f2a2cabc24df80fb2 034a62e129ad4c32877bd79a5ef014dc2a5c18972e7dd477d0244127f806b457 Loading...

	#25 Eval - a98ce8602ca88d108b9e281f2f6b5b08	93 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2023-11-15 18:20:26 Times Seen3 Hash a98ce8602ca88d108b9e281f2f6b5b08 7577d59c8ff2415c3347fdb6a7aa4a63bbd7aae9 f070e5a4fe8bf9a5b25339913a7e08d676e084ace8c6feb0042fffba28301c96 Loading...

	#26 Eval - a8814170adf5d70d77f5b3bb8189acff	370 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash a8814170adf5d70d77f5b3bb8189acff e5c0f4d252a63fbe74e20e8492690112e7e933ae 00bbe8e40ec1ac92667088963f65c336eb78dae5cb8022fd6374b60ef6cabe05 Loading...

	#27 Eval - 2db02a82530e893cd49cb96faa537dd9	1.8 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 2db02a82530e893cd49cb96faa537dd9 c8218028d93d39bab6c906c3244e932649ef5dde 8b6116e78a64a1f54689bb2cbc11790f8adf98c6873c1fc72ac39fb91baec368 Loading...

	#28 Eval - 81ea202e73b36e1133664853b8156650	103 B	2023-03-09	2024-02-06
Pretty Observations First Seen2023-03-09 21:12:07 Last Seen2024-02-06 23:03:43 Times Seen35 Hash 81ea202e73b36e1133664853b8156650 24524ad65d84631e20c89adf149388f1978b41d0 da565caffa5bc534a2811ff58253df876b317bc419bbd5117847ae9881cfb05c Loading...

	#29 Eval - 3ecdc3f55b918b79d12916786fd3996f	88 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2023-11-15 18:20:26 Times Seen3 Hash 3ecdc3f55b918b79d12916786fd3996f 71fb705137bbe6457c5fa6069c08f56086e7842a aef371b0b3e93664cce30e112b3a66e38319f26d7ba36a59e7d8281ef504809f Loading...

	#30 Eval - 455343adcebf279b4d26c6a03de20555	131 B	2023-03-11	2023-11-15
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-11-15 18:20:26 Times Seen2 Hash 455343adcebf279b4d26c6a03de20555 442fc7c719bae59720dd3fae1763d5381e9124a4 9f4e9e3e7f1d61f39fe0f495dc29c9721dfb6fca338c79227bc35d9a7170828d Loading...

	#31 Eval - 1a5bfb414f9001daa8a61f043d6d138d	96 B	2023-03-10	2023-11-15
Pretty Observations First Seen2023-03-10 11:36:17 Last Seen2023-11-15 18:20:26 Times Seen2 Hash 1a5bfb414f9001daa8a61f043d6d138d a10c01e3c256601764d34d97d5d90b3aa378853c f7738caa19308bb956e20fed23a4051309ab0f00ee2b986a4a51104c7dc118c9 Loading...

	#32 Eval - 8e0edbed00e84be4cf849be715ba276d	64 B	2023-03-10	2023-11-15
Pretty Observations First Seen2023-03-10 11:36:17 Last Seen2023-11-15 18:20:26 Times Seen2 Hash 8e0edbed00e84be4cf849be715ba276d e956fad0b009a533c90b50a7743e7e67c5f20c41 730f24ceebe4954017e1b681bd5157f384cca2711e1c823287b8a048f3b0c3cb Loading...

	#33 Eval - b912d46ebe0ab3385a2bb5c68988b7f6	642 B	2023-03-10	2023-11-15
Pretty Observations First Seen2023-03-10 11:36:17 Last Seen2023-11-15 18:20:25 Times Seen2 Hash b912d46ebe0ab3385a2bb5c68988b7f6 bae729c251a4e748ec1bf1251c5a7df3cafc4a21 ef1e83c766ffb44e77d3346ad2c56b4675c46a6000f33edc3bcfd17cc868d7e8 Loading...

	#34 Eval - a1fc9d233912a5ff1706c9ec4fe27cc9	86 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 20:58:54 Last Seen2023-03-11 20:58:54 Times Seen1 Hash a1fc9d233912a5ff1706c9ec4fe27cc9 ba244c1a8301695c5364d2004ca5962f5bde95ed c7b64634429e4f57e7e502bba5a15433e97c570d57590c95f03a7ca8c1d83bbc Loading...

	#35 Eval - 1ba83f4d100af19d0bb8706749f6fd82	41 B	2023-03-07	2023-11-15
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2023-11-15 18:20:26 Times Seen3 Hash 1ba83f4d100af19d0bb8706749f6fd82 2bbbd56ac4fdbce654e06bd5c315f07adca83426 df38b244f093de2e8480d7b2597a689e548ddbc105be288efb3ac2ecbc87e7f4 Loading...

		Size	First Seen	Last Seen
	#1 Write - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 16:12:23 Times Seen37066466 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	#2 Write - 86b11cad9bf95193431b8e92194aba4d	295 B	2023-03-07	2023-03-11
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2023-03-11 20:58:54 Times Seen1 Hash 86b11cad9bf95193431b8e92194aba4d 40466d918dfe8f4ed0e7d147acd2cd0aee26d416 fe0ceb32539792cb6a16691ba8098241eb531a7d500c987bd80b769196c42d53 Loading...

	#3 Write - 9751632d82a775aba734ae2ae72a4ec8	217 B	2023-03-07	2023-03-11
Pretty Observations First Seen2023-03-07 14:35:56 Last Seen2023-03-11 20:58:55 Times Seen1 Hash 9751632d82a775aba734ae2ae72a4ec8 fc57e3d19360e9c8ef397249a4f6e2dfff2a69a5 4671e9a5d2176dea9ab3062fd93fca1bf064fcd99f5208ef9a32d4a2cb6609ee Loading...

	#4 Write - 9e1dd4eacd36b807fd4d4ca2bc411506	294 B	2023-03-10	2023-03-11
Pretty Observations First Seen2023-03-10 11:36:17 Last Seen2023-03-11 20:58:55 Times Seen1 Hash 9e1dd4eacd36b807fd4d4ca2bc411506 373087b054f9a8d1f621d85fedbb39faddc4a33b 1b9337375cf92488df06117b4d64806e5216c098b2d58425b0d702379c2f7144 Loading...

	#5 Write - ce168c6afac2df385c30f3e0ba98dd24	217 B	2023-03-10	2023-03-11
Pretty Observations First Seen2023-03-10 11:36:17 Last Seen2023-03-11 20:58:55 Times Seen1 Hash ce168c6afac2df385c30f3e0ba98dd24 df440a80a17e1b35db45e539199bc4c4b18b6c45 11ef1b003c5fbddf158d37ef705e16472af4dbf7adf498c6f873ea366505d795 Loading...

HTTP Transactions (228)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7386
Expires: Sun, 27 Nov 2022 00:12:14 GMT
Date: Sat, 26 Nov 2022 22:09:08 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3171
Cache-Control: max-age=134091
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:08 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 11:23:59 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8236
Expires: Sun, 27 Nov 2022 00:26:24 GMT
Date: Sat, 26 Nov 2022 22:09:08 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 21:19:16 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2992
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Xi0yQfO5V2Mx58yrfIjsvdOYWKZY/m+NfpjnRi4v2WLPAXcIGwNRHaw/lMTU781j300q9wMZEOI=
x-amz-request-id: HCHZJDVZ6JJVQDAQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 21:41:22 GMT
age: 1666
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:09:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.usertrust.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.usertrust.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
f0e92829d3664568a24ad441945a6b46
b203f07236ea59b75f89021e7f9affe8d392c67f
d7b2270b605a875fe2046332a203b5d26135fef5feefb2337be6c5b0e9dd250d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:09:09 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 24 Nov 2022 17:04:06 GMT
Expires: Thu, 01 Dec 2022 17:04:05 GMT
Etag: "b203f07236ea59b75f89021e7f9affe8d392c67f"
Cache-Control: max-age=413095,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7705f2600afc0b02-OSL

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 21:11:12 GMT
cache-control: public,max-age=3600
age: 3477
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1627
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:09 GMT
Last-Modified: Sat, 26 Nov 2022 21:42:02 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

52.39.62.124

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.39.62.124:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UYXE5mm2ZENGlq8EemI+pQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IQtwjBodrhRZBFtrzChG8DFChdg=

fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired

206.131.216.72

200 OK

26 kB

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1050), with CRLF, LF line terminators
Size
26 kB (25941 bytes)
Hash
560f1d1f20f55dbf6a2371e1bfb11fa3
0e489c909af6f23df2a2000aea324ce88d23ac49
ff2a52feaa90d2c9d645e6e23050eb2a225735dbb7c25612e8a72d8012681c38

HTTP Headers

GET /FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: sid=6e402e7b-9951-4608-9713-d0b7fc246530; domain=safelite.com; expires=Sat, 26-Nov-2022 22:39:10 GMT; path=/; secure
dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; domain=safelite.com; expires=Sun, 26-Nov-2023 22:09:10 GMT; path=/; secure; SameSite=None
X-UA-Compatible: IE=edge
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Server-Timing: dtRpid;desc="-1140599470"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 25941

fixmyglass.safelite.com/ruxitagentjs_A2NVfjqru_10219210719121502.js

206.131.216.72

200 OK

64 kB

URL HTTP/1.1
fixmyglass.safelite.com/ruxitagentjs_A2NVfjqru_10219210719121502.js
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
ASCII text, with very long lines (2006)
Size
64 kB (64125 bytes)
Hash
104bf04d1b43ba74c03a216d863875ee
2b979716257457d349c4328f738fea6d32984c78
cc006f7b04493ae9df802eca5169091a524d0ad4f68d318b6589d5911adb2cd6

HTTP Headers

GET /ruxitagentjs_A2NVfjqru_10219210719121502.js HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public, max-age=31536000, immutable
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 26 Nov 2023 22:09:10 GMT
Last-Modified: Wed, 03 Mar 2010 07:01:40 GMT
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 64125

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
473b15d5669c889f25c8de6e9a7331e3
8c3a021d3c562f7dc4d831849bc908309dafa55a
aaa404b6df2ef77214ce41e4f508ace47ba27363c1cc7a08ff9036071c490b3a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5888
Cache-Control: max-age=127079
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:10 GMT
Etag: "6381c4ee-1d7"
Expires: Mon, 28 Nov 2022 09:27:09 GMT
Last-Modified: Sat, 26 Nov 2022 07:49:02 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

fixmyglass.safelite.com/Shared/js/jquery?v=ZhOIA94bAT8aDo-tLET59Zp9le8AA7GI8bUaayI3oJM1

206.131.216.72

200 OK

38 kB

URL HTTP/1.1
fixmyglass.safelite.com/Shared/js/jquery?v=ZhOIA94bAT8aDo-tLET59Zp9le8AA7GI8bUaayI3oJM1
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
ASCII text, with very long lines (65536), with no line terminators
Size
38 kB (37939 bytes)
Hash
4869a2aa29d4e65da63033daa99481ef
bc3f027561379698a07a59d06f82306021ee142e
f8562a0289b9cff26b16ca550ec7b1efd5bc473277bae97942bc68bb8456d7de

HTTP Headers

GET /Shared/js/jquery?v=ZhOIA94bAT8aDo-tLET59Zp9le8AA7GI8bUaayI3oJM1 HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 26 Nov 2023 22:09:10 GMT
Last-Modified: Sat, 26 Nov 2022 22:09:09 GMT
ETag: "1669500550:dtagent10219210719121502T2sP"
Vary: User-Agent,Accept-Encoding
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="-1874327592"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 37939

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16862
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:09:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16862
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:09:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16862
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:09:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16862
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:09:10 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg

34.120.237.76

200 OK

3.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.5 kB (3502 bytes)
Hash
a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 53744
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9914 bytes)
Hash
3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7cJmhEGkKqLUQUMqGuYtWBeu_1nlEUAxgTMy4ABekPJYrJP95wE6Jg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 09:12:04 GMT
age: 46627
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7025 bytes)
Hash
7e0c5064718601e80b7bfc931120ff70
741e5e48c4fb170efee9b611be5638d999a09bd2
d0b1537f43277e7f59152e6272d4f3888ab4618fa7fe0e4b24e2f851dbf0f4cd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F30fddcf4-c88b-41c3-90f7-a4530639de73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7025
x-amzn-requestid: 2c9cd3bc-80d4-4578-a0aa-4f1ff7f19d30
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVNYGwaIAMFU8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63813588-0c66a293144f894f001ae0cf;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:37:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: r2feThcq6D5u1ptiBnSuA5ZC00_W8moa4pb6xSxxeIEMbgoPtQdUyQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:48:38 GMT
age: 1233
etag: "741e5e48c4fb170efee9b611be5638d999a09bd2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezHvyK3va4SioabOjSittTiLQRs_Q8k4TPxkiGp_svtZ8omDPTUN-A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:04:28 GMT
age: 61483
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.0 kB (9049 bytes)
Hash
c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zPOAhjKprWtHo_A2Fng2sgvXdbj3rF0BUkw7vCY1_gTPDebH62yTxw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:43:36 GMT
age: 1535
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15818 bytes)
Hash
17ebe470d040a6ea8c57e9b9d4f4e828
1ac7a410cd4f3709f476c776dd5646dd982dcfa8
d65114b68fcc12344c6df7bf294718b79822fa9782d3bd54ca044b66f82052b1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1de44df6-bdc7-487f-a2a0-b42d26be2420.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15818
x-amzn-requestid: a6570859-3b03-492e-9f84-e25b01223da2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLXrUF3bIAMF8CA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381397b-379b1bcf2ac0715835e10e48;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:54:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: HgiyaodE2vJx5JL8QfOiTersSAgAwq74gtsPkpHUhnQ3In2vZ-3rbQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 22:33:09 GMT
etag: "1ac7a410cd4f3709f476c776dd5646dd982dcfa8"
content-type: image/jpeg
age: 84962
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fixmyglass.safelite.com/FixMyGlass/css/ServiceDetails-2020Styling?v=8dDewtM1HLOe61XT860cx22qiyDPRCwXoFSxdgMLgiU1

206.131.216.72

200 OK

6.2 kB

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/css/ServiceDetails-2020Styling?v=8dDewtM1HLOe61XT860cx22qiyDPRCwXoFSxdgMLgiU1
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
ASCII text, with very long lines (24947), with no line terminators
Size
6.2 kB (6207 bytes)
Hash
cf5da4932414632c811b1729730743e8
dc7e89236e1c97cd9f0dbdbc1d0c0eda452a1df5
6a24b2a06f2af9476d77ba4ef51e68fa4115ac91bd685fccd930bed9652994c3

HTTP Headers

GET /FixMyGlass/css/ServiceDetails-2020Styling?v=8dDewtM1HLOe61XT860cx22qiyDPRCwXoFSxdgMLgiU1 HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/css; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 26 Nov 2023 22:09:11 GMT
Last-Modified: Sat, 26 Nov 2022 22:09:10 GMT
ETag: "1669500551:dtagent10219210719121502T2sP"
Vary: User-Agent,Accept-Encoding
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="1715842405"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 6207

fixmyglass.safelite.com/Shared/css/OmniCookie-2020Styling?v=WpDYPnnsQTdYc0-M9NFRAfK4lc_TBy5YXYi8n25Hnfw1

206.131.216.72

200 OK

333 B

URL HTTP/1.1
fixmyglass.safelite.com/Shared/css/OmniCookie-2020Styling?v=WpDYPnnsQTdYc0-M9NFRAfK4lc_TBy5YXYi8n25Hnfw1
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
ASCII text, with very long lines (465), with no line terminators
Size
333 B (333 bytes)
Hash
7f39de70cb3fb8ac03f3c5bf24340e85
f119e967db8a1a6d69b9543388ca784dbaa11fc9
9d0004e193ce3594beb89fbc950d232e835ece1dba30ff29163c3349f2aedb5d

HTTP Headers

GET /Shared/css/OmniCookie-2020Styling?v=WpDYPnnsQTdYc0-M9NFRAfK4lc_TBy5YXYi8n25Hnfw1 HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/css; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 26 Nov 2023 22:09:11 GMT
Last-Modified: Sat, 26 Nov 2022 22:09:10 GMT
ETag: "1669500551:dtagent10219210719121502T2sP"
Vary: User-Agent,Accept-Encoding
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="811059142"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 333

fixmyglass.safelite.com/Shared/js/modernizr?v=pMEfrhyKIGK2k7Vn4v0N2P83GeAMcmZHr0587V19V_c1

206.131.216.72

200 OK

5.5 kB

URL HTTP/1.1
fixmyglass.safelite.com/Shared/js/modernizr?v=pMEfrhyKIGK2k7Vn4v0N2P83GeAMcmZHr0587V19V_c1
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
HTML document text\012- HTML document, ASCII text, with very long lines (10349), with no line terminators
Size
5.5 kB (5453 bytes)
Hash
c426dc910c4c3e5fc7d4c29869e5345d
b84ad7c55dbe1792297a07302241933ed736a8dc
b65c7e75a49d598ba3875a3479db1f0f2d421ae4c121e45abb4fb67e51718148

HTTP Headers

GET /Shared/js/modernizr?v=pMEfrhyKIGK2k7Vn4v0N2P83GeAMcmZHr0587V19V_c1 HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 26 Nov 2023 22:09:11 GMT
Last-Modified: Sat, 26 Nov 2022 22:09:10 GMT
ETag: "1669500551:dtagent10219210719121502T2sP"
Vary: User-Agent,Accept-Encoding
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="1508440287"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 5453

fixmyglass.safelite.com/FixMyGlass/css/WebFontLoad.css

206.131.216.72

200 OK

742 B

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/css/WebFontLoad.css
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
ASCII text, with CRLF line terminators
Size
742 B (742 bytes)
Hash
c8844b91f9766f0ea31f43114019499c
f969f585d8cbfbb502263206e1aadb6c94a106d0
b1598f3ded09199c65a811d931a8acb55b8c21e343ecd1e1a9971428ae30b98c

HTTP Headers

GET /FixMyGlass/css/WebFontLoad.css HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Content-Type: text/css
Content-Encoding: gzip
Last-Modified: Tue, 15 Nov 2022 20:15:46 GMT
Accept-Ranges: bytes
ETag: "058db2ff9d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="1831702706"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 742

fixmyglass.safelite.com/FixMyGlass/js/core?v=BXYiruYiJyntEu7pSc9LYTHOA0fx1kNuAdsVrtJDOeE1

206.131.216.72

200 OK

165 kB

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/js/core?v=BXYiruYiJyntEu7pSc9LYTHOA0fx1kNuAdsVrtJDOeE1
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
ASCII text, with very long lines (65536), with no line terminators
Size
165 kB (164874 bytes)
Hash
b101700b0b3bb398836b02665b81ae09
95283ae4797ef0f34d0ecb6dca50b2b94d817423
e4b5a771ebde5fc4cca55aa7a342315f5bb5a0c5cbaec5aa959cccfab15782f7

HTTP Headers

GET /FixMyGlass/js/core?v=BXYiruYiJyntEu7pSc9LYTHOA0fx1kNuAdsVrtJDOeE1 HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public
Transfer-Encoding: chunked
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 26 Nov 2023 22:09:11 GMT
Last-Modified: Sat, 26 Nov 2022 22:09:10 GMT
ETag: "1669500551:dtagent10219210719121502T2sP"
Vary: User-Agent,Accept-Encoding
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="-184114400"
Date: Sat, 26 Nov 2022 22:09:10 GMT

fixmyglass.safelite.com/FixMyGlass/js/ServiceDetails?v=AM1hDJkorwKHzKxiyCOx0-rzqLN98EkbE-o2029Th0g1

206.131.216.72

200 OK

6.8 kB

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/js/ServiceDetails?v=AM1hDJkorwKHzKxiyCOx0-rzqLN98EkbE-o2029Th0g1
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
ASCII text, with very long lines (17788), with no line terminators
Size
6.8 kB (6799 bytes)
Hash
8ebe941664bc103ab5826b2938599605
11d8837143f655005ff2ed8c3c73088cebebfffd
6daad0e7c32b08db0819e9dbdb776bb5c12e15d491d38f5ad07661d945eba739

HTTP Headers

GET /FixMyGlass/js/ServiceDetails?v=AM1hDJkorwKHzKxiyCOx0-rzqLN98EkbE-o2029Th0g1 HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 26 Nov 2023 22:09:11 GMT
Last-Modified: Sat, 26 Nov 2022 22:09:10 GMT
ETag: "1669500551:dtagent10219210719121502T2sP"
Vary: User-Agent,Accept-Encoding
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="777260362"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 6799

fixmyglass.safelite.com/Shared/js/OmniExperimentSearchAndCookie?v=C4k_BQwnpGkx_zHggboFQ2WN94bRBiNWDlidH7bubUQ1

206.131.216.72

200 OK

8.0 kB

URL HTTP/1.1
fixmyglass.safelite.com/Shared/js/OmniExperimentSearchAndCookie?v=C4k_BQwnpGkx_zHggboFQ2WN94bRBiNWDlidH7bubUQ1
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
ASCII text, with very long lines (22418), with no line terminators
Size
8.0 kB (7990 bytes)
Hash
dfb8fdd7fca72a14049c80a27246e99e
b4d2d8d90bb4485ee9b6abe8f291d2fc3dbbb8cf
0e7f28b0d951f0783d399a0ffe71f2e9724089b94562b39696a9b57d401c54c3

HTTP Headers

GET /Shared/js/OmniExperimentSearchAndCookie?v=C4k_BQwnpGkx_zHggboFQ2WN94bRBiNWDlidH7bubUQ1 HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 26 Nov 2023 22:09:11 GMT
Last-Modified: Sat, 26 Nov 2022 22:09:10 GMT
ETag: "1669500551:dtagent10219210719121502T2sP"
Vary: User-Agent,Accept-Encoding
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="740394732"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 7990

fixmyglass.safelite.com/FixMyGlass/css/WebChat?v=DJcNONWaFdmnbgniZvio3T73SqBSZnOcQwrm-F-FCXc1

206.131.216.72

200 OK

3.5 kB

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/css/WebChat?v=DJcNONWaFdmnbgniZvio3T73SqBSZnOcQwrm-F-FCXc1
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
ASCII text, with very long lines (19703), with no line terminators
Size
3.5 kB (3469 bytes)
Hash
a10d03cfa6d86e580a0579567613e508
104821cb0d6eb15dca21322024b9b0eb905ecd9d
2cdba6e9ac7cb171f1bcae009f27c6695736465efcbf6e58ca3e895f43581a05

HTTP Headers

GET /FixMyGlass/css/WebChat?v=DJcNONWaFdmnbgniZvio3T73SqBSZnOcQwrm-F-FCXc1 HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/css; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 26 Nov 2023 22:09:11 GMT
Last-Modified: Sat, 26 Nov 2022 22:09:10 GMT
ETag: "1669500551:dtagent10219210719121502T2sP"
Vary: User-Agent,Accept-Encoding
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="-1318038789"
Date: Sat, 26 Nov 2022 22:09:11 GMT
Content-Length: 3469

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
b3a183baee4a787cee5a78dcc8be9941
9cb29ee1dc18708d53800fdbe51f4aa9984273ca
3697174365954a6f1a9b97820ceaca6f65bebc122ccbb48c19bb03f3e9fec4aa

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4152
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:11 GMT
Last-Modified: Sat, 26 Nov 2022 20:59:59 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

fixmyglass.safelite.com/External/js/MotionPointLinkCode?v=SYDxgRYxI6pJvpmko9blkA7l8l9EHVWTDThW3jvXA4c1

206.131.216.72

200 OK

859 B

URL HTTP/1.1
fixmyglass.safelite.com/External/js/MotionPointLinkCode?v=SYDxgRYxI6pJvpmko9blkA7l8l9EHVWTDThW3jvXA4c1
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
ASCII text, with very long lines (1476), with no line terminators
Size
859 B (859 bytes)
Hash
d6d4876a7f9f2b7190128a9ac287e5ee
829830630c94fe96f4394c74a7b6db93c7964762
a2f027a5a5f01136bc7db3c271360315ecb1343e3be2fc145515cd2da6805aa9

HTTP Headers

GET /External/js/MotionPointLinkCode?v=SYDxgRYxI6pJvpmko9blkA7l8l9EHVWTDThW3jvXA4c1 HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/javascript; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 26 Nov 2023 22:09:11 GMT
Last-Modified: Sat, 26 Nov 2022 22:09:10 GMT
ETag: "1669500551:dtagent10219210719121502T2sP"
Vary: User-Agent,Accept-Encoding
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="-1266101768"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 859

fixmyglass.safelite.com/FixMyGlass/css/site-2020Styling?v=N8C7Ff_1WLHNBeh1wziv-MC9BVnz8FcZCSi9gsKaiDw1

206.131.216.72

200 OK

33 kB

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/css/site-2020Styling?v=N8C7Ff_1WLHNBeh1wziv-MC9BVnz8FcZCSi9gsKaiDw1
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
Unicode text, UTF-8 text, with very long lines (65019), with no line terminators
Size
33 kB (33373 bytes)
Hash
002f3ab73f83623dba8088ea619a84f1
b26342fde65b90200ba9da453a226e24d7814ce4
e5b255f2cfab4cced2bb5216ab81b62fd480ac851ff8dc7138300fb7dcbd4f3e

HTTP Headers

GET /FixMyGlass/css/site-2020Styling?v=N8C7Ff_1WLHNBeh1wziv-MC9BVnz8FcZCSi9gsKaiDw1 HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: public
Content-Type: text/css; charset=utf-8
Content-Encoding: gzip
Expires: Sun, 26 Nov 2023 22:09:11 GMT
Last-Modified: Sat, 26 Nov 2022 22:09:10 GMT
ETag: "1669500551:dtagent10219210719121502T2sP"
Vary: User-Agent,Accept-Encoding
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="-639838639"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 33373

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fixmyglass.safelite.com/FixMyGlass/images/stars.svg

206.131.216.72

200 OK

1.1 kB

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/images/stars.svg
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
1.1 kB (1143 bytes)
Hash
e3150d2f1ff1972f9c3bd862caff6fb8
bfc21bf7b4dbdfd2b677fbb644d8d1202312e13c
bd0f0c8a9e5d63c52232cc509513de47a43499574a625bcbcfd9759d3e72d22e

HTTP Headers

GET /FixMyGlass/images/stars.svg HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/svg+xml
Content-Encoding: gzip
Last-Modified: Tue, 15 Nov 2022 20:15:48 GMT
Accept-Ranges: bytes
ETag: "032bec2ff9d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="-1259247572"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 1143

fixmyglass.safelite.com/FixMyGlass/images/drop-and-go-drop-and-go.jpg

206.131.216.72

200 OK

4.7 kB

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/images/drop-and-go-drop-and-go.jpg
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 105x48, components 3\012- data
Size
4.7 kB (4664 bytes)
Hash
06bf0519f42cb26a44c06c5058a1040a
32717df9fa741d8203727c49fa8721321f002b08
e6f5d6835afd1b7ee99e92c9f14d04afaf52676ea5a3a298c2e85384b8e7a9da

HTTP Headers

GET /FixMyGlass/images/drop-and-go-drop-and-go.jpg HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/jpeg
Last-Modified: Tue, 15 Nov 2022 20:15:48 GMT
Accept-Ranges: bytes
ETag: "032bec2ff9d81:0"
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="1583425984"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 4664

fixmyglass.safelite.com/Shared/images/WaitingModal/windshield.png

206.131.216.72

200 OK

725 B

URL HTTP/1.1
fixmyglass.safelite.com/Shared/images/WaitingModal/windshield.png
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
PNG image data, 43 x 27, 8-bit colormap, non-interlaced\012- data
Size
725 B (725 bytes)
Hash
5fa65783a0bd37d054c27f95585a6e14
6995078f439486ecae1adf7884a77fa39fc77bca
04a3e7970115f6fee7adc041466abbc9f5e14271e93a5fdde2d67d076ccabbfb

HTTP Headers

GET /Shared/images/WaitingModal/windshield.png HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/png
Last-Modified: Tue, 15 Nov 2022 20:16:22 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0"
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="52656576"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 725

fixmyglass.safelite.com/FixMyGlass/images/insurance-3-x.jpg

206.131.216.72

200 OK

3.2 kB

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/images/insurance-3-x.jpg
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 64x66, components 3\012- data
Size
3.2 kB (3193 bytes)
Hash
d9a344648a6fdc6d2a47325d9a3d8d36
31bea16c8521361efc3f341bf455a2eef926fa26
f4dcbb66888aa150fb54d67c75f73e8b9059ecdb9a77d449c8017472554a1ef3

HTTP Headers

GET /FixMyGlass/images/insurance-3-x.jpg HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/jpeg
Last-Modified: Tue, 15 Nov 2022 20:15:48 GMT
Accept-Ranges: bytes
ETag: "032bec2ff9d81:0"
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="-182594587"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 3193

fixmyglass.safelite.com/FixMyGlass/images/cityscape@1x.jpg

206.131.216.72

200 OK

12 kB

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/images/cityscape@1x.jpg
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 770x90, components 3\012- data
Size
12 kB (12058 bytes)
Hash
7a1a527a9502f5cd8f378e00c6c442e8
08c33aa7bd62f01425c9604c43fd27cf723da58e
9354f37d45ff6bb0ce95646f746bf47ee761007312eed371091bf2818749b08d

HTTP Headers

GET /FixMyGlass/images/cityscape@1x.jpg HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/jpeg
Last-Modified: Tue, 15 Nov 2022 20:15:48 GMT
Accept-Ranges: bytes
ETag: "032bec2ff9d81:0"
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="1869627953"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 12058

safelite.my.salesforce.com/embeddedservice/5.0/esw.min.js

13.109.191.1

200 OK

8.3 kB

URL HTTP/1.1
safelite.my.salesforce.com/embeddedservice/5.0/esw.min.js
IP
13.109.191.1:0
ASN
#14340 SALESFORCE

File type
C source, ASCII text, with very long lines (754)
Size
8.3 kB (8312 bytes)
Hash
48906125fd0a44d93db29c9317444dd3
3ce153f384a8c5dfb8498001b719e08275c53d3c
8560ce7af2a04e1a9b3663839733408bb8b5ea701a9daf705c0e53d383b50762

HTTP Headers

GET /embeddedservice/5.0/esw.min.js HTTP/1.1
Host: safelite.my.salesforce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:09:11 GMT
Set-Cookie: CookieConsentPolicy=0:1; path=/; expires=Sun, 26-Nov-2023 22:09:11 GMT; Max-Age=31536000
LSKey-c$CookieConsentPolicy=0:1; path=/; expires=Sun, 26-Nov-2023 22:09:11 GMT; Max-Age=31536000
BrowserId=9LALN23WEe2RuI9z10ZJxw; domain=.salesforce.com; path=/; expires=Sun, 26-Nov-2023 22:09:11 GMT; Max-Age=31536000
BrowserId_sec=9LALN23WEe2RuI9z10ZJxw; domain=.salesforce.com; path=/; expires=Sun, 26-Nov-2023 22:09:11 GMT; Max-Age=31536000; secure; SameSite=None
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sun, 27 Nov 2022 22:09:11 GMT
Last-Modified: Thu, 06 Oct 2022 23:36:44 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtm.js?id=GTM-52PWCG

142.250.74.168

200 OK

105 kB

URL HTTP/2
www.googletagmanager.com/gtm.js?id=GTM-52PWCG
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (46234)
Size
105 kB (104960 bytes)
Hash
2e976def4e6ad3907969b8f6139daf83
4b9beef53c42767b624e4b23b3183517df66552a
36c91ccea2ab8f1df00b576a9db182e204bbcf14dafa507bc7c60ffd17e5c03b

HTTP Headers

GET /gtm.js?id=GTM-52PWCG HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 22:09:11 GMT
expires: Sat, 26 Nov 2022 22:09:11 GMT
cache-control: private, max-age=900
last-modified: Sat, 26 Nov 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 104960
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2

216.58.207.195

200 OK

11 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11016, version 1.0\012- data
Size
11 kB (11016 bytes)
Hash
15fa3062f8929bd3b05fdca5259db412
6ff06a34f68ad0324ddec1bbe4d453c959178b36
5d1bc9b443f3f81fa4b4ad4634c1bb9702194c1898e3a9de0ab5e2cdc0e9f479

HTTP Headers

GET /s/roboto/v20/KFOmCnqEu92Fr1Mu4mxKKTU1Kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11016
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:44:01 GMT
expires: Fri, 24 Nov 2023 16:44:01 GMT
cache-control: public, max-age=31536000
age: 192310
last-modified: Wed, 24 Jul 2019 01:18:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fixmyglass.safelite.com/Shared/fonts/safelite-ico.woff

206.131.216.72

200 OK

3.6 kB

URL HTTP/1.1
fixmyglass.safelite.com/Shared/fonts/safelite-ico.woff
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
Web Open Font Format, CFF, length 3592, version 1.0\012- data
Size
3.6 kB (3592 bytes)
Hash
1543cca2f7d462884d7988e8909c8372
62ac05201a8dfa3b21b842af64bba96c2761dfb6
25e33cc38319774e76fc535500ea2b3d561777b6fdecdacb55016d32d61398af

HTTP Headers

GET /Shared/fonts/safelite-ico.woff HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/css/site-2020Styling?v=N8C7Ff_1WLHNBeh1wziv-MC9BVnz8FcZCSi9gsKaiDw1
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Content-Type: application/font-woff
Last-Modified: Tue, 15 Nov 2022 20:16:21 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0:dtagent10219210719121502T2sP"
Vary: Origin
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Access-Control-Allow-Origin: *
Server-Timing: dtRpid;desc="1473660115"
Date: Sat, 26 Nov 2022 22:09:11 GMT
Content-Length: 3592

fixmyglass.safelite.com/Shared/images/safelite-logo-stacked.svg

206.131.216.72

200 OK

2.9 kB

URL HTTP/1.1
fixmyglass.safelite.com/Shared/images/safelite-logo-stacked.svg
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2387), with CRLF line terminators
Size
2.9 kB (2876 bytes)
Hash
03c96c483d0de6737e1c5ff9b6100bb4
86275cb8bce2d57cae5643553bedbda9e74a92ac
99742dd91d9be33075379ed92ccb576287b9e271cb5eb65d68ab226eea63bdf9

HTTP Headers

GET /Shared/images/safelite-logo-stacked.svg HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/svg+xml
Content-Encoding: gzip
Last-Modified: Tue, 15 Nov 2022 20:16:22 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="-1953017119"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 2876

fixmyglass.safelite.com/Shared/images/Wipers_rain_Loading.gif

206.131.216.72

200 OK

11 kB

URL HTTP/1.1
fixmyglass.safelite.com/Shared/images/Wipers_rain_Loading.gif
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
GIF image data, version 89a, 122 x 122\012- data
Size
11 kB (10588 bytes)
Hash
eb19a12fb2c05b4e308b4263c2bfa728
71db6226d2adcdeba299424bf50f32a058e303ca
bf81573f0fed21c190d6d37c24322c3180a5d860d012969488b549989f98d695

HTTP Headers

GET /Shared/images/Wipers_rain_Loading.gif HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/gif
Last-Modified: Tue, 15 Nov 2022 20:16:22 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0"
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="1795540927"
Date: Sat, 26 Nov 2022 22:09:11 GMT
Content-Length: 10588

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2

216.58.207.195

200 OK

11 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11056, version 1.0\012- data
Size
11 kB (11056 bytes)
Hash
07db243db21ed0a6b4ff05ff429686b7
5d62925fdd7ed8e80f206d095ed093994f13d276
ce897833ac6e362df7c91ac8223fe511c6defcf33964928a81004600a2dd4c2e

HTTP Headers

GET /s/roboto/v20/KFOlCnqEu92Fr1MmEU9fBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 20:03:01 GMT
expires: Tue, 21 Nov 2023 20:03:01 GMT
cache-control: public, max-age=31536000
age: 439570
last-modified: Wed, 24 Jul 2019 01:18:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmSU5fBBc4AMP6lQ.woff2

216.58.207.195

200 OK

11 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v20/KFOlCnqEu92Fr1MmSU5fBBc4AMP6lQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11180, version 1.0\012- data
Size
11 kB (11180 bytes)
Hash
5591b62beff3a20beaedd6cace4c6520
e1c9dc68693e1cae717cab80c3775b99b1dd95f1
92606bd38901e67d069f2ef883715b6e5ae07d72ae3bead3ad92346528374afc

HTTP Headers

GET /s/roboto/v20/KFOlCnqEu92Fr1MmSU5fBBc4AMP6lQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11180
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 20 Nov 2022 00:51:20 GMT
expires: Mon, 20 Nov 2023 00:51:20 GMT
cache-control: public, max-age=31536000
age: 595071
last-modified: Wed, 24 Jul 2019 01:18:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fixmyglass.safelite.com/Shared/images/WaitingModal/location-marker.png

206.131.216.72

200 OK

785 B

URL HTTP/1.1
fixmyglass.safelite.com/Shared/images/WaitingModal/location-marker.png
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
PNG image data, 33 x 40, 8-bit colormap, non-interlaced\012- data
Size
785 B (785 bytes)
Hash
8d744e0e558297cfbe1f063ab54b3297
54f65c1878f48e19c8481f433282281d26572cd0
493f027188db4c92f5cdf6c1a6a6a2555cb8d976947b95b967a7f8dfa4f33ad1

HTTP Headers

GET /Shared/images/WaitingModal/location-marker.png HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=0&tzd=1; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/png
Last-Modified: Tue, 15 Nov 2022 20:16:22 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0"
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="163618157"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 785

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
9959781c27fafe2b34007c6d4930e989
2cad62261d4758df6d8682eafb2a47c8b74ec3e3
b719fadfd5431dcb4d816dd93a12de543a564105a76c7c768e69aeaeb8fcd990

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1734
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:11 GMT
Last-Modified: Sat, 26 Nov 2022 21:40:18 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

fixmyglass.safelite.com/External/services/DigitalWebService.asmx/LogEventToSafeliteDataStoreWithPageName

206.131.216.72

200 OK

10 B

URL HTTP/1.1
fixmyglass.safelite.com/External/services/DigitalWebService.asmx/LogEventToSafeliteDataStoreWithPageName
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
JSON data\012- , ASCII text, with no line terminators
Size
10 B (10 bytes)
Hash
6ecc1d579667a3d173772fa1dec68c97
788e12b8e547dd6ae76198c3f591011b5804ed50
780e1b18e0904b2686e7e68ae54ea50056ef4e5667be2a918485704234516280

HTTP Headers

POST /External/services/DigitalWebService.asmx/LogEventToSafeliteDataStoreWithPageName HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 144
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=0&tzd=1; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502351385|1669500550527; dtSa=-; dtLatC=809
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: private, max-age=0
Content-Type: application/json; charset=utf-8
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="-548836611"
Timing-Allow-Origin: *
Date: Sat, 26 Nov 2022 22:09:11 GMT
Content-Length: 10

fixmyglass.safelite.com/Shared/ko-components/message-banner.html

206.131.216.72

200 OK

472 B

URL HTTP/1.1
fixmyglass.safelite.com/Shared/ko-components/message-banner.html
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
HTML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
472 B (472 bytes)
Hash
de3d438457c1c53c82c786233045cd33
e82cf497496c631e1a5940fc8e424e511cab9d43
c33b8904ac6cf852958353b1e3b248780df9e507f60b49d4a48eaa6046000b9b

HTTP Headers

GET /Shared/ko-components/message-banner.html HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=0&tzd=1; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502351385|1669500550527; dtSa=-; dtLatC=809
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Tue, 15 Nov 2022 20:16:21 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0:dtagent10219210719121502T2sP"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Server-Timing: dtRpid;desc="1758082859"
Date: Sat, 26 Nov 2022 22:09:11 GMT
Content-Length: 472

fixmyglass.safelite.com/Shared/ko-components/progress-bar-dropdown.html

206.131.216.72

200 OK

674 B

URL HTTP/1.1
fixmyglass.safelite.com/Shared/ko-components/progress-bar-dropdown.html
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
674 B (674 bytes)
Hash
cb06b540b479939d509c6771e1f461f5
ea344aa458ea0fa7602c2dff57bb2ac48d791335
5901d64ddffce3d0e396e0b6ce87dd8f144176f490111b966b58467f4f83c676

HTTP Headers

GET /Shared/ko-components/progress-bar-dropdown.html HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=0&tzd=1; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502351385|1669500550527; dtSa=-; dtLatC=809
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Tue, 15 Nov 2022 20:16:21 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0:dtagent10219210719121502T2sP"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Server-Timing: dtRpid;desc="32366461"
Date: Sat, 26 Nov 2022 22:09:11 GMT
Content-Length: 674

fixmyglass.safelite.com/Shared/ko-components/collapsible-alert-message.html

206.131.216.72

200 OK

599 B

URL HTTP/1.1
fixmyglass.safelite.com/Shared/ko-components/collapsible-alert-message.html
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
exported SGML document, ASCII text, with CRLF line terminators
Size
599 B (599 bytes)
Hash
d9253c5e29775e3c777b376f5bb989f8
0bb589414f78cf66472f29dd22710ef4cbbdb57e
ec3fe56b4e00a8dc190aae97efdfc7821991d19feabd21c81c447a00c06819df

HTTP Headers

GET /Shared/ko-components/collapsible-alert-message.html HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=0&tzd=1; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502351385|1669500550527; dtSa=-; dtLatC=809
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Tue, 15 Nov 2022 20:16:21 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0:dtagent10219210719121502T2sP"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Server-Timing: dtRpid;desc="-1510983157"
Date: Sat, 26 Nov 2022 22:09:10 GMT
Content-Length: 599

fixmyglass.safelite.com/Shared/js/omni/OmniSearchTmpl.html

206.131.216.72

200 OK

1.9 kB

URL HTTP/1.1
fixmyglass.safelite.com/Shared/js/omni/OmniSearchTmpl.html
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
1.9 kB (1866 bytes)
Hash
70e4900fde5b59ff38e190e27673779a
4aa02bdf6d0ed1873036158081d9d3ef16e3372a
2a6b6c7a9ad0c5a5a91af0fb74073153fbd393d6c71b5a583f93b722db81e74d

HTTP Headers

GET /Shared/js/omni/OmniSearchTmpl.html HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=0&tzd=1; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502351385|1669500550527; dtSa=-; dtLatC=809
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Tue, 15 Nov 2022 20:16:21 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0:dtagent10219210719121502T2sP"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Server-Timing: dtRpid;desc="888583652"
Date: Sat, 26 Nov 2022 22:09:11 GMT
Content-Length: 1866

service.force.com/embeddedservice/5.0/utils/common.min.js

161.71.0.166

200 OK

1.9 kB

URL HTTP/1.1
service.force.com/embeddedservice/5.0/utils/common.min.js
IP
161.71.0.166:0
ASN
#14340 SALESFORCE

File type
ASCII text, with very long lines (550)
Size
1.9 kB (1918 bytes)
Hash
89b63ed2ddd042494ab14b557e53565f
df1c57587176c8a50dc263225811637cec1f4fc7
d62250f0f4b780503fa876ccafc2affff1b8ef601cc3760a8b4f870a2f404d3f

HTTP Headers

GET /embeddedservice/5.0/utils/common.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 20:27:40 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sun, 27 Nov 2022 20:27:40 GMT
Last-Modified: Thu, 17 Feb 2022 23:57:30 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 6091
Content-Length: 1918

fixmyglass.safelite.com/Shared/images/WaitingModal/loader.gif

206.131.216.72

200 OK

72 kB

URL HTTP/1.1
fixmyglass.safelite.com/Shared/images/WaitingModal/loader.gif
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
GIF image data, version 89a, 124 x 124\012- data
Size
72 kB (71541 bytes)
Hash
a122d62baaa91456cc6d113a39056a58
2755ab355557392877165463852b6d182266528f
60dfb18a5ff8901b2dfbbb3f7e973a48e6f774a240764c98ee31c30638cfed18

HTTP Headers

GET /Shared/images/WaitingModal/loader.gif HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502350527|1669500550527
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/gif
Last-Modified: Tue, 15 Nov 2022 20:16:22 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0"
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="1493806051"
Date: Sat, 26 Nov 2022 22:09:11 GMT
Content-Length: 71541

fixmyglass.safelite.com/Shared/js/omni/OmniCookieTmpl.html

206.131.216.72

200 OK

1.8 kB

URL HTTP/1.1
fixmyglass.safelite.com/Shared/js/omni/OmniCookieTmpl.html
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
HTML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
1.8 kB (1776 bytes)
Hash
97cd219504521a2ea98794e23c0be428
397dc5aaab698bc132475f3d536ee0c24ac659b8
9d7c49f7a4ba0ffe27ffbb3311e4998549d436ace865c9cf05bb550d52669f58

HTTP Headers

GET /Shared/js/omni/OmniCookieTmpl.html HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=0&tzd=1; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502351385|1669500550527; dtSa=-; dtLatC=809
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Content-Type: text/html
Content-Encoding: gzip
Last-Modified: Tue, 15 Nov 2022 20:16:22 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Date: Sat, 26 Nov 2022 22:09:11 GMT
Content-Length: 1776

fixmyglass.safelite.com/Shared/images/red-bar-btm5px.png

206.131.216.72

200 OK

137 B

URL HTTP/1.1
fixmyglass.safelite.com/Shared/images/red-bar-btm5px.png
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
PNG image data, 1 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
137 B (137 bytes)
Hash
95834f621b0c741803adf6d68b837cef
fa93f9380027dae7f2bf09890dbda8670a0fa04d
68c6aaebc46e3f0c1aa79def609e203fca2d6baf6e7a5c83f37c24f835ab1a14

HTTP Headers

GET /Shared/images/red-bar-btm5px.png HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/css/site-2020Styling?v=N8C7Ff_1WLHNBeh1wziv-MC9BVnz8FcZCSi9gsKaiDw1
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=0&tzd=1; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502351385|1669500550527; dtSa=-; dtLatC=809
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/png
Last-Modified: Tue, 15 Nov 2022 20:16:22 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0"
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="331625356"
Date: Sat, 26 Nov 2022 22:09:11 GMT
Content-Length: 137

safelitees.mpeasylink.com/mpel/mpel.js

44.197.47.122

200 OK

2.0 kB

URL HTTP/2
safelitees.mpeasylink.com/mpel/mpel.js
IP
44.197.47.122:0
ASN
#14618 AMAZON-AES

File type
data
Size
2.0 kB (1970 bytes)
Hash
3eb44fee6ee8b12d0b1ab5ec2ad0ce2a
fe69a4db4501c81da7847639256a5acd5feecc73
f16044eaa176796e4be8ebc127d243836d6d2f075b254043c5803860a66be3ae

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /mpel/mpel.js HTTP/1.1
Host: safelitees.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:09:10 GMT
content-type: application/javascript
accept-ranges: bytes
etag: W/"4928-1502980086000"
last-modified: Thu, 17 Aug 2017 14:28:06 GMT
cache-control: max-age=86400
expires: Sun, 27 Nov 2022 22:09:10 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

service.force.com/embeddedservice/5.0/esw.min.css

161.71.0.166

200 OK

4.0 kB

URL HTTP/1.1
service.force.com/embeddedservice/5.0/esw.min.css
IP
161.71.0.166:0
ASN
#14340 SALESFORCE

File type
ASCII text, with very long lines (8794), with no line terminators
Size
4.0 kB (4027 bytes)
Hash
5d8ed4bfc01e918da939485ec4efabc7
0eb986fbe6b1ffe59a4af333b1f85cedca731ccc
b0e6c32e2e7332b92afe96cb807a296a9f39c32b09d0bcb4bdaee1ad724851bf

HTTP Headers

GET /embeddedservice/5.0/esw.min.css HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 20:27:40 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sun, 27 Nov 2022 20:27:40 GMT
Last-Modified: Fri, 27 Aug 2021 14:11:56 GMT
Content-Type: text/css
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 6091
Content-Length: 4027

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
1471e65f3c9d8126a5f8b2305eaae191
4f1803d78772bc8197ef6cc0f3cc8cdc60e85cd8
519de8074e539f7b39e5ccd82355de314434df3ac7236d4fc7159b31b60ed5b3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4484
Cache-Control: max-age=168520
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:11 GMT
Etag: "63826c4b-2d7"
Expires: Mon, 28 Nov 2022 20:57:51 GMT
Last-Modified: Sat, 26 Nov 2022 19:43:07 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 727

service.force.com/embeddedservice/5.0/client/liveagent.esw.min.js

161.71.0.166

200 OK

5.8 kB

URL HTTP/1.1
service.force.com/embeddedservice/5.0/client/liveagent.esw.min.js
IP
161.71.0.166:0
ASN
#14340 SALESFORCE

File type
ASCII text, with very long lines (626)
Size
5.8 kB (5803 bytes)
Hash
19dffcd4826b386f5260ad533274af68
a14840fffa71bb483f54aea3901caa7e3396fc0f
a1448188ab3ba508308401320318759194952800379fc0a7429ab80f081a5770

HTTP Headers

GET /embeddedservice/5.0/client/liveagent.esw.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 20:07:12 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sun, 27 Nov 2022 20:07:12 GMT
Last-Modified: Fri, 18 Feb 2022 00:21:14 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 7319
Content-Length: 5803

cdn.cookielaw.org/scripttemplates/otSDKStub.js

104.16.148.64

200 OK

7.2 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (21747)
Size
7.2 kB (7151 bytes)
Hash
6ca9058d9138dc07d9a378e6f20a8b7b
ff5f65ad24a8e2b3042cbb0136be7edb52215c1a
1561d36bd995a09ea69c243767e196dd2e76a2753b59b78ecbf999161904f86d

HTTP Headers

GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:11 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: bKkFjZE43AfZo3jm8gqLew==
last-modified: Fri, 25 Nov 2022 09:17:45 GMT
etag: 0x8DACEC5E9C800F3
x-ms-request-id: 205f9382-f01e-0007-272b-012e63000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 73184
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7705f270fd49b523-OSL
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be0da545931a6e6f06c7eb8395b8a3af
bea09f1e5d361abfe41135f1497b1b469699b912
3428d08f184d29f34d4067e1796ecfa6aa9f9cc6e76006fac23aaf175bdd4eaf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be0da545931a6e6f06c7eb8395b8a3af
bea09f1e5d361abfe41135f1497b1b469699b912
3428d08f184d29f34d4067e1796ecfa6aa9f9cc6e76006fac23aaf175bdd4eaf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be0da545931a6e6f06c7eb8395b8a3af
bea09f1e5d361abfe41135f1497b1b469699b912
3428d08f184d29f34d4067e1796ecfa6aa9f9cc6e76006fac23aaf175bdd4eaf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

6279403.fls.doubleclick.net/activityi;src=6279403;type=fixmy0;cat=fixmy005;ord=1;num=6367672819210;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired?

142.250.74.70

200 OK

364 B

URL HTTP/2
6279403.fls.doubleclick.net/activityi;src=6279403;type=fixmy0;cat=fixmy005;ord=1;num=6367672819210;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired?
IP
142.250.74.70:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (678), with no line terminators
Size
364 B (364 bytes)
Hash
9d7866afd76919f05dac5350ad03210e
61a279fd2d89900340fb98489e0beb82ff6edc05
5c4b362f71f27ef5433f355c680ed4e269b7f2aa5a4d2bd2bf56482f0e89630e

HTTP Headers

GET /activityi;src=6279403;type=fixmy0;cat=fixmy005;ord=1;num=6367672819210;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired? HTTP/1.1
Host: 6279403.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:11 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 364
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 22:24:11 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

6279403.fls.doubleclick.net/activityi;src=6279403;type=fixmy0;cat=finds0;ord=2302056894543;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired?

142.250.74.70

200 OK

361 B

URL HTTP/2
6279403.fls.doubleclick.net/activityi;src=6279403;type=fixmy0;cat=finds0;ord=2302056894543;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired?
IP
142.250.74.70:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (670), with no line terminators
Size
361 B (361 bytes)
Hash
9b17b615c8790e73a09dd689707fe24f
b96371537a2ea55e068314788c81d8708b108748
aa32505efba5951612af3cee8aae22229775e5aea23e1188ba1d15cec9ba8012

HTTP Headers

GET /activityi;src=6279403;type=fixmy0;cat=finds0;ord=2302056894543;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired? HTTP/1.1
Host: 6279403.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:11 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 361
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 22:24:11 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

6279403.fls.doubleclick.net/activityi;src=6279403;type=safel0;cat=safel000;ord=1;num=3860181539556;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired?

142.250.74.70

200 OK

365 B

URL HTTP/2
6279403.fls.doubleclick.net/activityi;src=6279403;type=safel0;cat=safel000;ord=1;num=3860181539556;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired?
IP
142.250.74.70:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (678), with no line terminators
Size
365 B (365 bytes)
Hash
94d11d540a2c323a568205c7e591e767
b5a14c355be768ab6071253fd922cb35c9ab2144
23b4df8a4ee30dcbd543c7a9cbfc6b9aeadfce150d011cb5060c210ae80971a2

HTTP Headers

GET /activityi;src=6279403;type=safel0;cat=safel000;ord=1;num=3860181539556;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired? HTTP/1.1
Host: 6279403.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:11 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 365
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 22:24:11 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

safelitees.mpeasylink.com/mpel/mpel?href=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&ref=&lang=&country=undefined&curr=undefined&region=undefined&osl=en-US

44.197.47.122

200 OK

992 B

URL HTTP/2
safelitees.mpeasylink.com/mpel/mpel?href=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&ref=&lang=&country=undefined&curr=undefined&region=undefined&osl=en-US
IP
44.197.47.122:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (992), with no line terminators
Size
992 B (992 bytes)
Hash
2c7b62c899a5713b05af1e654b1e3b5f
6998902a76405997fc074c6c7745181437c4fc7f
cdd3d4962a805a12ddde80aaf421928e0c7fee6024a6e2e304ee836d5505e1f3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /mpel/mpel?href=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&ref=&lang=&country=undefined&curr=undefined&region=undefined&osl=en-US HTTP/1.1
Host: safelitees.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:09:11 GMT
content-type: text/javascript;charset=UTF-8
content-length: 992
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa OUR IND COM NAV INT STA"
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
be0da545931a6e6f06c7eb8395b8a3af
bea09f1e5d361abfe41135f1497b1b469699b912
3428d08f184d29f34d4067e1796ecfa6aa9f9cc6e76006fac23aaf175bdd4eaf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

shop.pe/widget/widget_async.js

35.227.244.1

301 Moved Permanently

178 B

URL HTTP/2
shop.pe/widget/widget_async.js
IP
35.227.244.1:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
178 B (178 bytes)
Hash
cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d

HTTP Headers

GET /widget/widget_async.js HTTP/1.1
Host: shop.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
server: nginx
date: Sat, 26 Nov 2022 22:09:11 GMT
content-type: text/html
content-length: 178
location: https://d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
x-frame-options: deny
content-security-policy: frame-ancestors none;
strict-transport-security: max-age=31536000; includeSubDomains
referrer-policy: no-referrer-when-downgrade
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/7ae447d6-49bb-4311-a80d-369d48cae1cc/7ae447d6-49bb-4311-a80d-369d48cae1cc.json

104.16.148.64

200 OK

1.3 kB

URL HTTP/2
cdn.cookielaw.org/consent/7ae447d6-49bb-4311-a80d-369d48cae1cc/7ae447d6-49bb-4311-a80d-369d48cae1cc.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (2849), with no line terminators
Size
1.3 kB (1250 bytes)
Hash
17ea81c0c1761aa5c36311485975b0e5
8e6dda736f87b5505dbc555fe1cac9d0c3376ef2
903d77659d500d5baa760d7165179284c5ecb8d0df7e0fe3a73857084ab012ac

HTTP Headers

GET /consent/7ae447d6-49bb-4311-a80d-369d48cae1cc/7ae447d6-49bb-4311-a80d-369d48cae1cc.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:11 GMT
content-type: application/x-javascript
content-length: 1250
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: F+qBwMF2GqXDYxFIWXWw5Q==
last-modified: Thu, 16 Sep 2021 09:13:33 GMT
etag: 0x8D978F241C9DEF0
x-ms-request-id: efa7e07e-601e-00a3-2832-5a1487000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Sun, 27 Nov 2022 22:09:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7705f2718d570b4d-OSL
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
4d106e2e525b911d6614973e9ade6577
62c21501de97298532ab06911cc88664118c7937
3ad8c9dd5d2a4ffc5dc5e394449f2f7552648f06e8ed4529ca598b06ee3ef4c5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=106826
Date: Sat, 26 Nov 2022 22:09:11 GMT
Etag: "638174b4-1d7"
Expires: Mon, 28 Nov 2022 03:49:37 GMT
Last-Modified: Sat, 26 Nov 2022 02:06:44 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Wjt4Kt2SMHc8ScDrwl-m64nPBLFdKK7knpgMA9Wge2tCkBAA4zny4g==
Age: 6173

ocsp.digicert.com/

93.184.220.29

200 OK

727 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
727 B (727 bytes)
Hash
1471e65f3c9d8126a5f8b2305eaae191
4f1803d78772bc8197ef6cc0f3cc8cdc60e85cd8
519de8074e539f7b39e5ccd82355de314434df3ac7236d4fc7159b31b60ed5b3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4485
Cache-Control: max-age=168520
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Etag: "63826c4b-2d7"
Expires: Mon, 28 Nov 2022 20:57:52 GMT
Last-Modified: Sat, 26 Nov 2022 19:43:07 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 727

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

adservice.google.com/ddm/fls/i/src=6279403;type=fixmy0;cat=fixmy005;ord=1;num=6367672819210;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired

142.250.74.2

200 OK

371 B

URL HTTP/2
adservice.google.com/ddm/fls/i/src=6279403;type=fixmy0;cat=fixmy005;ord=1;num=6367672819210;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired
IP
142.250.74.2:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (677), with no line terminators
Size
371 B (371 bytes)
Hash
2624f3cc43da89d77b70048f257c83b5
ccac460a2c2d1a51af5fddb40d0ecb363e705b0e
d64240efb114d99b09a2dc6e80968b21fde4ab08835979cece3c4f4c0834f1c1

HTTP Headers

GET /ddm/fls/i/src=6279403;type=fixmy0;cat=fixmy005;ord=1;num=6367672819210;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 371
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
7d57afdf5d5471566654dfada16c2c45
14a8ae75def2664688ed7ca9b7ce2c6373364d7f
c2659ca3b46979937236cf74c94766899df2e97c2135eefb4a3863cba653a372

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=135787
Date: Sat, 26 Nov 2022 22:09:12 GMT
Etag: "6381ef23-1d7"
Expires: Mon, 28 Nov 2022 11:52:19 GMT
Last-Modified: Sat, 26 Nov 2022 10:49:07 GMT
Server: ECS (bsa/EB21)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2eEJhEUK3V0w9dC_kHDzD51XDHhAw_kuGOmuN93vy9WzHTU4XPd5kA==
Age: 3792

adservice.google.com/ddm/fls/i/src=6279403;type=safel0;cat=safel000;ord=1;num=3860181539556;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired

142.250.74.2

200 OK

368 B

URL HTTP/2
adservice.google.com/ddm/fls/i/src=6279403;type=safel0;cat=safel000;ord=1;num=3860181539556;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired
IP
142.250.74.2:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (677), with no line terminators
Size
368 B (368 bytes)
Hash
71314a5d18acda6c40e588d30c90e0fc
250cfeb01e772f3250e04d7c74ee2caa90bfcbe0
853947329dcad191e2863b39e834fdabecb2d61a7a7b6737763b79f6ad892f00

HTTP Headers

GET /ddm/fls/i/src=6279403;type=safel0;cat=safel000;ord=1;num=3860181539556;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 368
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

participants.evolv.ai/v1/48ce15a4d0/96042948_1669500551822/assets.css

143.204.55.113

200 OK

817 B

URL HTTP/2
participants.evolv.ai/v1/48ce15a4d0/96042948_1669500551822/assets.css
IP
143.204.55.113:0
ASN
#16509 AMAZON-02

File type
data
Size
817 B (817 bytes)
Hash
d9865c6751afa2d154811352d54495a2
13e473d8d1ab4811c8e95eb4b4d4df125cc553c4
0a12ec648a7bb298fee652a21b4a2a7b19b9d63abdad24c515a2442fa9127467

HTTP Headers

GET /v1/48ce15a4d0/96042948_1669500551822/assets.css HTTP/1.1
Host: participants.evolv.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
server: CloudFront
date: Sat, 26 Nov 2022 22:09:11 GMT
cache-control: must-revalidate, max-age=300
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Sat, 26 Nov 2022 22:09:11 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jaPMA7BCw8DuCsoIq-ERz_oumU0tCZ_MjV_sGI75Ba6UwO4HTT6VtA==
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

participants.evolv.ai/v1/48ce15a4d0/96042948_1669500551822/assets.js

143.204.55.113

200 OK

1.4 kB

URL HTTP/2
participants.evolv.ai/v1/48ce15a4d0/96042948_1669500551822/assets.js
IP
143.204.55.113:0
ASN
#16509 AMAZON-02

File type
data
Size
1.4 kB (1408 bytes)
Hash
dfabdf8db52a3cf35ec39cc39de15ea4
198df210c1f5e7f6eeb7940acd8e7fa6e142eb0d
a8c658e810f37daf4c23dd64e4da6cb7bac464f32a0f71e208fe3fbbad2e649d

HTTP Headers

GET /v1/48ce15a4d0/96042948_1669500551822/assets.js HTTP/1.1
Host: participants.evolv.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
server: CloudFront
date: Sat, 26 Nov 2022 22:09:12 GMT
cache-control: must-revalidate, max-age=300
access-control-allow-origin: *
access-control-allow-credentials: true
last-modified: Sat, 26 Nov 2022 22:09:11 GMT
content-encoding: gzip
vary: Accept-Encoding
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: aJPTuQ0W8qwi2rZXFFvgEwFvmeF5sbBAwlUw-5hCRHu165Xrnsj36Q==
X-Firefox-Spdy: h2

b.videoamp.com/d2/523f1a22-9b32-11ec-abe7-85223488575b/3475/impression?dnt=false&vpxid=3475&bwb=35&cevt=FUNNEL_ENTRY

54.205.94.9

200 OK

42 B

URL HTTP/2
b.videoamp.com/d2/523f1a22-9b32-11ec-abe7-85223488575b/3475/impression?dnt=false&vpxid=3475&bwb=35&cevt=FUNNEL_ENTRY
IP
54.205.94.9:0
ASN
#14618 AMAZON-AES

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /d2/523f1a22-9b32-11ec-abe7-85223488575b/3475/impression?dnt=false&vpxid=3475&bwb=35&cevt=FUNNEL_ENTRY HTTP/1.1
Host: b.videoamp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:12 GMT
content-type: image/gif
content-length: 42
server: Beacon Server
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
set-cookie: vampid=27605554-2e9a-4585-a16d-e12249f778c3; expires=Sun, 26 Nov 2023 22:09:12 GMT; domain=.videoamp.com; path=/; SameSite=None
X-Firefox-Spdy: h2

adservice.google.no/ddm/fls/i/src=6279403;type=fixmy0;cat=finds0;ord=2302056894543;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired

142.250.74.130

302 Found

0 B

URL HTTP/2
adservice.google.no/ddm/fls/i/src=6279403;type=fixmy0;cat=finds0;ord=2302056894543;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired
IP
142.250.74.130:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ddm/fls/i/src=6279403;type=fixmy0;cat=finds0;ord=2302056894543;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://6279403.fls.doubleclick.net/ddm/fls/r/src=6279403;type=fixmy0;cat=finds0;ord=2302056894543;gtm=2wgb90;auiddc=549793862.1669500552;~oref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

safelitees.mpeasylink.com/mpel/mpel_ssd.js

44.197.47.122

200 OK

1.2 kB

URL HTTP/2
safelitees.mpeasylink.com/mpel/mpel_ssd.js
IP
44.197.47.122:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (502)
Size
1.2 kB (1221 bytes)
Hash
68bf4d20870672e4c858f74ae1addfb2
cbe26740b62f7f9c67bf7817952f294a49240142
b73b6c5015621b48c3d6b5bffbe673f85afa94a2232dd025f0e1753b3d930d3b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /mpel/mpel_ssd.js HTTP/1.1
Host: safelitees.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:09:12 GMT
content-type: application/javascript
accept-ranges: bytes
etag: W/"3207-1502980086000"
last-modified: Thu, 17 Aug 2017 14:28:06 GMT
cache-control: max-age=86400
expires: Sun, 27 Nov 2022 22:09:12 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

participants.evolv.ai/v1/48ce15a4d0/data

143.204.55.113

202 Accepted

0 B

URL HTTP/2
participants.evolv.ai/v1/48ce15a4d0/data
IP
143.204.55.113:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /v1/48ce15a4d0/data HTTP/1.1
Host: participants.evolv.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 664
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
content-length: 0
server: CloudFront
date: Sat, 26 Nov 2022 22:09:12 GMT
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: https://fixmyglass.safelite.com
access-control-allow-credentials: true
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ymScuMORUipsgKJhTQSTMYKzfprNsJ7ei-PerrkgYD5NkuwvAxXzyw==
X-Firefox-Spdy: h2

fixmyglass.safelite.com/Shared/images/alert-circle-red.svg

206.131.216.72

200 OK

477 B

URL HTTP/1.1
fixmyglass.safelite.com/Shared/images/alert-circle-red.svg
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (382), with CRLF line terminators
Size
477 B (477 bytes)
Hash
ce016430dee9bd1ae64dfb4d41900c64
52f4f63119d064147a0cb25236ea64926ec7a354
37bd4a0d89a81854260fe6a4471b642bfd0fd8df714174a98b1975982521baa6

HTTP Headers

GET /Shared/images/alert-circle-red.svg HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=0&tzd=1; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502351385|1669500550527; dtSa=-; dtLatC=809; _gcl_au=1.1.549793862.1669500552; _dpm_ses.b7be=*; _dpm_id.b7be=cbd46aba-4a75-4da2-bfe5-d7b44196df10.1669500552.1.1669500552.1669500552.a69390cd-92e1-4e01-a044-2f4ec9acedc1; evolv:uid=96042948_1669500551822; _ga_W987R4HVH1=GS1.1.1669500551.1.0.1669500551.0.0.0; _ga=GA1.1.650321630.1669500552; _ga_1HXHB1LN8S=GS1.1.1669500551.1.0.1669500551.60.0.0; C360i=A3B31999A88227CBDEDAD737A61E4008|eyJjcmVhdGVkIjoxNjY5NTAwNTUxOTQ0LCJ1cGRhdGVkIjoxNjY5NTAwNTUxOTQ0LCJ0YWdfaWQiOiI0LjMuMCIsImNvdW50IjoxLCJleHAiOjE3MDEwMzY1NTE5NDR9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/svg+xml
Last-Modified: Tue, 15 Nov 2022 20:16:22 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0"
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="1931332864"
Date: Sat, 26 Nov 2022 22:09:11 GMT
Content-Length: 477

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fixmyglass.safelite.com/Shared/images/cancel-popup-close.png

206.131.216.72

200 OK

1.7 kB

URL HTTP/1.1
fixmyglass.safelite.com/Shared/images/cancel-popup-close.png
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
PNG image data, 48 x 51, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1720 bytes)
Hash
50d4c0d415875580bec2df39d77fe94f
002283940ab1a6a903f5cd1a49da4510255b70f0
8b1833f4ae32b001d2fd519c721a0f694f07a15714b10db508f7e330dc9410f3

HTTP Headers

GET /Shared/images/cancel-popup-close.png HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=0&tzd=1; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502351385|1669500550527; dtSa=-; dtLatC=809; _gcl_au=1.1.549793862.1669500552; _dpm_ses.b7be=*; _dpm_id.b7be=cbd46aba-4a75-4da2-bfe5-d7b44196df10.1669500552.1.1669500552.1669500552.a69390cd-92e1-4e01-a044-2f4ec9acedc1; evolv:uid=96042948_1669500551822; _ga_W987R4HVH1=GS1.1.1669500551.1.0.1669500551.0.0.0; _ga=GA1.1.650321630.1669500552; _ga_1HXHB1LN8S=GS1.1.1669500551.1.0.1669500551.60.0.0; C360i=A3B31999A88227CBDEDAD737A61E4008|eyJjcmVhdGVkIjoxNjY5NTAwNTUxOTQ0LCJ1cGRhdGVkIjoxNjY5NTAwNTUxOTQ0LCJ0YWdfaWQiOiI0LjMuMCIsImNvdW50IjoxLCJleHAiOjE3MDEwMzY1NTE5NDR9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/png
Last-Modified: Tue, 15 Nov 2022 20:16:22 GMT
Accept-Ranges: bytes
ETag: "02f2212ff9d81:0"
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="1143781545"
Date: Sat, 26 Nov 2022 22:09:11 GMT
Content-Length: 1720

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e7106558cabb7265be8f5d5e6c9320c8
122cb16bb0ad18bac3a89771e43e9d7e6d5842ac
43e46d3bbea748fd7ca4300afc1ab9b0956c44a33696464e880cf6c288ea0dad

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e7106558cabb7265be8f5d5e6c9320c8
122cb16bb0ad18bac3a89771e43e9d7e6d5842ac
43e46d3bbea748fd7ca4300afc1ab9b0956c44a33696464e880cf6c288ea0dad

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleadservices.com/pagead/conversion.js

142.250.74.162

200 OK

17 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion.js
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2772)
Size
17 kB (16827 bytes)
Hash
ac7574cbc5b2e85b7ddfa76b8657e59d
2bbeec5531576d6352b1c2b74e0e05c1ea10251d
bdf1e52afba9d671ea698707f97e8609de6360c502dc7b6eed2f40f979e08387

HTTP Headers

GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 26 Nov 2022 22:09:12 GMT
expires: Sat, 26 Nov 2022 22:09:12 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 16359567893097152046
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 16827
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
69b4c95baca69139e9e4f7e5ffa6bace
a33af721a9defcb815716234aafdb69de7169455
9f752625bea112bc5402067fd695ba893590e6de9844de640a663e4e8fdc1475

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleadservices.com/pagead/conversion/845361201/?random=1669500552308&cv=9&fst=1669500552308&num=1&npa=1&label=2ZVdCKzdyd0BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfixmy005%3Bord%3D1%3Bnum%3D6367672819210%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4

142.250.74.162

200 OK

1.3 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion/845361201/?random=1669500552308&cv=9&fst=1669500552308&num=1&npa=1&label=2ZVdCKzdyd0BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfixmy005%3Bord%3D1%3Bnum%3D6367672819210%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2216), with no line terminators
Size
1.3 kB (1275 bytes)
Hash
30de2bce948543a60b78df50632a1b82
3cdfc9f4c4d3c0b155e1bb79eb4645d9e62b1b81
d8fc708b7fd5f0d2063ce78367d6aa35a106155c751d46890a6158a0cdcb4fa9

HTTP Headers

GET /pagead/conversion/845361201/?random=1669500552308&cv=9&fst=1669500552308&num=1&npa=1&label=2ZVdCKzdyd0BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfixmy005%3Bord%3D1%3Bnum%3D6367672819210%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1275
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

secure.adnxs.com/px?id=1032272&seg=14604971&t=1

185.89.210.212

307 Redirection

0 B

URL HTTP/1.1
secure.adnxs.com/px?id=1032272&seg=14604971&t=1
IP
185.89.210.212:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /px?id=1032272&seg=14604971&t=1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 26 Nov 2022 22:09:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://secure.adnxs.com/bounce?%2Fpx%3Fid%3D1032272%26seg%3D14604971%26t%3D1
AN-X-Request-Uuid: c819f181-2926-40de-848e-1977c46dcfff
Set-Cookie: uuid2=2352696513350308756; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 24-Feb-2023 22:09:12 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

secure.adnxs.com/px?id=1032274&seg=14604974&t=1

185.89.210.212

307 Redirection

0 B

URL HTTP/1.1
secure.adnxs.com/px?id=1032274&seg=14604974&t=1
IP
185.89.210.212:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /px?id=1032274&seg=14604974&t=1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Sat, 26 Nov 2022 22:09:12 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://secure.adnxs.com/bounce?%2Fpx%3Fid%3D1032274%26seg%3D14604974%26t%3D1
AN-X-Request-Uuid: c0500113-328c-4f29-baf6-a3d9a0625729
Set-Cookie: uuid2=4994151303461519703; SameSite=None; Path=/; Max-Age=7776000; Expires=Fri, 24-Feb-2023 22:09:12 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

l.hrzn-nxt.com/pxl?stm=1669500551935&e=pv&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&page=Welcome%20-%20Safelite%20AutoGlass%C2%AE&tv=js-2.12.0&tna=nf&aid=safelite-7618a328-9acf-40b9-b3b5-ddbb548fc695&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&eid=90879219-be88-4886-9cad-546f2976a2dd&dtm=1669500551934&vp=1280x939&ds=1283x1489&vid=1&sid=f38aac21-bedf-48f6-8d0d-f6af090d4b9e&duid=e0bd5166-a7a5-4c16-8ad0-86db37d66d98&fp=3963981668

54.230.111.28

200 OK

43 B

URL HTTP/2
l.hrzn-nxt.com/pxl?stm=1669500551935&e=pv&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&page=Welcome%20-%20Safelite%20AutoGlass%C2%AE&tv=js-2.12.0&tna=nf&aid=safelite-7618a328-9acf-40b9-b3b5-ddbb548fc695&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&eid=90879219-be88-4886-9cad-546f2976a2dd&dtm=1669500551934&vp=1280x939&ds=1283x1489&vid=1&sid=f38aac21-bedf-48f6-8d0d-f6af090d4b9e&duid=e0bd5166-a7a5-4c16-8ad0-86db37d66d98&fp=3963981668
IP
54.230.111.28:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
fb02f374b8f73825415db1bccd4bd76d
b103aa629cacdd90b39538a7561da7f8e49ad73f
caa849b179befa2645a8e2c474d2e82a76777a3305315ece911013e8ee9a916c

HTTP Headers

GET /pxl?stm=1669500551935&e=pv&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&page=Welcome%20-%20Safelite%20AutoGlass%C2%AE&tv=js-2.12.0&tna=nf&aid=safelite-7618a328-9acf-40b9-b3b5-ddbb548fc695&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&eid=90879219-be88-4886-9cad-546f2976a2dd&dtm=1669500551934&vp=1280x939&ds=1283x1489&vid=1&sid=f38aac21-bedf-48f6-8d0d-f6af090d4b9e&duid=e0bd5166-a7a5-4c16-8ad0-86db37d66d98&fp=3963981668 HTTP/1.1
Host: l.hrzn-nxt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/gif
content-length: 43
date: Sat, 26 Nov 2022 22:09:13 GMT
last-modified: Wed, 17 Apr 2019 18:13:20 GMT
etag: "fb02f374b8f73825415db1bccd4bd76d"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: xixyJknIIY_avZNYqgkah6tVyxZGIWUXlhr-AKVp04tgwmJxeuOMVQ==
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ae452333438465bef0a71a80768855a0
dae89646a66487e12b6dba40b7796c4b608506bd
dc15bc4a1e175a446f69fedc8475164a75477dd7a455b044f0ca85884f873917

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1481
Cache-Control: max-age=104288
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Etag: "63817d1f-1d7"
Expires: Mon, 28 Nov 2022 03:07:20 GMT
Last-Modified: Sat, 26 Nov 2022 02:42:39 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

c.tvpixel.com/js/current/dpm_pixel_min.js?aid=safelite-c77046f9-625f-4866-9c75-be39870f6479

54.230.111.73

200 OK

49 kB

URL HTTP/2
c.tvpixel.com/js/current/dpm_pixel_min.js?aid=safelite-c77046f9-625f-4866-9c75-be39870f6479
IP
54.230.111.73:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (60150)
Size
49 kB (49112 bytes)
Hash
23046c9cd4940b6862cc2515dafbfc67
18cdf25bbe3a2f4a3a9a7dbc68e65fce70c87f4b
3aa8cd4f02fba104ca6333783b6cc5bb96832e0be1222f0e119efbc799b77770

HTTP Headers

GET /js/current/dpm_pixel_min.js?aid=safelite-c77046f9-625f-4866-9c75-be39870f6479 HTTP/1.1
Host: c.tvpixel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
last-modified: Thu, 16 Sep 2021 18:14:59 GMT
x-amz-version-id: oMk5SFqHXboEDRm2.vDWImtx_4ARYxEl
server: AmazonS3
content-encoding: gzip
date: Sat, 26 Nov 2022 10:35:00 GMT
etag: W/"08e770c8a17bf087d50cec01af0892c2"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zXHfarneiJDuhkdaAdx6KGDqXTDaFNRWdEueDqq1nIsLZDKnyYhbKg==
age: 41652
X-Firefox-Spdy: h2

js.adsrvr.org/up_loader.1.1.0.js

143.204.45.46

200 OK

4.6 kB

URL HTTP/1.1
js.adsrvr.org/up_loader.1.1.0.js
IP
143.204.45.46:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (4593), with no line terminators
Size
4.6 kB (4593 bytes)
Hash
98d98b3499058b76d58073cf8ede2f10
2ec5bc839a187c2a4d93499567e8fff091a6bcc4
ee3a7301fe1e0c0f6bf6acff0d7a8d107f5cb3f62a2566740c0416d8e61f00b9

HTTP Headers

GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Content-Length: 4593
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 26 Nov 2022 05:23:56 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fihUQ7Nne-zegASAdsjWn2LKFGL3AYEJVOu47mBbO03Ojhc14-Ad8g==
Age: 81458

www.google-analytics.com/analytics.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 26 Nov 2022 20:41:08 GMT
expires: Sat, 26 Nov 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 5284
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fixmyglass.safelite.com/FixMyGlass/images/MGS_favicon_32.png

206.131.216.72

200 OK

1.1 kB

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/images/MGS_favicon_32.png
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Size
1.1 kB (1058 bytes)
Hash
ca0499e7d524a4851b9f016fcf4edfce
2782a483f9467096993c3442e81aa7eed1920f10
3fbb3d533d17dd5293ef2dca23d7aae7c8dc7060fedf068a0e4da1919b5b3588

HTTP Headers

GET /FixMyGlass/images/MGS_favicon_32.png HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=0&tzd=1; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502351385|1669500550527; dtSa=-; dtLatC=809; _gcl_au=1.1.549793862.1669500552; _dpm_ses.b7be=*; _dpm_id.b7be=cbd46aba-4a75-4da2-bfe5-d7b44196df10.1669500552.1.1669500552.1669500552.a69390cd-92e1-4e01-a044-2f4ec9acedc1; evolv:uid=96042948_1669500551822; _ga_W987R4HVH1=GS1.1.1669500551.1.0.1669500551.0.0.0; _ga=GA1.1.650321630.1669500552; _ga_1HXHB1LN8S=GS1.1.1669500551.1.0.1669500551.60.0.0; C360i=A3B31999A88227CBDEDAD737A61E4008|eyJjcmVhdGVkIjoxNjY5NTAwNTUxOTQ0LCJ1cGRhdGVkIjoxNjY5NTAwNTUxOTQ0LCJ0YWdfaWQiOiI0LjMuMCIsImNvdW50IjoxLCJleHAiOjE3MDEwMzY1NTE5NDR9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/png
Last-Modified: Tue, 15 Nov 2022 20:15:48 GMT
Accept-Ranges: bytes
ETag: "032bec2ff9d81:0"
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="404817574"
Date: Sat, 26 Nov 2022 22:09:11 GMT
Content-Length: 1058

fixmyglass.safelite.com/FixMyGlass/images/Safelite_large_favicon.png

206.131.216.72

200 OK

24 kB

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/images/Safelite_large_favicon.png
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type
PNG image data, 196 x 196, 8-bit/color RGB, non-interlaced\012- data
Size
24 kB (24343 bytes)
Hash
d267e92df02024d619454a0001049606
06c67166f47eb5aba1dcca1e01d8c71e9143ae60
0025e6abf64894ef18ddd53c70c942a6c65cb2e3d33506f280076dc2d21592f5

HTTP Headers

GET /FixMyGlass/images/Safelite_large_favicon.png HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; UserID=784396ab-ecd6-4043-9c36-2831ea33e565; dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=0&tzd=1; SessionLogSeqNum=541590849; dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; sid=6e402e7b-9951-4608-9713-d0b7fc246530; rxVisitor=166950055052321CH18SBCUHAINIHHBCIP6BPC4P4TVJG; dtPC=13$300550480_306h1vLVUQGQFPBABAANGUHCRTMFCUALNCDLFK-0; rxvt=1669502351385|1669500550527; dtSa=-; dtLatC=809; _gcl_au=1.1.549793862.1669500552; _dpm_ses.b7be=*; _dpm_id.b7be=cbd46aba-4a75-4da2-bfe5-d7b44196df10.1669500552.1.1669500552.1669500552.a69390cd-92e1-4e01-a044-2f4ec9acedc1; evolv:uid=96042948_1669500551822; _ga_W987R4HVH1=GS1.1.1669500551.1.0.1669500551.0.0.0; _ga=GA1.1.650321630.1669500552; _ga_1HXHB1LN8S=GS1.1.1669500551.1.0.1669500551.60.0.0; C360i=A3B31999A88227CBDEDAD737A61E4008|eyJjcmVhdGVkIjoxNjY5NTAwNTUxOTQ0LCJ1cGRhdGVkIjoxNjY5NTAwNTUxOTQ0LCJ0YWdfaWQiOiI0LjMuMCIsImNvdW50IjoxLCJleHAiOjE3MDEwMzY1NTE5NDR9
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Cache-Control: max-age=1036800
Content-Type: image/png
Last-Modified: Tue, 15 Nov 2022 20:15:48 GMT
Accept-Ranges: bytes
ETag: "032bec2ff9d81:0"
Server: Microsoft-IIS/10.0
X-UA-Compatible: IE=edge
Server-Timing: dtRpid;desc="885187139"
Date: Sat, 26 Nov 2022 22:09:12 GMT
Content-Length: 24343

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

secure.adnxs.com/bounce?%2Fpx%3Fid%3D1032272%26seg%3D14604971%26t%3D1

185.89.210.212

200 OK

297 B

URL HTTP/1.1
secure.adnxs.com/bounce?%2Fpx%3Fid%3D1032272%26seg%3D14604971%26t%3D1
IP
185.89.210.212:0
ASN
#29990 ASN-APPNEX

File type
ASCII text, with very long lines (550), with no line terminators
Size
297 B (297 bytes)
Hash
35075cea0039d6f788a8198618422d32
010fa5aea70e689f14d916d1d6c5ed80d57d4b66
96fea1085574e67b08f9205a816649c5f2f7f9309a5af3e5b94c97d169dffe10

HTTP Headers

GET /bounce?%2Fpx%3Fid%3D1032272%26seg%3D14604971%26t%3D1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6279403.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 26 Nov 2022 22:09:12 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: e48db8b8-0845-4c32-a847-9ee9beb4e440
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
Content-Encoding: gzip

d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js

143.204.55.112

200 OK

905 B

URL HTTP/2
d3rr3d0n31t48m.cloudfront.net/widget/widget_async.js
IP
143.204.55.112:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (559)
Size
905 B (905 bytes)
Hash
8f9a4e574f11ca1ea10db98fd6687660
24524c8493f0ca5573f353600dd66ba22406cd9c
f16fda04be22fc56edd4df978a54704d27b942f694ba82fab5a7d3b1c13428b8

HTTP Headers

GET /widget/widget_async.js HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 905
last-modified: Tue, 15 Nov 2022 21:39:30 GMT
content-encoding: gzip
x-amz-meta-mtime: 1668548367.69
accept-ranges: bytes
server: AmazonS3
date: Sat, 26 Nov 2022 21:40:45 GMT
cache-control: max-age=3600, public
etag: "8f9a4e574f11ca1ea10db98fd6687660"
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: a8TBgsflYVicJUFAMwZiusPo4bGAKAUHVhGEAqxPu5X1o1oZS48tfw==
age: 1707
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

secure.adnxs.com/bounce?%2Fpx%3Fid%3D1032274%26seg%3D14604974%26t%3D1

185.89.210.212

200 OK

296 B

URL HTTP/1.1
secure.adnxs.com/bounce?%2Fpx%3Fid%3D1032274%26seg%3D14604974%26t%3D1
IP
185.89.210.212:0
ASN
#29990 ASN-APPNEX

File type
ASCII text, with very long lines (549), with no line terminators
Size
296 B (296 bytes)
Hash
72d04dd3b1bcc653147edf42ccac55ad
31ba9a7f030995b42b90e94e593ffc0355afb2a0
94ba8a40a8e194bc3d69b6129155dc0098048e5123159f41681b47c0117af3df

HTTP Headers

GET /bounce?%2Fpx%3Fid%3D1032274%26seg%3D14604974%26t%3D1 HTTP/1.1
Host: secure.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6279403.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Sat, 26 Nov 2022 22:09:12 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: 12963bbe-99f2-472a-8b4b-b0dcaa1b560a
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 942.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com
Content-Encoding: gzip

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27340 bytes)
Hash
44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 40IsVg75EqD5ffeZudEhXZyDCvUGUPrj0nD1efZLsZrF40uH5RYe4oA05Sxm2jvIxuc5uYf2S5ITd93ZvN117Q==
priority: u=3,i
content-length: 27340
x-fb-trip-id: 1904183273
date: Sat, 26 Nov 2022 22:09:12 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

safelitees.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired

44.197.47.122

200 OK

1.2 kB

URL HTTP/2
safelitees.mpeasylink.com/mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired
IP
44.197.47.122:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (660)
Size
1.2 kB (1195 bytes)
Hash
045280c1d91d1f5e777ed9022f709889
302c77f5b8af93e07eeac6c2ca35c7fb3dae830a
fbdbdeedc57750df3d234b437ecdee50809b14055d29a12681b8f82d6b4c55f5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /mpel/mpel_storage.html?cmd=getpref&href=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired HTTP/1.1
Host: safelitees.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:09:11 GMT
content-type: text/html
accept-ranges: bytes
etag: W/"2674-1502980086000"
last-modified: Thu, 17 Aug 2017 14:28:06 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/1067141890/?random=1669500551574&cv=11&fst=1669500551574&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&label=vAv6CNKs2AQQgpbt_AM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&tiba=Welcome%20-%20Safelite%20AutoGlass%C2%AE&rdp=1&auid=549793862.1669500552&data=gls_dmg%3D%3Bacct_type%3D%3Border_id%3D&rfmt=3&fmt=4

142.250.74.34

200 OK

37 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1067141890/?random=1669500551574&cv=11&fst=1669500551574&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&label=vAv6CNKs2AQQgpbt_AM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&tiba=Welcome%20-%20Safelite%20AutoGlass%C2%AE&rdp=1&auid=549793862.1669500552&data=gls_dmg%3D%3Bacct_type%3D%3Border_id%3D&rfmt=3&fmt=4
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
37 B (37 bytes)
Hash
eec2fa3358659b4e2393f0504806fba1
cb52f43a47507b09602ef841bc5e91491e3a6f76
f16145eec9471ac5764d11573d9ddb659996826aeae11e84374053b911684a40

HTTP Headers

GET /pagead/viewthroughconversion/1067141890/?random=1669500551574&cv=11&fst=1669500551574&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&label=vAv6CNKs2AQQgpbt_AM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&tiba=Welcome%20-%20Safelite%20AutoGlass%C2%AE&rdp=1&auid=549793862.1669500552&data=gls_dmg%3D%3Bacct_type%3D%3Border_id%3D&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 37
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 22:24:12 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/845361201/?random=2121186103&cv=9&fst=1669500552308&num=1&npa=1&label=2ZVdCKzdyd0BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfixmy005%3Bord%3D1%3Bnum%3D6367672819210%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=iI6CY6G5GtbIZbn2vOAN&sscte=1&crd=

142.250.74.34

302 Found

42 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/845361201/?random=2121186103&cv=9&fst=1669500552308&num=1&npa=1&label=2ZVdCKzdyd0BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfixmy005%3Bord%3D1%3Bnum%3D6367672819210%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=iI6CY6G5GtbIZbn2vOAN&sscte=1&crd=
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/viewthroughconversion/845361201/?random=2121186103&cv=9&fst=1669500552308&num=1&npa=1&label=2ZVdCKzdyd0BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfixmy005%3Bord%3D1%3Bnum%3D6367672819210%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=iI6CY6G5GtbIZbn2vOAN&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/845361201/?random=2121186103&cv=9&fst=1669500552308&num=1&npa=1&label=2ZVdCKzdyd0BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfixmy005%3Bord%3D1%3Bnum%3D6367672819210%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=iI6CY6G5GtbIZbn2vOAN&random=470851452&resp=GooglemKTybQhCsO
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 22:24:12 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/955792435/?random=1669500551613&cv=11&fst=1669500551613&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&tiba=Welcome%20-%20Safelite%20AutoGlass%C2%AE&auid=549793862.1669500552&rfmt=3&fmt=4

142.250.74.34

200 OK

1.0 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/955792435/?random=1669500551613&cv=11&fst=1669500551613&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&tiba=Welcome%20-%20Safelite%20AutoGlass%C2%AE&auid=549793862.1669500552&rfmt=3&fmt=4
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2267), with no line terminators
Size
1.0 kB (1009 bytes)
Hash
261843102a98436c80aa095efe6a7b90
f5f1046f9b4bae519e3c8f22cec510835ed5d84e
86e2637c1342e2a9f52f854f4aebccf0a812b5aaf9aea93bc99ef8bfd5332055

HTTP Headers

GET /pagead/viewthroughconversion/955792435/?random=1669500551613&cv=11&fst=1669500551613&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&tiba=Welcome%20-%20Safelite%20AutoGlass%C2%AE&auid=549793862.1669500552&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1009
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 22:24:12 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

media.evolv.ai/asset-manager/releases/latest/webloader.min.js

54.230.111.89

200 OK

23 kB

URL HTTP/2
media.evolv.ai/asset-manager/releases/latest/webloader.min.js
IP
54.230.111.89:0
ASN
#16509 AMAZON-02

File type
data
Size
23 kB (22900 bytes)
Hash
41310aab481f108257cc619d729e7d70
700e16436c55d95c45cb44d17874784c31e3a206
a2aae141bfc0d43bf249b3bffd9da6df9f0f04709b18c09d292c4ebb4265afff

HTTP Headers

GET /asset-manager/releases/latest/webloader.min.js HTTP/1.1
Host: media.evolv.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 05 Oct 2022 17:32:14 GMT
x-amz-version-id: XbevZQJq3Gf5Jba6I4MfwL51U4b2yrh.
server: AmazonS3
content-encoding: gzip
date: Sat, 26 Nov 2022 19:04:32 GMT
cache-control: max-age=3600
etag: W/"58c472037f62ec856a17bcd5d0c4e8cd"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wtiDj2k66R2kVXQw0Hza8KGXqDxBWnDbthognjuruf5SmnuCzH1woA==
age: 11082
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ae452333438465bef0a71a80768855a0
dae89646a66487e12b6dba40b7796c4b608506bd
dc15bc4a1e175a446f69fedc8475164a75477dd7a455b044f0ca85884f873917

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1481
Cache-Control: max-age=104288
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Etag: "63817d1f-1d7"
Expires: Mon, 28 Nov 2022 03:07:20 GMT
Last-Modified: Sat, 26 Nov 2022 02:42:39 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

ad.doubleclick.net/ddm/activity/src=8942152;type=invmedia;cat=safel00;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?

142.250.74.102

302 Found

0 B

URL HTTP/2
ad.doubleclick.net/ddm/activity/src=8942152;type=invmedia;cat=safel00;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?
IP
142.250.74.102:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ddm/activity/src=8942152;type=invmedia;cat=safel00;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=8942152;type=invmedia;cat=safel00;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1;~oref=https://6279403.fls.doubleclick.net/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 22:24:12 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.quantummetric.com/qscripts/quantum-safelite.js

104.22.52.252

200 OK

78 kB

URL HTTP/2
cdn.quantummetric.com/qscripts/quantum-safelite.js
IP
104.22.52.252:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (3730)
Size
78 kB (77794 bytes)
Hash
78bc32316ed901448883352e42a2cbaf
6db8d71041ee5505a4aa29d7b64c755f0df03d50
4ffccbe990c8e324d10b8dc1c231f86d5492ddaa7f453ce0ca6a11c312113f21

HTTP Headers

GET /qscripts/quantum-safelite.js HTTP/1.1
Host: cdn.quantummetric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:12 GMT
content-type: text/javascript
vary: Accept-Encoding
etag: W/"166878920184616678537485031669453203074"
cache-control: public, max-age=300, stale-while-revalidate=21600, stale-if-error=21600
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
strict-transport-security: max-age=31536000
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7705f270fcdd0b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ad.doubleclick.net/ddm/activity/src=8942152;type=invmedia;cat=safel0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?

142.250.74.102

302 Found

0 B

URL HTTP/2
ad.doubleclick.net/ddm/activity/src=8942152;type=invmedia;cat=safel0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1?
IP
142.250.74.102:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ddm/activity/src=8942152;type=invmedia;cat=safel0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1? HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://adservice.google.com/ddm/fls/p/src=8942152;type=invmedia;cat=safel0;dc_lat=;dc_rdid=;tag_for_child_directed_treatment=;tfua=;npa=;ord=1;~oref=https://6279403.fls.doubleclick.net/
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 22:24:12 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

sp.analytics.yahoo.com/spp.pl?a=10000&.yp=10131331&ec=LowIntent

212.82.100.181

200 OK

43 B

URL HTTP/2
sp.analytics.yahoo.com/spp.pl?a=10000&.yp=10131331&ec=LowIntent
IP
212.82.100.181:0
ASN
#34010 Yahoo! UK Services Limited

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
bff56ce49dd485d195fdfa0a02342568
74fb4071deab7d3ab083562067b735df32c43397
0e4b1e428a2198ef747010c094101c257b568a97cdcc0f31ed5e9868cc835b39

HTTP Headers

GET /spp.pl?a=10000&.yp=10131331&ec=LowIntent HTTP/1.1
Host: sp.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:12 GMT
expires: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
cache-control: no-cache, private, must-revalidate
content-type: image/gif
accept-ranges: bytes
content-length: 43
server: ATS
age: 0
strict-transport-security: max-age=31536000
expect-ct: max-age=31536000, report-uri="http://csp.yahoo.com/beacon/csp?src=yahoocom-expect-ct-report-only"
x-frame-options: DENY
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
content-security-policy: sandbox; default-src 'self'; script-src 'none'; object-src 'none'; report-uri http://csp.yahoo.com/beacon/csp?src=generic
set-cookie: A3=d=AQABBIiOgmMCEHnUcnZrFqA0f0pjomCmguwFEgEBAQHgg2OMYwAAAAAA_eMAAA&S=AQAAAmn4m-LdTd8HvkzjsCK-CzM; Expires=Mon, 27 Nov 2023 04:09:12 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
6dbcbcc1a60312c4036a103223875cd1
fe367a11e6ff4d31534f5b307049d88fa2997d04
6555ec10233e39c51782d022d5fd8aaafcfa390af05caaf904a60ef449263ac1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=137455
Date: Sat, 26 Nov 2022 22:09:12 GMT
Etag: "6381ec4f-1d7"
Expires: Mon, 28 Nov 2022 12:20:07 GMT
Last-Modified: Sat, 26 Nov 2022 10:37:03 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: jMR_Jy1sf26k81Un0Ux9Bt_7yy66PR_jwRZVpCyMBkNeFNmPl0BOOw==
Age: 6184

ocsp.r2m01.amazontrust.com/

54.230.80.227

200 OK

471 B

URL HTTP/1.1
ocsp.r2m01.amazontrust.com/
IP
54.230.80.227:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
39644ea9a58159da466abb8daa024e00
15e76e469177c187ef5a20ed6a3f7be15cc9bee2
59c824b9a31f5bd712c05db8e7454751602b0f9f73f89b27758617b43cda9f66

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93164
Date: Sat, 26 Nov 2022 22:09:12 GMT
Etag: "63814214-1d7"
Expires: Mon, 28 Nov 2022 00:01:56 GMT
Last-Modified: Fri, 25 Nov 2022 22:30:44 GMT
Server: ECS (dcb/7ECB)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bqgFfKbW9ebvKMxjq1vpna3ERSGkmWhd4h9JcpfttSFs-4hR5t-gGQ==
Age: 5472

region1.analytics.google.com/g/collect?v=2&tid=G-1HXHB1LN8S&gtm=2oeb90&_p=1200121944&_gaz=1&cid=650321630.1669500552&ul=en-us&sr=1280x1024&ir=1&_eu=EA&_s=1&sid=1669500551&sct=1&seg=0&dl=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&dt=Welcome%20-%20Safelite%20AutoGlass%C2%AE&en=page_view&_fv=1&_ss=1&ep.qp_acct_type=&ep.qp_gls_dmg=&ep.qp_start=fmg&ep.qp_quote_type=expired&ep.qp_bailout_reason=&ep.virtual_page_path=%2FFixMyGlass%2FServiceDetails.aspx%3Fstart%3Dfmg%26acct_type%3D%26gls_dmg%3D%26quote_type%3Dexpired%26bailout_reason%3D&up.session_logseqnum_cookie=541590849

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.analytics.google.com/g/collect?v=2&tid=G-1HXHB1LN8S&gtm=2oeb90&_p=1200121944&_gaz=1&cid=650321630.1669500552&ul=en-us&sr=1280x1024&ir=1&_eu=EA&_s=1&sid=1669500551&sct=1&seg=0&dl=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&dt=Welcome%20-%20Safelite%20AutoGlass%C2%AE&en=page_view&_fv=1&_ss=1&ep.qp_acct_type=&ep.qp_gls_dmg=&ep.qp_start=fmg&ep.qp_quote_type=expired&ep.qp_bailout_reason=&ep.virtual_page_path=%2FFixMyGlass%2FServiceDetails.aspx%3Fstart%3Dfmg%26acct_type%3D%26gls_dmg%3D%26quote_type%3Dexpired%26bailout_reason%3D&up.session_logseqnum_cookie=541590849
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-1HXHB1LN8S&gtm=2oeb90&_p=1200121944&_gaz=1&cid=650321630.1669500552&ul=en-us&sr=1280x1024&ir=1&_eu=EA&_s=1&sid=1669500551&sct=1&seg=0&dl=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&dt=Welcome%20-%20Safelite%20AutoGlass%C2%AE&en=page_view&_fv=1&_ss=1&ep.qp_acct_type=&ep.qp_gls_dmg=&ep.qp_start=fmg&ep.qp_quote_type=expired&ep.qp_bailout_reason=&ep.virtual_page_path=%2FFixMyGlass%2FServiceDetails.aspx%3Fstart%3Dfmg%26acct_type%3D%26gls_dmg%3D%26quote_type%3Dexpired%26bailout_reason%3D&up.session_logseqnum_cookie=541590849 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://fixmyglass.safelite.com
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-W987R4HVH1&gtm=2oeb90&_p=1200121944&cid=650321630.1669500552&ul=en-us&sr=1280x1024&_s=1&sid=1669500551&sct=1&seg=0&dl=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&dt=Welcome%20-%20Safelite%20AutoGlass%C2%AE&en=page_view&_fv=1&_nsi=1&_ss=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-W987R4HVH1&gtm=2oeb90&_p=1200121944&cid=650321630.1669500552&ul=en-us&sr=1280x1024&_s=1&sid=1669500551&sct=1&seg=0&dl=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&dt=Welcome%20-%20Safelite%20AutoGlass%C2%AE&en=page_view&_fv=1&_nsi=1&_ss=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-W987R4HVH1&gtm=2oeb90&_p=1200121944&cid=650321630.1669500552&ul=en-us&sr=1280x1024&_s=1&sid=1669500551&sct=1&seg=0&dl=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&dt=Welcome%20-%20Safelite%20AutoGlass%C2%AE&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://fixmyglass.safelite.com
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.redditstatic.com/ads/pixel.js

151.101.85.140

200 OK

7.7 kB

URL HTTP/2
www.redditstatic.com/ads/pixel.js
IP
151.101.85.140:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (25224)
Size
7.7 kB (7722 bytes)
Hash
3528fd00b652f61a266eb584d96f4fcc
d89e16aa1323c6c4f1ed3941122020684a599361
77efa9f2ddfdca7a45df37bbcd22fdaeb7b97161a2acd87e21eb78bdeaad1332

HTTP Headers

GET /ads/pixel.js HTTP/1.1
Host: www.redditstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Mon, 07 Nov 2022 16:45:46 GMT
etag: "3528fd00b652f61a266eb584d96f4fcc"
cache-control: public, max-age=60
content-encoding: gzip
content-type: application/javascript
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 26 Nov 2022 22:09:12 GMT
vary: Accept-Encoding,Origin
server: snooserv
report-to: {"group": "w3-reporting-nel", "max_age": 14400, "include_subdomains": true,  "endpoints": [{ "url": "https://w3-reporting-nel.reddit.com/reports" }]}, {"group": "w3-reporting", "max_age": 14400, "include_subdomains": true, "endpoints": [{ "url": "https://w3-reporting.reddit.com/reports" }]}
nel: {"report_to": "w3-reporting-nel", "max_age": 14400, "include_subdomains": false, "success_fraction": 0.02, "failure_fraction": 0.02}
content-length: 7722
X-Firefox-Spdy: h2

s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Db54314ce-c0ba-4792-3194-dab6cd8d1823%26type%3D6%26m%3D1&ex-fch=416613&ex-src=https://www.safelite.com/&ex-hargs=v%3D1.0%3Bc%3D6573295403726%3Bp%3DB54314CE-C0BA-4792-3194-DAB6CD8D1823&cb=253393628901345300

52.46.155.104

302 Found

0 B

URL HTTP/1.1
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Db54314ce-c0ba-4792-3194-dab6cd8d1823%26type%3D6%26m%3D1&ex-fch=416613&ex-src=https://www.safelite.com/&ex-hargs=v%3D1.0%3Bc%3D6573295403726%3Bp%3DB54314CE-C0BA-4792-3194-DAB6CD8D1823&cb=253393628901345300
IP
52.46.155.104:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /iu3?d=generic&ex-fargs=%3Fid%3Db54314ce-c0ba-4792-3194-dab6cd8d1823%26type%3D6%26m%3D1&ex-fch=416613&ex-src=https://www.safelite.com/&ex-hargs=v%3D1.0%3Bc%3D6573295403726%3Bp%3DB54314CE-C0BA-4792-3194-DAB6CD8D1823&cb=253393628901345300 HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: Server
Date: Sat, 26 Nov 2022 22:09:12 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: N29PFNKTHDY57GKP39XZ
Set-Cookie: ad-id=A0TuYlUhMUgthsyFeg4xx2U|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 22:09:12 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Db54314ce-c0ba-4792-3194-dab6cd8d1823%26type%3D6%26m%3D1&ex-fch=416613&ex-src=https://www.safelite.com/&ex-hargs=v%3D1.0%3Bc%3D6573295403726%3Bp%3DB54314CE-C0BA-4792-3194-DAB6CD8D1823&cb=253393628901345300&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3De63d9bfb-2d94-eb1e-a79d-c2f04b53ba7d%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.safelite.com/&ex-hargs=v%3D1.0%3Bc%3D6573295403726%3Bp%3DE63D9BFB-2D94-EB1E-A79D-C2F04B53BA7D&cb=188770530845431400

52.46.155.104

302 Found

0 B

URL HTTP/1.1
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3De63d9bfb-2d94-eb1e-a79d-c2f04b53ba7d%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.safelite.com/&ex-hargs=v%3D1.0%3Bc%3D6573295403726%3Bp%3DE63D9BFB-2D94-EB1E-A79D-C2F04B53BA7D&cb=188770530845431400
IP
52.46.155.104:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /iu3?d=generic&ex-fargs=%3Fid%3De63d9bfb-2d94-eb1e-a79d-c2f04b53ba7d%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.safelite.com/&ex-hargs=v%3D1.0%3Bc%3D6573295403726%3Bp%3DE63D9BFB-2D94-EB1E-A79D-C2F04B53BA7D&cb=188770530845431400 HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Server: Server
Date: Sat, 26 Nov 2022 22:09:12 GMT
Content-Length: 0
Connection: keep-alive
x-amz-rid: N699HB07SACDAXXPMW2W
Set-Cookie: ad-id=A3IW7wc0e0oVr-YyJTBiSLQ|t; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 22:09:12 GMT; Path=/; Secure; HttpOnly; SameSite=None
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Location: https://s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3De63d9bfb-2d94-eb1e-a79d-c2f04b53ba7d%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.safelite.com/&ex-hargs=v%3D1.0%3Bc%3D6573295403726%3Bp%3DE63D9BFB-2D94-EB1E-A79D-C2F04B53BA7D&cb=188770530845431400&dcc=t
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

googleads.g.doubleclick.net/pagead/viewthroughconversion/845361201/?random=1557622312&cv=9&fst=1669500552295&num=1&npa=1&label=pI2aCPTAv90BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dsafel0%3Bcat%3Dsafel000%3Bord%3D1%3Bnum%3D3860181539556%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=iI6CY8ifK-iIiQauh7TgCA&sscte=1&crd=

142.250.74.34

302 Found

42 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/845361201/?random=1557622312&cv=9&fst=1669500552295&num=1&npa=1&label=pI2aCPTAv90BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dsafel0%3Bcat%3Dsafel000%3Bord%3D1%3Bnum%3D3860181539556%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=iI6CY8ifK-iIiQauh7TgCA&sscte=1&crd=
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/viewthroughconversion/845361201/?random=1557622312&cv=9&fst=1669500552295&num=1&npa=1&label=pI2aCPTAv90BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dsafel0%3Bcat%3Dsafel000%3Bord%3D1%3Bnum%3D3860181539556%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&ocp_id=iI6CY8ifK-iIiQauh7TgCA&sscte=1&crd= HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/pagead/1p-conversion/845361201/?random=1557622312&cv=9&fst=1669500552295&num=1&npa=1&label=pI2aCPTAv90BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dsafel0%3Bcat%3Dsafel000%3Bord%3D1%3Bnum%3D3860181539556%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=iI6CY8ifK-iIiQauh7TgCA&random=1915365920&resp=GooglemKTybQhCsO
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 22:24:12 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

stats.g.doubleclick.net/g/collect?v=2&tid=G-1HXHB1LN8S&cid=650321630.1669500552&gtm=2oeb90&aip=1

142.251.1.154

204 No Content

0 B

URL HTTP/2
stats.g.doubleclick.net/g/collect?v=2&tid=G-1HXHB1LN8S&cid=650321630.1669500552&gtm=2oeb90&aip=1
IP
142.251.1.154:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-1HXHB1LN8S&cid=650321630.1669500552&gtm=2oeb90&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://fixmyglass.safelite.com
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tags.w55c.net/rs?id=f025ff32750c4b3d8489c481868a5977&t=marketing

52.57.54.93

302

0 B

URL HTTP/1.1
tags.w55c.net/rs?id=f025ff32750c4b3d8489c481868a5977&t=marketing
IP
52.57.54.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /rs?id=f025ff32750c4b3d8489c481868a5977&t=marketing HTTP/1.1
Host: tags.w55c.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 
Cache-Control: no-cache, must-revalidate
Date: Sat, 26 Nov 2022 22:09:12 GMT
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Location: https://tags.w55c.net/rs?sccid=04a00d1d-002b-b9ec-5a21-59e91d3b6757&scc=1&id=f025ff32750c4b3d8489c481868a5977&t=marketing
Pragma: no-cache
Server: Retargeting/595ea14#595ea1444a96c0bdac4aa333a73d7028cf966fc7 i-0c6774dcbd8510e59@eu-central-1a@dxedge-app-eu-central-1-prod-asg
Set-Cookie: wfivefivec=bUxd7kiq1OZ3mg2; Domain=.w55c.net; Expires=Wed, 27-Dec-2023 08:09:12 GMT; Path=/; SameSite=None; Secure
Strict-Transport-Security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive

s.adroll.com/j/exp/O53UANQX5BAIBBI2PJDMVV/index.js

143.204.55.31

302 Moved Temporarily

0 B

URL HTTP/1.1
s.adroll.com/j/exp/O53UANQX5BAIBBI2PJDMVV/index.js
IP
143.204.55.31:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /j/exp/O53UANQX5BAIBBI2PJDMVV/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Sat, 26 Nov 2022 13:04:38 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/exp/index.js
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
Age: 32673
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gji2gSLF6BwDSpl8g7-KsQ81vQQyqIXXRzxGwLwhR-E5NrDY4MW69g==

d3rr3d0n31t48m.cloudfront.net/widget/triggerRunner.js?v=c317b78

143.204.55.112

200 OK

3.8 kB

URL HTTP/2
d3rr3d0n31t48m.cloudfront.net/widget/triggerRunner.js?v=c317b78
IP
143.204.55.112:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (583)
Size
3.8 kB (3772 bytes)
Hash
6f8d2d39d5726872bebba803a41bb024
2b7c6aa4941537ae52e1f32bfe642dfd440f5cbc
1de43985c42cfd2c6d39a3b7b30957bc1dde1208bd5bbbc94695d4c357383a01

HTTP Headers

GET /widget/triggerRunner.js?v=c317b78 HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 3772
date: Tue, 15 Nov 2022 21:40:34 GMT
last-modified: Tue, 15 Nov 2022 21:39:30 GMT
etag: "6f8d2d39d5726872bebba803a41bb024"
cache-control: max-age=2592000, public
content-encoding: gzip
x-amz-meta-mtime: 1668548367.68
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7ruw2xgIbS-E5tmalsoCSGhWAEny2Vsp8l5zovyGoAyXOTrsXeWkNg==
age: 952119
X-Firefox-Spdy: h2

d.adroll.com/ipixel/O53UANQX5BAIBBI2PJDMVV/ZGWOKQTCEFHFFOHGR2GNYN?name=165763d0&order_id=

63.32.155.187

200 OK

42 B

URL HTTP/2
d.adroll.com/ipixel/O53UANQX5BAIBBI2PJDMVV/ZGWOKQTCEFHFFOHGR2GNYN?name=165763d0&order_id=
IP
63.32.155.187:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /ipixel/O53UANQX5BAIBBI2PJDMVV/ZGWOKQTCEFHFFOHGR2GNYN?name=165763d0&order_id= HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:12 GMT
content-type: image/gif
content-length: 42
server: nginx/1.22.0
cache-control: no-transform,public,max-age=300,s-maxage=900
vary: Cookie
X-Firefox-Spdy: h2

d.adroll.com/consent/check/O53UANQX5BAIBBI2PJDMVV?pv=59348104145.25331&arrfrr=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&_s=9c408deebc24123a2e52f0792a802ba5&_b=2

63.32.155.187

200 OK

462 B

URL HTTP/2
d.adroll.com/consent/check/O53UANQX5BAIBBI2PJDMVV?pv=59348104145.25331&arrfrr=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&_s=9c408deebc24123a2e52f0792a802ba5&_b=2
IP
63.32.155.187:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (462), with no line terminators
Size
462 B (462 bytes)
Hash
48a04c07be8054e994116cbf1fe80d5a
e7377756b4b7c97369b46e052838e17c7198d641
9d1c705acbaf0171688a9806c8497c6ccca41c073100585220bf2006a096177f

HTTP Headers

GET /consent/check/O53UANQX5BAIBBI2PJDMVV?pv=59348104145.25331&arrfrr=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&_s=9c408deebc24123a2e52f0792a802ba5&_b=2 HTTP/1.1
Host: d.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:12 GMT
content-type: application/javascript
content-length: 462
server: nginx/1.22.0
X-Firefox-Spdy: h2

stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-16545851-18&cid=650321630.1669500552&jid=288962357&_v=5.7.2&z=1384829173

142.251.1.154

302 Found

368 B

URL HTTP/2
stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-16545851-18&cid=650321630.1669500552&jid=288962357&_v=5.7.2&z=1384829173
IP
142.251.1.154:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
368 B (368 bytes)
Hash
2935151cb50ccdc6cddfe642e5753692
8374d9cebda49d17c78a16b980dbbe82ece540b9
ee0c4e3aa3fae2e02e9ed60fc3933920785f752644f57ec434169b10bab599f5

HTTP Headers

GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-16545851-18&cid=650321630.1669500552&jid=288962357&_v=5.7.2&z=1384829173 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fixmyglass.safelite.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
location: https://www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-16545851-18&cid=650321630.1669500552&jid=288962357&_v=5.7.2&z=1384829173
access-control-allow-origin: *
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: Golfe2
content-length: 368
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
30f833b25d6e5af2229d9584c6f6cf97
ee79c3fa994d53c1d0687ca61353d63cce459e25
1bc091991c4663dbc86ae735e47ddc3e887a24661050ad9f24b8d458bfd11a6b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

d3rr3d0n31t48m.cloudfront.net/widget/widget.js?v=90709db

143.204.55.112

200 OK

48 kB

URL HTTP/2
d3rr3d0n31t48m.cloudfront.net/widget/widget.js?v=90709db
IP
143.204.55.112:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (778)
Size
48 kB (47685 bytes)
Hash
db6577d43efa27de385813e4eb9bf7a8
8a6816a745cf7445b211d08c7a0741e1e3e33e93
e946a88e3447423c1cea32a407f7f060ce07bf2947c2e1c56ee6e3041bced35f

HTTP Headers

GET /widget/widget.js?v=90709db HTTP/1.1
Host: d3rr3d0n31t48m.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 47685
date: Tue, 15 Nov 2022 21:40:33 GMT
last-modified: Tue, 15 Nov 2022 21:39:31 GMT
etag: "db6577d43efa27de385813e4eb9bf7a8"
cache-control: max-age=2592000, public
content-encoding: gzip
x-amz-meta-mtime: 1668548366.14
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mQo3VY4WLKS5o_pjiJqm1BHFyC6VfJSU4jEkVCS2ZYMG_XBtlEppSg==
age: 952120
X-Firefox-Spdy: h2

s.adroll.com/j/pre/O53UANQX5BAIBBI2PJDMVV/ZGWOKQTCEFHFFOHGR2GNYN/fpconsent.js

143.204.55.31

302 Moved Temporarily

0 B

URL HTTP/1.1
s.adroll.com/j/pre/O53UANQX5BAIBBI2PJDMVV/ZGWOKQTCEFHFFOHGR2GNYN/fpconsent.js
IP
143.204.55.31:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /j/pre/O53UANQX5BAIBBI2PJDMVV/ZGWOKQTCEFHFFOHGR2GNYN/fpconsent.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Moved Temporarily
Content-Type: application/xml
Content-Length: 0
Connection: keep-alive
Date: Sat, 26 Nov 2022 03:53:12 GMT
Server: AmazonS3
Location: https://s.adroll.com/j/pre/index.js
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
Age: 65759
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 40wE2jOKk3cairCsoxaN3FSrTK7-X7I1F8ZiDPcxGyJxKYCqWbzwPQ==

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ada1e2017391a6357545f87befe86806
efe73a86d0d3e889a69ee5e776b3793c6d3ab524
d62b9103639d225aea1a3c2a48c4702f39674d52e252fc77e0bbec785e3c6d3b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=158300
Date: Sat, 26 Nov 2022 22:09:12 GMT
Etag: "6382517d-1d7"
Expires: Mon, 28 Nov 2022 18:07:32 GMT
Last-Modified: Sat, 26 Nov 2022 17:48:45 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 9ntcfn5OCf__blEc_Y_i6dEMN697Q48SOsLe30m7Wmg70Kh9SNQTjQ==
Age: 1127

tags.w55c.net/rs?sccid=04a00d1d-002b-b9ec-5a21-59e91d3b6757&scc=1&id=f025ff32750c4b3d8489c481868a5977&t=marketing

52.57.54.93

200

42 B

URL HTTP/1.1
tags.w55c.net/rs?sccid=04a00d1d-002b-b9ec-5a21-59e91d3b6757&scc=1&id=f025ff32750c4b3d8489c481868a5977&t=marketing
IP
52.57.54.93:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292

HTTP Headers

GET /rs?sccid=04a00d1d-002b-b9ec-5a21-59e91d3b6757&scc=1&id=f025ff32750c4b3d8489c481868a5977&t=marketing HTTP/1.1
Host: tags.w55c.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fixmyglass.safelite.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 
Cache-Control: no-cache, must-revalidate
Content-Type: image/gif
Date: Sat, 26 Nov 2022 22:09:12 GMT
Expires: Fri, 01 Jan 1990 00:00:00 GMT
Pragma: no-cache
Server: Retargeting/595ea14#595ea1444a96c0bdac4aa333a73d7028cf966fc7 i-001aff4bca77297e8@eu-central-1b@dxedge-app-eu-central-1-prod-asg
Strict-Transport-Security: max-age=2592000; includeSubDomains
Content-Length: 42
Connection: keep-alive

s.adroll.com/j/exp/index.js

143.204.55.31

200 OK

28 B

URL HTTP/1.1
s.adroll.com/j/exp/index.js
IP
143.204.55.31:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
28 B (28 bytes)
Hash
5816cced8568d223aa09d889f300692b
95cab5e474d7391762c3da5c7dc50fcf05df529f
f59e5f34a941183aacaed25322ac0856628493c2cfd936ded3fddc0a49510e52

HTTP Headers

GET /j/exp/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fixmyglass.safelite.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 28
Connection: keep-alive
Last-Modified: Fri, 14 Oct 2022 18:57:24 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: 3TnMO1iw0qw17MhnYw4sprJhuU7ahGp7
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 26 Nov 2022 20:57:53 GMT
Etag: "5816cced8568d223aa09d889f300692b"
Vary: Accept-Encoding
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
Age: 4482
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XQeqkGNAPmoHoJ3F28yeVaeUwxJTC2_MKjdc-xI1nRP7RcufQ3aPTA==

www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-16545851-18&cid=650321630.1669500552&jid=288962357&_v=5.7.2&z=1384829173

142.250.74.164

302 Found

0 B

URL HTTP/2
www.google.com/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-16545851-18&cid=650321630.1669500552&jid=288962357&_v=5.7.2&z=1384829173
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-16545851-18&cid=650321630.1669500552&jid=288962357&_v=5.7.2&z=1384829173 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fixmyglass.safelite.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/ads/ga-audiences?v=1&aip=1&t=sr&_r=4&tid=UA-16545851-18&cid=650321630.1669500552&jid=288962357&_v=5.7.2&z=1384829173&slf_rd=1&random=1955557919
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/pagead/1p-conversion/845361201/?random=2121186103&cv=9&fst=1669500552308&num=1&npa=1&label=2ZVdCKzdyd0BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfixmy005%3Bord%3D1%3Bnum%3D6367672819210%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=iI6CY6G5GtbIZbn2vOAN&random=470851452&resp=GooglemKTybQhCsO

142.250.74.164

302 Found

42 B

URL HTTP/2
www.google.com/pagead/1p-conversion/845361201/?random=2121186103&cv=9&fst=1669500552308&num=1&npa=1&label=2ZVdCKzdyd0BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfixmy005%3Bord%3D1%3Bnum%3D6367672819210%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=iI6CY6G5GtbIZbn2vOAN&random=470851452&resp=GooglemKTybQhCsO
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-conversion/845361201/?random=2121186103&cv=9&fst=1669500552308&num=1&npa=1&label=2ZVdCKzdyd0BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfixmy005%3Bord%3D1%3Bnum%3D6367672819210%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=iI6CY6G5GtbIZbn2vOAN&random=470851452&resp=GooglemKTybQhCsO HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6279403.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/845361201/?random=2121186103&cv=9&fst=1669500552308&num=1&npa=1&label=2ZVdCKzdyd0BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfixmy005%3Bord%3D1%3Bnum%3D6367672819210%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=iI6CY6G5GtbIZbn2vOAN&random=470851452&resp=GooglemKTybQhCsO&ipr=y&prhg=0
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.ads-twitter.com/uwt.js

151.101.84.157

200 OK

15 kB

URL HTTP/2
static.ads-twitter.com/uwt.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (57596), with no line terminators
Size
15 kB (15375 bytes)
Hash
573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7

HTTP Headers

GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Sat, 26 Nov 2022 22:09:12 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1655-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2

www.google.com/pagead/1p-conversion/845361201/?random=1557622312&cv=9&fst=1669500552295&num=1&npa=1&label=pI2aCPTAv90BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dsafel0%3Bcat%3Dsafel000%3Bord%3D1%3Bnum%3D3860181539556%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=iI6CY8ifK-iIiQauh7TgCA&random=1915365920&resp=GooglemKTybQhCsO

142.250.74.164

302 Found

42 B

URL HTTP/2
www.google.com/pagead/1p-conversion/845361201/?random=1557622312&cv=9&fst=1669500552295&num=1&npa=1&label=pI2aCPTAv90BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dsafel0%3Bcat%3Dsafel000%3Bord%3D1%3Bnum%3D3860181539556%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=iI6CY8ifK-iIiQauh7TgCA&random=1915365920&resp=GooglemKTybQhCsO
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-conversion/845361201/?random=1557622312&cv=9&fst=1669500552295&num=1&npa=1&label=pI2aCPTAv90BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dsafel0%3Bcat%3Dsafel000%3Bord%3D1%3Bnum%3D3860181539556%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=iI6CY8ifK-iIiQauh7TgCA&random=1915365920&resp=GooglemKTybQhCsO HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6279403.fls.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
location: https://www.google.no/pagead/1p-conversion/845361201/?random=1557622312&cv=9&fst=1669500552295&num=1&npa=1&label=pI2aCPTAv90BELHgjJMD&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dsafel0%3Bcat%3Dsafel000%3Bord%3D1%3Bnum%3D3860181539556%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&fmt=3&ctc_id=CAIVAgAAAB0CAAAA&ct_cookie_present=false&sscte=1&crd=&is_vtc=1&ocp_id=iI6CY8ifK-iIiQauh7TgCA&random=1915365920&resp=GooglemKTybQhCsO&ipr=y&prhg=0
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

s.adroll.com/j/pre/index.js

143.204.55.31

200 OK

0 B

URL HTTP/1.1
s.adroll.com/j/pre/index.js
IP
143.204.55.31:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /j/pre/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fixmyglass.safelite.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 0
Connection: keep-alive
Last-Modified: Wed, 15 Jan 2020 23:54:18 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: nQEe8wQ7h0ROt7P4GJfDfstto6x684Hy
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 26 Nov 2022 03:36:14 GMT
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
Age: 68783
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: Hit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2CZGRSn8HOsw1Op2hCvsU6fZhTv_yQlawPid1e8N7Qi48tjYFBUEJQ==

52.46.155.104

200 OK

65 B

URL HTTP/1.1
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3Db54314ce-c0ba-4792-3194-dab6cd8d1823%26type%3D6%26m%3D1&ex-fch=416613&ex-src=https://www.safelite.com/&ex-hargs=v%3D1.0%3Bc%3D6573295403726%3Bp%3DB54314CE-C0BA-4792-3194-DAB6CD8D1823&cb=253393628901345300&dcc=t
IP
52.46.155.104:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text
Size
65 B (65 bytes)
Hash
22fdf49482d8200e8f305bbe262eff14
f254bd4053267c2cf46675613e689016d8b7f775
115d83ece49fd1c5769409aab9d78572eed86cd38a0556b4cdeeac82c83091d3

HTTP Headers

GET /iu3?d=generic&ex-fargs=%3Fid%3Db54314ce-c0ba-4792-3194-dab6cd8d1823%26type%3D6%26m%3D1&ex-fch=416613&ex-src=https://www.safelite.com/&ex-hargs=v%3D1.0%3Bc%3D6573295403726%3Bp%3DB54314CE-C0BA-4792-3194-DAB6CD8D1823&cb=253393628901345300&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6279403.fls.doubleclick.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Server
Date: Sat, 26 Nov 2022 22:09:12 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 65
Connection: keep-alive
x-amz-rid: R8J0EFJ03M04CHQ3Z5PA
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

52.46.155.104

200 OK

65 B

URL HTTP/1.1
s.amazon-adsystem.com/iu3?d=generic&ex-fargs=%3Fid%3De63d9bfb-2d94-eb1e-a79d-c2f04b53ba7d%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.safelite.com/&ex-hargs=v%3D1.0%3Bc%3D6573295403726%3Bp%3DE63D9BFB-2D94-EB1E-A79D-C2F04B53BA7D&cb=188770530845431400&dcc=t
IP
52.46.155.104:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text
Size
65 B (65 bytes)
Hash
22fdf49482d8200e8f305bbe262eff14
f254bd4053267c2cf46675613e689016d8b7f775
115d83ece49fd1c5769409aab9d78572eed86cd38a0556b4cdeeac82c83091d3

HTTP Headers

GET /iu3?d=generic&ex-fargs=%3Fid%3De63d9bfb-2d94-eb1e-a79d-c2f04b53ba7d%26type%3D55%26m%3D1&ex-fch=416613&ex-src=https://www.safelite.com/&ex-hargs=v%3D1.0%3Bc%3D6573295403726%3Bp%3DE63D9BFB-2D94-EB1E-A79D-C2F04B53BA7D&cb=188770530845431400&dcc=t HTTP/1.1
Host: s.amazon-adsystem.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://6279403.fls.doubleclick.net/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Server
Date: Sat, 26 Nov 2022 22:09:12 GMT
Content-Type: text/html;charset=ISO-8859-1
Content-Length: 65
Connection: keep-alive
x-amz-rid: STF9BPWBJ411SRK6M0QG
Cache-Control: max-age=0, no-cache, no-store, private, must-revalidate, s-maxage=0
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
p3p: policyref="https://www.amazon.com/w3c/p3p.xml", CP="PSAo PSDo OUR SAM OTR DSP COR"
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

cdn.cookielaw.org/scripttemplates/6.5.0/otBannerSdk.js

104.16.148.64

200 OK

70 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/6.5.0/otBannerSdk.js
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65456)
Size
70 kB (69711 bytes)
Hash
02f6c3e151d87b81ff427c94ea3f2fe7
5ee5ecafba205289c98edf7b928709a5991a134e
4a7a778f50c01dabcf64163f5e4fed44cb0f4cf584040ba3061791e3673b26a6

HTTP Headers

GET /scripttemplates/6.5.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:12 GMT
content-type: application/javascript
content-length: 69711
content-encoding: gzip
content-md5: AvbD4VHYe4H/QnyU6j8v5w==
last-modified: Thu, 27 Aug 2020 03:43:22 GMT
etag: 0x8D84A3B58DE8819
x-ms-request-id: 844fd01f-201e-00eb-236c-c4261a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 72780
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7705f277fed3b523-OSL
X-Firefox-Spdy: h2

www.google.com/pagead/1p-user-list/955792435/?random=1669500551613&cv=11&fst=1669500000000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&tiba=Welcome%20-%20Safelite%20AutoGlass%C2%AE&fmt=3&is_vtc=1&random=3360602066&rmt_tld=0&ipr=y

142.250.74.164

200 OK

42 B

URL HTTP/2
www.google.com/pagead/1p-user-list/955792435/?random=1669500551613&cv=11&fst=1669500000000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&tiba=Welcome%20-%20Safelite%20AutoGlass%C2%AE&fmt=3&is_vtc=1&random=3360602066&rmt_tld=0&ipr=y
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/955792435/?random=1669500551613&cv=11&fst=1669500000000&bg=ffffff&guid=ON&async=1&gtm=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&tiba=Welcome%20-%20Safelite%20AutoGlass%C2%AE&fmt=3&is_vtc=1&random=3360602066&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 22:09:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

p.tvpixel.com/com.snowplowanalytics.snowplow/tp2

54.165.199.227

200 OK

0 B

URL HTTP/2
p.tvpixel.com/com.snowplowanalytics.snowplow/tp2
IP
54.165.199.227:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: p.tvpixel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://fixmyglass.safelite.com/
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:12 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://fixmyglass.safelite.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2

participants.evolv.ai/v1/48ce15a4d0/data

143.204.55.113

202 Accepted

0 B

URL HTTP/2
participants.evolv.ai/v1/48ce15a4d0/data
IP
143.204.55.113:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /v1/48ce15a4d0/data HTTP/1.1
Host: participants.evolv.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1636
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
content-length: 0
server: CloudFront
date: Sat, 26 Nov 2022 22:09:13 GMT
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: https://fixmyglass.safelite.com
access-control-allow-credentials: true
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: tRromi69sBBmz0MmwVaYyiymMiAZnIvfPwRIabFkdtJVW3zgtJgPPQ==
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
5e2195a89bc40a0f86d65f5bd37b2800
73fffbca1a817efcd4e556889943ad7ae52d1289
33b9d87931b2eca381bbbd0dbf9870f04faba4f54b151fb56ee1f7efdbfb6655

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3143
Cache-Control: max-age=139073
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:13 GMT
Etag: "6381fe83-139"
Expires: Mon, 28 Nov 2022 12:47:06 GMT
Last-Modified: Sat, 26 Nov 2022 11:54:43 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 313

cdn.cookielaw.org/consent/7ae447d6-49bb-4311-a80d-369d48cae1cc/9c69df96-0d0e-4507-8cbe-16a3b80c3d39/en.json

104.16.148.64

200 OK

16 kB

URL HTTP/2
cdn.cookielaw.org/consent/7ae447d6-49bb-4311-a80d-369d48cae1cc/9c69df96-0d0e-4507-8cbe-16a3b80c3d39/en.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , Unicode text, UTF-8 text, with very long lines (65508), with no line terminators
Size
16 kB (16518 bytes)
Hash
eecc9ddfdd804e4aa51bea11c791f6dc
8b10c9145bd1859540abfab62949e0ab057e9b05
2524da5d88195122059dbf8cfaa8e42a79a94b570a648df4dbac20b8f6346014

HTTP Headers

GET /consent/7ae447d6-49bb-4311-a80d-369d48cae1cc/9c69df96-0d0e-4507-8cbe-16a3b80c3d39/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fixmyglass.safelite.com/
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:13 GMT
content-type: application/x-javascript
content-length: 16518
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: 7syd392ATkqlG+oRx5H23A==
last-modified: Thu, 16 Sep 2021 09:13:34 GMT
etag: 0x8D978F24282552C
x-ms-request-id: 1cb87847-301e-0115-219a-595c2a000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Sun, 27 Nov 2022 22:09:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7705f2788b9d0b4d-OSL
X-Firefox-Spdy: h2

alb.reddit.com/rp.gif?ts=1669500552694&id=t2_7hzgcw77&event=Lead&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=c8d81346-9e16-43d1-841d-34c96248c41e&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8

151.101.85.140

200 OK

42 B

URL HTTP/2
alb.reddit.com/rp.gif?ts=1669500552694&id=t2_7hzgcw77&event=Lead&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=c8d81346-9e16-43d1-841d-34c96248c41e&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8
IP
151.101.85.140:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /rp.gif?ts=1669500552694&id=t2_7hzgcw77&event=Lead&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=c8d81346-9e16-43d1-841d-34c96248c41e&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Sat, 26 Nov 2022 22:09:13 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2

alb.reddit.com/rp.gif?ts=1669500552692&id=t2_7hzgcw77&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=c8d81346-9e16-43d1-841d-34c96248c41e&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8

151.101.85.140

200 OK

42 B

URL HTTP/2
alb.reddit.com/rp.gif?ts=1669500552692&id=t2_7hzgcw77&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=c8d81346-9e16-43d1-841d-34c96248c41e&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8
IP
151.101.85.140:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /rp.gif?ts=1669500552692&id=t2_7hzgcw77&event=PageVisit&m.itemCount=&m.value=&m.valueDecimal=&m.currency=&m.transactionId=&m.customEventName=&m.products=&uuid=c8d81346-9e16-43d1-841d-34c96248c41e&aaid=&em=&external_id=&idfa=&integration=reddit&opt_out=0&sh=1280&sw=1024&v=rdt_1967aea8 HTTP/1.1
Host: alb.reddit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Varnish
retry-after: 0
cross-origin-resource-policy: cross-origin
content-type: image/gif
accept-ranges: bytes
date: Sat, 26 Nov 2022 22:09:13 GMT
via: 1.1 varnish
content-length: 42
X-Firefox-Spdy: h2

participants.evolv.ai/v1/48ce15a4d0/data

143.204.55.113

202 Accepted

0 B

URL HTTP/2
participants.evolv.ai/v1/48ce15a4d0/data
IP
143.204.55.113:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /v1/48ce15a4d0/data HTTP/1.1
Host: participants.evolv.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 464
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 202 Accepted
content-length: 0
server: CloudFront
date: Sat, 26 Nov 2022 22:09:13 GMT
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-origin: https://fixmyglass.safelite.com
access-control-allow-credentials: true
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1WONn0VOKCRCHN00msMoA4QWeqgxtJ_Zlap8cGwjeFEW1u1PX4Fxgg==
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

312 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
312 B (312 bytes)
Hash
26d119e14caa916f47bc972ea05225da
2148cabc2114c1ae37640d9521669d39c284204c
397f4293f8fab9d5d6aa6563eac4e7a27c72bbd0a6d9a7eb28585c85284fef35

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5278
Cache-Control: max-age=95839
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:13 GMT
Etag: "63814d4a-138"
Expires: Mon, 28 Nov 2022 00:46:32 GMT
Last-Modified: Fri, 25 Nov 2022 23:18:34 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 312

t.co/i/adsct?bci=3&eci=2&event_id=77b45363-51bb-40ff-8b1a-cbe4fa04c3f1&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=60dc73eb-1ec9-4dc6-a813-0b717ca6383a&tw_document_href=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfinds0%3Bord%3D2302056894543%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&tw_document_referrer=https%3A%2F%2Fadservice.google.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=nw48e&type=javascript&version=2.3.29

104.244.42.5

200 OK

43 B

URL HTTP/2
t.co/i/adsct?bci=3&eci=2&event_id=77b45363-51bb-40ff-8b1a-cbe4fa04c3f1&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=60dc73eb-1ec9-4dc6-a813-0b717ca6383a&tw_document_href=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfinds0%3Bord%3D2302056894543%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&tw_document_referrer=https%3A%2F%2Fadservice.google.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=nw48e&type=javascript&version=2.3.29
IP
104.244.42.5:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=77b45363-51bb-40ff-8b1a-cbe4fa04c3f1&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=60dc73eb-1ec9-4dc6-a813-0b717ca6383a&tw_document_href=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfinds0%3Bord%3D2302056894543%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&tw_document_referrer=https%3A%2F%2Fadservice.google.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=nw48e&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:12 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=5d81c9ef-5632-4e3c-a875-16c4725e1a6f; Max-Age=63072000; Expires=Mon, 25 Nov 2024 22:09:13 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 7d75ea86996c10db
strict-transport-security: max-age=0
x-response-time: 102
x-connection-hash: 95dd707f16274728d02e8d57eccc4fb6a1fbcb4bd2d1d79bf8e40ef38d85fa4f
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/6.5.0/assets/otFlat.json

104.16.148.64

200 OK

3.2 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/6.5.0/assets/otFlat.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (9672)
Size
3.2 kB (3248 bytes)
Hash
3601d04c70865b01a6344d227b7ec6f0
1dcecfe2c1f6284c0d82c92b761b5d7c96783280
a16bad1d7819c7bf263ab3568ae2b479a350c2ff743161edab51f4d966cea07a

HTTP Headers

GET /scripttemplates/6.5.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fixmyglass.safelite.com/
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:13 GMT
content-type: application/json
content-length: 3248
content-encoding: gzip
content-md5: NgHQTHCGWwGmNE0ie37G8A==
last-modified: Thu, 27 Aug 2020 03:43:16 GMT
etag: 0x8D84A3B556B9C39
x-ms-request-id: 7a3ef88d-401e-0051-4e32-5ac613000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7705f2797c670b4d-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/6.5.0/assets/v2/otPcTab.json

104.16.148.64

200 OK

11 kB

URL HTTP/2
cdn.cookielaw.org/scripttemplates/6.5.0/assets/v2/otPcTab.json
IP
104.16.148.64:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (31220)
Size
11 kB (11144 bytes)
Hash
f0ef8cac0e65eae64017cac0fff35114
c4c1b88c7f877648c7268fa7564fb738c39a3f3a
7a468346441c5f008231b917144cd8771b78f9e1aee7c55942269547460e8ea4

HTTP Headers

GET /scripttemplates/6.5.0/assets/v2/otPcTab.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fixmyglass.safelite.com/
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:13 GMT
content-type: application/json
content-length: 11144
content-encoding: gzip
content-md5: 8O+MrA5l6uZAF8rA//NRFA==
last-modified: Thu, 27 Aug 2020 03:43:19 GMT
etag: 0x8D84A3B56BE267C
x-ms-request-id: ec1bb74e-c01e-0129-4332-5ae8f1000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7705f2797c6d0b4d-OSL
X-Firefox-Spdy: h2

analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=77b45363-51bb-40ff-8b1a-cbe4fa04c3f1&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=60dc73eb-1ec9-4dc6-a813-0b717ca6383a&tw_document_href=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfinds0%3Bord%3D2302056894543%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&tw_document_referrer=https%3A%2F%2Fadservice.google.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=nw48e&type=javascript&version=2.3.29

104.244.42.131

200 OK

43 B

URL HTTP/2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=77b45363-51bb-40ff-8b1a-cbe4fa04c3f1&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=60dc73eb-1ec9-4dc6-a813-0b717ca6383a&tw_document_href=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfinds0%3Bord%3D2302056894543%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&tw_document_referrer=https%3A%2F%2Fadservice.google.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=nw48e&type=javascript&version=2.3.29
IP
104.244.42.131:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=77b45363-51bb-40ff-8b1a-cbe4fa04c3f1&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=60dc73eb-1ec9-4dc6-a813-0b717ca6383a&tw_document_href=https%3A%2F%2F6279403.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6279403%3Btype%3Dfixmy0%3Bcat%3Dfinds0%3Bord%3D2302056894543%3Bgtm%3D2wgb90%3Bauiddc%3D549793862.1669500552%3B~oref%3Dhttps%253A%252F%252Ffixmyglass.safelite.com%252FFixMyGlass%252FServiceDetails.aspx%253F%2526sqid%253Da16a9e4a-c55d-4096-aece-0ef22247c235%2526utm_source%253Dsaved_omni%2526utm_medium%253Demail%2526utm_campaign%253Dsaved_cashquote_omni%2526utm_content%253Dsafelite_advantage%2526sqe%253DExpired&tw_document_referrer=https%3A%2F%2Fadservice.google.com%2F&tw_iframe_status=1&tw_order_quantity=0&tw_sale_amount=0&txn_id=nw48e&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:12 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_pB4RcDfxaG1LHuxDze3KsQ=="; Max-Age=63072000; Expires=Mon, 25 Nov 2024 22:09:13 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 7ce7697ac81abda3
strict-transport-security: max-age=631138519
x-response-time: 105
x-connection-hash: 0e756bc54cb34eb562443596e72345e929ec3109cb577ca5f642bd516f7009bd
X-Firefox-Spdy: h2

p.tvpixel.com/com.snowplowanalytics.snowplow/tp2

54.165.199.227

200 OK

2 B

URL HTTP/2
p.tvpixel.com/com.snowplowanalytics.snowplow/tp2
IP
54.165.199.227:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df

HTTP Headers

POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: p.tvpixel.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1910
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:13 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=46aa3d5e-c8e7-4909-80cc-7714af0c4426; Expires=Sun, 26 Nov 2023 22:09:13 GMT; Domain=tvpixel.com; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://fixmyglass.safelite.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2

s.adroll.com/j/pre/O53UANQX5BAIBBI2PJDMVV/ZGWOKQTCEFHFFOHGR2GNYN/index.js

143.204.55.31

200 OK

0 B

URL HTTP/1.1
s.adroll.com/j/pre/O53UANQX5BAIBBI2PJDMVV/ZGWOKQTCEFHFFOHGR2GNYN/index.js
IP
143.204.55.31:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /j/pre/O53UANQX5BAIBBI2PJDMVV/ZGWOKQTCEFHFFOHGR2GNYN/index.js HTTP/1.1
Host: s.adroll.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Content-Length: 0
Connection: keep-alive
Last-Modified: Thu, 10 Nov 2022 19:08:51 GMT
X-Amz-Server-Side-Encryption: AES256
X-Amz-Version-Id: SoRZIq_yclJYhDhcm8dov4YMrEyurz4D
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 26 Nov 2022 22:09:14 GMT
Cache-Control: max-age=3600, must-revalidate
Etag: "d41d8cd98f00b204e9800998ecf8427e"
Vary: Accept-Encoding
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 600
Access-Control-Allow-Methods: GET
Access-Control-Allow-Headers: *
X-Cache: RefreshHit from cloudfront
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Ijb4uJmPgexyODs_asFFEsOW3M98BUyaGcqBBVxjM-Tv6DbD0uI8WQ==

www.facebook.com/tr/?id=951042898361822&ev=PageView&dl=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&rl=&if=false&ts=1669500553362&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669500553359.1609171169&eid=ob3_plugin-set_a6c8cb056e64d7a9378ecbef12f6d1a40682a9e46b1202a60f71ee47311669cd&it=1669500552605&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=951042898361822&ev=PageView&dl=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&rl=&if=false&ts=1669500553362&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669500553359.1609171169&eid=ob3_plugin-set_a6c8cb056e64d7a9378ecbef12f6d1a40682a9e46b1202a60f71ee47311669cd&it=1669500552605&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=951042898361822&ev=PageView&dl=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&rl=&if=false&ts=1669500553362&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1669500553359.1609171169&eid=ob3_plugin-set_a6c8cb056e64d7a9378ecbef12f6d1a40682a9e46b1202a60f71ee47311669cd&it=1669500552605&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 26 Nov 2022 22:09:13 GMT
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=951042898361822&ev=FB_FixMyGlass_Service%20Details_Funnel%20Entry%20_Medium%20Intent&dl=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&rl=&if=false&ts=1669500553368&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=30&fbp=fb.1.1669500553359.1609171169&eid=ob3_plugin-set_d87d10419aa990106d67aa1b6dc44a310a7dd141198f28a24ba15b7bbebcdd4d&it=1669500552605&coo=false&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=951042898361822&ev=FB_FixMyGlass_Service%20Details_Funnel%20Entry%20_Medium%20Intent&dl=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&rl=&if=false&ts=1669500553368&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=30&fbp=fb.1.1669500553359.1609171169&eid=ob3_plugin-set_d87d10419aa990106d67aa1b6dc44a310a7dd141198f28a24ba15b7bbebcdd4d&it=1669500552605&coo=false&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=951042898361822&ev=FB_FixMyGlass_Service%20Details_Funnel%20Entry%20_Medium%20Intent&dl=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&rl=&if=false&ts=1669500553368&sw=1280&sh=1024&v=2.9.89&r=stable&ec=1&o=30&fbp=fb.1.1669500553359.1609171169&eid=ob3_plugin-set_d87d10419aa990106d67aa1b6dc44a310a7dd141198f28a24ba15b7bbebcdd4d&it=1669500552605&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sat, 26 Nov 2022 22:09:13 GMT
X-Firefox-Spdy: h2

service.force.com/embeddedservice/5.0/esw.html?parent=https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired

161.71.0.166

200 OK

160 B

URL HTTP/1.1
service.force.com/embeddedservice/5.0/esw.html?parent=https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
IP
161.71.0.166:0
ASN
#14340 SALESFORCE

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
160 B (160 bytes)
Hash
9c5e5f0bb616249865a3a902fe9d5f4d
36c7522dd1692877cb70f200a5e8e6c92ff5a0be
2903cfaf1f3408626b260ab93df0977c1dfb280135185d8b16f35f0fb56ea14b

HTTP Headers

GET /embeddedservice/5.0/esw.html?parent=https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:09:13 GMT
Set-Cookie: CookieConsentPolicy=0:0; path=/; expires=Sun, 26-Nov-2023 22:09:13 GMT; Max-Age=31536000
LSKey-c$CookieConsentPolicy=0:0; path=/; expires=Sun, 26-Nov-2023 22:09:13 GMT; Max-Age=31536000
BrowserId=9ft24G3WEe2US80DpRXZ5Q; domain=.force.com; path=/; expires=Sun, 26-Nov-2023 22:09:13 GMT; Max-Age=31536000
BrowserId_sec=9ft24G3WEe2US80DpRXZ5Q; domain=.force.com; path=/; expires=Sun, 26-Nov-2023 22:09:13 GMT; Max-Age=31536000; secure; SameSite=None
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
Content-Security-Policy: upgrade-insecure-requests
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sun, 27 Nov 2022 22:09:13 GMT
Last-Modified: Fri, 02 Aug 2019 08:43:42 GMT
Content-Type: text/html;charset=UTF-8
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Transfer-Encoding: chunked

service.force.com/embeddedservice/5.0/eswFrame.min.js

161.71.0.166

200 OK

1.9 kB

URL HTTP/1.1
service.force.com/embeddedservice/5.0/eswFrame.min.js
IP
161.71.0.166:0
ASN
#14340 SALESFORCE

File type
ASCII text, with very long lines (571)
Size
1.9 kB (1889 bytes)
Hash
b43813793268dd2451bc67a5614205ea
3e2d5d699edd775c359c98222f43c089bced31e8
0000c22f2b869a8708a9ee6a7f0a35365cb36b6bfbde30bf1fb3e907154f8dc3

HTTP Headers

GET /embeddedservice/5.0/eswFrame.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://service.force.com/embeddedservice/5.0/esw.html?parent=https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Connection: keep-alive
Cookie: BrowserId_sec=9ft24G3WEe2US80DpRXZ5Q
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 20:07:13 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Cache-Control: public,max-age=86400
Expires: Sun, 27 Nov 2022 20:07:13 GMT
Last-Modified: Thu, 06 Oct 2022 23:36:44 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 7320
Content-Length: 1889

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a7255dc5b5346ecf1026e5df5a411055
87a0e0e6fd231f1bfecab57ed287f699034a2abd
87dbd4167e91f3ebf6de8c03de2f90e2f87cf6e7358ff6480dae40db214ce6d2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4127
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:13 GMT
Last-Modified: Sat, 26 Nov 2022 21:00:29 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471

service.force.com/embeddedservice/5.0/frame/session.esw.min.js

161.71.0.166

200 OK

768 B

URL HTTP/1.1
service.force.com/embeddedservice/5.0/frame/session.esw.min.js
IP
161.71.0.166:0
ASN
#14340 SALESFORCE

File type
ASCII text, with very long lines (547)
Size
768 B (768 bytes)
Hash
60f31401d1acc95dd72733b29f0a363d
91fe3c54f5310fabd354995d628065c963a4acd3
5ca70566006f04793722364fbe89e18c6e9df14bb5d283427abc1825283ffe8d

HTTP Headers

GET /embeddedservice/5.0/frame/session.esw.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://service.force.com/embeddedservice/5.0/esw.html?parent=https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Connection: keep-alive
Cookie: BrowserId_sec=9ft24G3WEe2US80DpRXZ5Q
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 20:07:21 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sun, 27 Nov 2022 20:07:21 GMT
Last-Modified: Tue, 02 Mar 2021 18:51:46 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 7312
Content-Length: 768

insight.adsrvr.org/track/pxl/?adv=asfkene&ct=0:ly7603v&fmt=3

52.223.40.198

200 OK

849 B

URL HTTP/2
insight.adsrvr.org/track/pxl/?adv=asfkene&ct=0:ly7603v&fmt=3
IP
52.223.40.198:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
849 B (849 bytes)
Hash
fc39b1cf90018b14c9289e8f78035470
020a04f695ea0a4734d706928d2d8f0b1214eb08
f94be8e9584b4968bd6c45c5024911000dbf3141c62f0e59792dc5ada3d01f43

HTTP Headers

GET /track/pxl/?adv=asfkene&ct=0:ly7603v&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:12 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
set-cookie: TDID=30e97f4a-20da-424a-a1b2-a84ff4c014d2; domain=.adsrvr.org; expires=Sun, 26-Nov-2023 22:09:12 GMT; path=/; secure; SameSite=None
TDCPM=CAEYBTgBQgQiAggB; domain=.adsrvr.org; expires=Sun, 26-Nov-2023 22:09:12 GMT; path=/; secure; SameSite=None
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

725 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
gzip compressed data, from Unix\012- data
Size
725 B (725 bytes)
Hash
e5b86e1ff40720c009137a16d5346a7a
e8d5b5db06651e79b6449368517e237d69876bb4
a751e26a1d21f2c719ba9c71ad62aa26bac343358d968713a3d6b8edec62ea64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50B5C22D89E184349892393BF26F558727EA60282559C54A001C78F431232D4D"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5340
Expires: Sat, 26 Nov 2022 23:38:13 GMT
Date: Sat, 26 Nov 2022 22:09:13 GMT
Connection: keep-alive

service.force.com/embeddedservice/5.0/frame/chasitor.esw.min.js

161.71.0.166

200 OK

5.0 kB

URL HTTP/1.1
service.force.com/embeddedservice/5.0/frame/chasitor.esw.min.js
IP
161.71.0.166:0
ASN
#14340 SALESFORCE

File type
ASCII text, with very long lines (558)
Size
5.0 kB (5040 bytes)
Hash
67d555734a39819c7ea62f5df16c7ce0
346710cd8b37764d0e95a4eb265baa8b5dc3ab8d
d7aa5960b955a765b072af0e53ec197519d3e70357b6cea50ea1ed5e52c3408d

HTTP Headers

GET /embeddedservice/5.0/frame/chasitor.esw.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://service.force.com/embeddedservice/5.0/esw.html?parent=https://fixmyglass.safelite.com/FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Connection: keep-alive
Cookie: BrowserId_sec=9ft24G3WEe2US80DpRXZ5Q
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 20:10:25 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sun, 27 Nov 2022 20:10:25 GMT
Last-Modified: Thu, 21 Apr 2022 19:39:32 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 7128
Content-Length: 5040

service.force.com/embeddedservice/5.0/client/invite.esw.min.js

161.71.0.166

200 OK

4.5 kB

URL HTTP/1.1
service.force.com/embeddedservice/5.0/client/invite.esw.min.js
IP
161.71.0.166:0
ASN
#14340 SALESFORCE

File type
ASCII text, with very long lines (547)
Size
4.5 kB (4540 bytes)
Hash
2999bf17d31bae4ae17daba548e9a2ce
28d6574046f0ca2a2b5f5626f5913ae0d65cebaf
e54bda495e68a92d495ac1a8f2201186ebf2a39f6d0bd027f1de4737d0098be2

HTTP Headers

GET /embeddedservice/5.0/client/invite.esw.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Cookie: BrowserId_sec=9ft24G3WEe2US80DpRXZ5Q
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 20:27:41 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sun, 27 Nov 2022 20:27:41 GMT
Last-Modified: Fri, 24 Sep 2021 16:25:36 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 6092
Content-Length: 4540

safelite-capi.spire.horizonmedia.com/events

3.234.139.2

200 OK

0 B

URL HTTP/2
safelite-capi.spire.horizonmedia.com/events
IP
3.234.139.2:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /events HTTP/1.1
Host: safelite-capi.spire.horizonmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 571
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:13 GMT
content-length: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://fixmyglass.safelite.com
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

service.force.com/embeddedservice/5.0/utils/inert.min.js

161.71.0.166

200 OK

2.5 kB

URL HTTP/1.1
service.force.com/embeddedservice/5.0/utils/inert.min.js
IP
161.71.0.166:0
ASN
#14340 SALESFORCE

File type
ASCII text, with very long lines (626)
Size
2.5 kB (2469 bytes)
Hash
0595f061ed61246c426e086646bffea9
c20499de5345a184ddd1ae365b533e8ace04de53
83cbe64d620a3cdb42530711f691926a833d09cf868855162aa2e7451a3b1382

HTTP Headers

GET /embeddedservice/5.0/utils/inert.min.js HTTP/1.1
Host: service.force.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Cookie: BrowserId_sec=9ft24G3WEe2US80DpRXZ5Q
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 20:07:09 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains
X-Content-Type-Options: nosniff
X-XSS-Protection: 1; mode=block
X-Robots-Tag: none
Referrer-Policy: origin-when-cross-origin
Cache-Control: public,max-age=86400
Expires: Sun, 27 Nov 2022 20:07:09 GMT
Last-Modified: Tue, 18 Aug 2020 17:12:46 GMT
Content-Type: application/x-javascript
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Age: 7324
Content-Length: 2469

insight.adsrvr.org/track/pxl/?adv=asfkene&ct=0:vpn37f2&fmt=3

52.223.40.198

200 OK

301 B

URL HTTP/2
insight.adsrvr.org/track/pxl/?adv=asfkene&ct=0:vpn37f2&fmt=3
IP
52.223.40.198:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
301 B (301 bytes)
Hash
9d6504aeb2cf870e5bcfc8064dee4a4b
93c2463c185cb3706ea416d00b7b3b121000720b
c4d2c1408ce1d3ac0dd96aeed687ee00247a060a20d2278ab04d12c8f9bc4623

HTTP Headers

GET /track/pxl/?adv=asfkene&ct=0:vpn37f2&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:12 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
set-cookie: TDID=3896bec8-b887-4a99-8d38-25ef19c3d67b; domain=.adsrvr.org; expires=Sun, 26-Nov-2023 22:09:12 GMT; path=/; secure; SameSite=None
TDCPM=CAEYBTgBQgQiAggB; domain=.adsrvr.org; expires=Sun, 26-Nov-2023 22:09:12 GMT; path=/; secure; SameSite=None
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
7c05e1a41189a6dc0aa90838f6f9da1b
efd3de5ba03954ffb33ff196a90587978f0a55ad
ee257a0f129cd24d79227681e53bb1da2fb230a2b434bc5b7ba85694e52094d2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=144341
Date: Sat, 26 Nov 2022 22:09:13 GMT
Etag: "638205ad-1d7"
Expires: Mon, 28 Nov 2022 14:14:54 GMT
Last-Modified: Sat, 26 Nov 2022 12:25:17 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: g_4NFXCWfvT3aVTa9Ut8adOMkQ0yAPVgUHEdWEWWqj2A9qE51FjcYw==
Age: 6577

insight.adsrvr.org/track/up?adv=0sa8wch&ref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&upid=enowotb&upv=1.1.0

52.223.40.198

200 OK

503 B

URL HTTP/2
insight.adsrvr.org/track/up?adv=0sa8wch&ref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&upid=enowotb&upv=1.1.0
IP
52.223.40.198:0
ASN
#16509 AMAZON-02

File type
data
Size
503 B (503 bytes)
Hash
2cf5e184c2723871addf3c9f9f1dd9dd
354061544ac7ba4cc01931fdf9758ca7763b9fcf
64e497005ab555b71bcf943fb5a12e642f0313ffafa7c7c4c4e43b6511286bbc

HTTP Headers

GET /track/up?adv=0sa8wch&ref=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&upid=enowotb&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:13 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2

shopper.shop.pe/input.js

35.190.54.17

200 OK

8.9 kB

URL HTTP/2
shopper.shop.pe/input.js
IP
35.190.54.17:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (17023)
Size
8.9 kB (8877 bytes)
Hash
277671bdc75ca43b2c48464d6ab4278f
fa3f6cfe3a34a0586917b256c7d5b8f9b4c1a205
cb280dde0bd7b5868891421254e239ef63551cc351cb246a68e9bc69bd4e0e8e

HTTP Headers

GET /input.js HTTP/1.1
Host: shopper.shop.pe
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycds2PkV47XfDbaB_TxTRxnU2u7mmfODw8T-47E0ESYA7HpjcAAf6Pcrj5FuwOP0U6Ak6mMThQBFUkwoWKZu39-mwMMWDc7Z8
x-goog-generation: 1667301507739079
x-goog-metageneration: 2
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 8877
content-encoding: gzip
x-goog-hash: crc32c=d2ag2w==, md5=J3ZxvcdcpDssSEZNarQnjw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
vary: Accept-Encoding
content-length: 8877
access-control-allow-origin: *
access-control-expose-headers: Access-Control-Allow-Origin
server: UploadServer
date: Sat, 26 Nov 2022 18:32:21 GMT
expires: Sat, 26 Nov 2022 22:32:21 GMT
cache-control: public, max-age=14400
age: 13012
last-modified: Tue, 01 Nov 2022 11:18:27 GMT
etag: "277671bdc75ca43b2c48464d6ab4278f"
content-type: application/javascript; charset=utf-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

safelite-capi.spire.horizonmedia.com/events

3.234.139.2

200 OK

0 B

URL HTTP/2
safelite-capi.spire.horizonmedia.com/events
IP
3.234.139.2:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /events HTTP/1.1
Host: safelite-capi.spire.horizonmedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 522
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:14 GMT
content-length: 0
vary: origin
access-control-allow-credentials: true
access-control-allow-origin: https://fixmyglass.safelite.com
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

s3.amazonaws.com/ki.js/47127/9vK.js

54.231.197.224

200 OK

51 kB

URL HTTP/1.1
s3.amazonaws.com/ki.js/47127/9vK.js
IP
54.231.197.224:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65375)
Size
51 kB (50715 bytes)
Hash
7e6725a6d71525680d45f227922b1ab0
941977fc70b0703849b9921e2aadf291a414f175
f30c0b7aae8c6ac297b8727f8b15ba6ccb831cca3b5ae8a646d37369299ba8bb

HTTP Headers

GET /ki.js/47127/9vK.js HTTP/1.1
Host: s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: OE9905A31Lf8Hdlnr7A9XxKlYhTJqvoRA6WpDBj+a9FYQPKiFJfYOf+WhQ5DGIV5QOr5uIPCfJQ=
x-amz-request-id: D2E3RDV429CHN27R
Date: Sat, 26 Nov 2022 22:09:14 GMT
Last-Modified: Mon, 10 Oct 2022 13:46:19 GMT
ETag: "7e6725a6d71525680d45f227922b1ab0"
Cache-Control: max-age=3600
Content-Encoding: gzip
Accept-Ranges: bytes
Content-Type: application/ecmascript
Server: AmazonS3
Content-Length: 50715

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
7561976fb87b942d794b042c3b6431b7
fa6393c0112267381ffef84f484356272da92246
6271996da8ae721cd0f7cf454162a4596a13a0ac7594b70c21927b21e45e3cb9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146727
Date: Sat, 26 Nov 2022 22:09:14 GMT
Etag: "63821950-1d7"
Expires: Mon, 28 Nov 2022 14:54:41 GMT
Last-Modified: Sat, 26 Nov 2022 13:49:04 GMT
Server: ECS (dcb/7F7F)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1gxurym7OlZ9KO454QUQ2ax-iFuCKvOrmFTStlirkWMYZgGkDO3nOQ==
Age: 3937

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cb288da5ddbe5e05bf3d8ffa3e7c672e
10f44a195cb8ee9f30886b8272120baacd958e9a
6c84848d30eff055cd459a461869182c1b4f11b1bbfb2eb07d7a09b052bd0b2e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6C84848D30EFF055CD459A461869182C1B4F11B1BBFB2EB07D7A09B052BD0B2E"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4616
Expires: Sat, 26 Nov 2022 23:26:10 GMT
Date: Sat, 26 Nov 2022 22:09:14 GMT
Connection: keep-alive

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
7561976fb87b942d794b042c3b6431b7
fa6393c0112267381ffef84f484356272da92246
6271996da8ae721cd0f7cf454162a4596a13a0ac7594b70c21927b21e45e3cb9

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148821
Date: Sat, 26 Nov 2022 22:09:14 GMT
Etag: "63821950-1d7"
Expires: Mon, 28 Nov 2022 15:29:35 GMT
Last-Modified: Sat, 26 Nov 2022 13:49:04 GMT
Server: ECS (dcb/7F5B)
X-Cache: Miss from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OWLmFjXcfl-flxRoCZx4b8-1PCr-ijDs3gBitwWVnp07gl4sXmPi4w==
Age: 6031

addshoppers.s3.amazonaws.com/customize/5d484d7ed559304db178fbd5/369bd1f2e9c541dd9e40ec9b97a737d1.js?_t=1663087462

3.5.1.213

200 OK

1.4 kB

URL HTTP/1.1
addshoppers.s3.amazonaws.com/customize/5d484d7ed559304db178fbd5/369bd1f2e9c541dd9e40ec9b97a737d1.js?_t=1663087462
IP
3.5.1.213:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (3197), with no line terminators
Size
1.4 kB (1402 bytes)
Hash
e48452b5fb8cacd53c73f8bcab78b2a7
7562c443e570c66527a56b3721321c21648e71e9
f464161672ffefaadb7313fb8202d60124c3f9258b3aa16f0f55a921ab12cc62

HTTP Headers

GET /customize/5d484d7ed559304db178fbd5/369bd1f2e9c541dd9e40ec9b97a737d1.js?_t=1663087462 HTTP/1.1
Host: addshoppers.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: UkcozEr7VLHz5ChWLry8WCEY7ulnDYLkLGb4YHT7G39PfSyodLTFYe8KprIvbF0qx1A2YqEJC/BZinjeNupDxQ==
x-amz-request-id: XVTE8CAT54NFTFAZ
Date: Sat, 26 Nov 2022 22:09:15 GMT
Last-Modified: Tue, 13 Sep 2022 16:44:23 GMT
ETag: "ed6bee13978fff86f63cfd6a67bdedba"
Cache-Control: max-age=2592000, public
Content-Encoding: gzip
x-amz-version-id: 9zac3hJJB2tWv.20_mJYiST1gQxyhsve
Accept-Ranges: bytes
Content-Type: application/javascript; charset=utf-8
Server: AmazonS3
Content-Length: 692

addshoppers.s3.amazonaws.com/5d484d7ed559304db178fbd5/5d518d5fe694aa0abf723018/A.js?_t=1660689297

3.5.1.213

200 OK

3.7 kB

URL HTTP/1.1
addshoppers.s3.amazonaws.com/5d484d7ed559304db178fbd5/5d518d5fe694aa0abf723018/A.js?_t=1660689297
IP
3.5.1.213:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (15028), with no line terminators
Size
3.7 kB (3699 bytes)
Hash
770e98166dc3208d5057c945402f1d99
2fab0d723276d2a0be8d1e800f78266fcc84a806
d595016105cd975f7c450f57089aae311c32171e702d169a7528a6d30d697b4b

HTTP Headers

GET /5d484d7ed559304db178fbd5/5d518d5fe694aa0abf723018/A.js?_t=1660689297 HTTP/1.1
Host: addshoppers.s3.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
x-amz-id-2: klzqu18LT4bc+X3myGf48i6b6UnPAs36ypH7gK/dIO2V0DeYrgs7x02nM3pXbN1k46rlJLadW1lWlD0KWaGyng==
x-amz-request-id: XVTBZVFPPHPNB3MC
Date: Sat, 26 Nov 2022 22:09:15 GMT
Last-Modified: Tue, 16 Aug 2022 22:34:58 GMT
ETag: "770e98166dc3208d5057c945402f1d99"
Cache-Control: max-age=2592000, public
Content-Encoding: gzip
x-amz-version-id: _D2yDdStHw3dnOwiRpAFzR9eVzkXi5PJ
Accept-Ranges: bytes
Content-Type: application/javascript; charset=utf-8
Server: AmazonS3
Content-Length: 3699

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
c478aa079d732661b7665fe432f2d04c
1a2e17629d3a52e3bb68660140923c70e950e35b
d9ef8cfd5fa4f2ad85e2c4b0279b8b9ed697003906548bbf74cc9a829ed47d62

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 26 Nov 2022 22:09:14 GMT
Last-Modified: Sat, 26 Nov 2022 21:17:13 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tG0Ygl51WouKGfDHHMrZD8f4o0IfGocZZ054gmTt9iGerJ4wY8pB1Q==
Age: 3121

znekhevzr8y8owz94-safeliteux.siteintercept.qualtrics.com/SIE/?Q_ZID=ZN_eKHeVZr8y8owZ94

104.17.209.240

200 OK

3.2 kB

URL HTTP/2
znekhevzr8y8owz94-safeliteux.siteintercept.qualtrics.com/SIE/?Q_ZID=ZN_eKHeVZr8y8owZ94
IP
104.17.209.240:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (6801)
Size
3.2 kB (3169 bytes)
Hash
53faca3e15efda88696df36ca6d778b6
181cdcb3ca961b7dc21fb9f6e43eefa1d7c56b00
dd1aa0e48317fe8eb4bcc33fe959f8622cce44dba4abd0987698d2a9b8c7f9ca

HTTP Headers

GET /SIE/?Q_ZID=ZN_eKHeVZr8y8owZ94 HTTP/1.1
Host: znekhevzr8y8owz94-safeliteux.siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:13 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 7705f27c8abeb4f4-OSL
access-control-allow-origin: *
cache-control: public, max-age=3600, s-maxage=604800
etag: W/"2127-XRcarvHv/8tLPENfYGjrNkHvad0"
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=8487
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c3399b061961d08f76b8c6f1eeb4ddd6
922d293cbb1b3112a406ac45965bc6ea6f41302a
69ed7efc7d3164790f94e53a4a0143856622d11e742f20197d0b4174ad0b7986

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69ED7EFC7D3164790F94E53A4A0143856622D11E742F20197D0B4174AD0B7986"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11266
Expires: Sun, 27 Nov 2022 01:17:00 GMT
Date: Sat, 26 Nov 2022 22:09:14 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c3399b061961d08f76b8c6f1eeb4ddd6
922d293cbb1b3112a406ac45965bc6ea6f41302a
69ed7efc7d3164790f94e53a4a0143856622d11e742f20197d0b4174ad0b7986

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69ED7EFC7D3164790F94E53A4A0143856622D11E742F20197D0B4174AD0B7986"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11266
Expires: Sun, 27 Nov 2022 01:17:00 GMT
Date: Sat, 26 Nov 2022 22:09:14 GMT
Connection: keep-alive

nytrng.com/iframe?vcp=4dd5h0np&as_id=4d85aa7b28f546b585bfd4da2629c1ba

75.2.91.175

200 OK

422 B

URL HTTP/2
nytrng.com/iframe?vcp=4dd5h0np&as_id=4d85aa7b28f546b585bfd4da2629c1ba
IP
75.2.91.175:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (422), with no line terminators
Size
422 B (422 bytes)
Hash
b2d0edca7ae90b9952561dbc4996fa6b
9c694926c4b5fbd5bd5bc7232dbf9889f6af3ed0
fe725cd1e0a76d962a3cc5103070b122051816b23791258c3fe03c9fdda6cad7

HTTP Headers

GET /iframe?vcp=4dd5h0np&as_id=4d85aa7b28f546b585bfd4da2629c1ba HTTP/1.1
Host: nytrng.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:14 GMT
content-type: text/html; charset=utf-8
content-length: 422
server: gunicorn
X-Firefox-Spdy: h2

rl.quantummetric.com/safelite/hash-check

34.66.3.160

200 OK

0 B

URL HTTP/2
rl.quantummetric.com/safelite/hash-check
IP
34.66.3.160:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /safelite/hash-check HTTP/1.1
Host: rl.quantummetric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://fixmyglass.safelite.com/
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:14 GMT
content-length: 0
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
access-control-allow-methods: *
access-control-allow-origin: https://fixmyglass.safelite.com
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2

cdn.nytrng.com/pl.2.2.min.js

143.204.55.112

200 OK

0 B

URL HTTP/2
cdn.nytrng.com/pl.2.2.min.js
IP
143.204.55.112:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pl.2.2.min.js HTTP/1.1
Host: cdn.nytrng.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://nytrng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
content-type: text/plain
content-length: 0
date: Sat, 12 Nov 2022 07:11:14 GMT
last-modified: Wed, 31 Jul 2019 16:57:19 GMT
etag: "d41d8cd98f00b204e9800998ecf8427e"
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Error from cloudfront
via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: LW71Ps9006kUJpf6f_acJAcftoT7EbB00mQwPe8g2HOMeTgK_5sPKQ==
age: 1263481
X-Firefox-Spdy: h2

rl.quantummetric.com/safelite/hash-check

34.66.3.160

200 OK

2 B

URL HTTP/2
rl.quantummetric.com/safelite/hash-check
IP
34.66.3.160:0
ASN
#396982 GOOGLE-CLOUD-PLATFORM

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

HTTP Headers

POST /safelite/hash-check HTTP/1.1
Host: rl.quantummetric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 106
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:14 GMT
content-type: text/plain; charset=utf-8
content-length: 2
access-control-allow-credentials: true
access-control-allow-origin: https://fixmyglass.safelite.com
vary: Origin
strict-transport-security: max-age=15724800; includeSubDomains
access-control-allow-methods: *
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
bccfcac790f41dca71851fc3e9822283
5fc709da624a87a3598242f57e23a5501259a4f1
3a65a8533d1b24d4bea4acb26b09e510fabf718fd3013d74771189c362f46c29

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:14 GMT
Etag: "6381ec3e-1d7"
Server: ECS (amb/6B89)
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
bccfcac790f41dca71851fc3e9822283
5fc709da624a87a3598242f57e23a5501259a4f1
3a65a8533d1b24d4bea4acb26b09e510fabf718fd3013d74771189c362f46c29

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=131252
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:14 GMT
Etag: "6381ec3e-1d7"
Expires: Mon, 28 Nov 2022 10:36:46 GMT
Last-Modified: Sat, 26 Nov 2022 10:36:46 GMT
Server: nginx
Content-Length: 471

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
c2c9c6f276b0a8d6146b1cc03b51d63d
081ddb36c4390ee9d362314516b37d426907c170
39a9c8c48ea60e76d70554dd41a1bfcadf2d6006ec3ebfa457743b8504eee7b8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:09:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 11:27:53 GMT
Expires: Fri, 02 Dec 2022 11:27:52 GMT
Etag: "081ddb36c4390ee9d362314516b37d426907c170"
Cache-Control: max-age=479317,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7705f2831b18b505-OSL

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
c2c9c6f276b0a8d6146b1cc03b51d63d
081ddb36c4390ee9d362314516b37d426907c170
39a9c8c48ea60e76d70554dd41a1bfcadf2d6006ec3ebfa457743b8504eee7b8

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:09:14 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 25 Nov 2022 11:27:53 GMT
Expires: Fri, 02 Dec 2022 11:27:52 GMT
Etag: "081ddb36c4390ee9d362314516b37d426907c170"
Cache-Control: max-age=479317,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7705f2834f661c12-OSL

d.la4-c2-dfw.salesforceliveagent.com/chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D30000001H7EF&EmbeddedServiceConfig.configName=Sales_Central_Snap_in&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48

136.147.108.130

200 OK

164 B

URL HTTP/1.1
d.la4-c2-dfw.salesforceliveagent.com/chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D30000001H7EF&EmbeddedServiceConfig.configName=Sales_Central_Snap_in&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48
IP
136.147.108.130:0
ASN
#14340 SALESFORCE

File type
ASCII text, with no line terminators
Size
164 B (164 bytes)
Hash
c84bb4d366140bc00881e2b2f74d762d
c3ea69acf5b64299933716f3cee9610df3cf6f9d
a0cf1303929da61f2fae9cbe548ad5cf1d319da91501b52c95164acc1bd0e6d9

HTTP Headers

GET /chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D30000001H7EF&EmbeddedServiceConfig.configName=Sales_Central_Snap_in&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48 HTTP/1.1
Host: d.la4-c2-dfw.salesforceliveagent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Connection: close
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: text/javascript
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Set-Cookie: X-Salesforce-CHAT=!bqXuJNWtZCePkjS0NTJ5d7CNEnnVNKHkk6l/3tHWZRmHlA/Y15fWXDTNdLJ47zWVUC5QYqKKA7awTK0=; path=/; Httponly; Secure

safelite-app.quantummetric.com/?T=B&u=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&t=1669500553602&v=1669500554342&z=1&Q=1&Y=1&X=8c65e4aeabb94d43794e3fc53dcf19e2

35.194.63.195

200 OK

0 B

URL HTTP/2
safelite-app.quantummetric.com/?T=B&u=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&t=1669500553602&v=1669500554342&z=1&Q=1&Y=1&X=8c65e4aeabb94d43794e3fc53dcf19e2
IP
35.194.63.195:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /?T=B&u=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&t=1669500553602&v=1669500554342&z=1&Q=1&Y=1&X=8c65e4aeabb94d43794e3fc53dcf19e2 HTTP/1.1
Host: safelite-app.quantummetric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 20418
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:09:15 GMT
content-type: application/json
content-length: 0
access-control-allow-origin: https://fixmyglass.safelite.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains;
content-security-policy: default-src 'self' *.quantummetric.com; connect-src * ws:; frame-src * data: blob:; font-src * data: blob:; img-src * data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.quantummetric.com https://app.getbeamer.com https://backend.getbeamer.com https://realtime.getbeamer.com https://static.getbeamer.com https://ajax.googleapis.com https://static.zdassets.com https://*.appcues.com https://*.appcues.net https://*.qualtrics.com; style-src 'self' 'unsafe-inline' *.quantummetric.com https://fonts.googleapis.com https://app.getbeamer.com https://*.appcues.com https://*.appcues.net;
x-robots-tag: noindex
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d0817d8ff4c95502306cbfd451229853
150a90e23d8967bf5e3dcaccc85aad7d68e0a42f
f95e84323dd94142a0b8f09b09023c8e9d4167ba2bfd2ec8d0176fb949768e14

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=121545
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:15 GMT
Etag: "6381c654-1d7"
Expires: Mon, 28 Nov 2022 07:55:00 GMT
Last-Modified: Sat, 26 Nov 2022 07:55:00 GMT
Server: nginx
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d0817d8ff4c95502306cbfd451229853
150a90e23d8967bf5e3dcaccc85aad7d68e0a42f
f95e84323dd94142a0b8f09b09023c8e9d4167ba2bfd2ec8d0176fb949768e14

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 799
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:09:15 GMT
Etag: "6381c654-1d7"
Last-Modified: Sat, 26 Nov 2022 21:55:56 GMT
Server: ECS (amb/6B97)
X-Cache: HIT
Content-Length: 471

safelite-app.quantummetric.com/?T=B&u=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&t=1669500553602&v=1669500555132&H=c52289e3338b4b30d3c5cb52&s=b4f14b256a252fd740f7498a043880f2&U=654116f7f0b650fd3fb20e73f1dd89ff&z=1&Q=2&S=0&N=0

35.194.63.195

200 OK

0 B

URL HTTP/2
safelite-app.quantummetric.com/?T=B&u=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&t=1669500553602&v=1669500555132&H=c52289e3338b4b30d3c5cb52&s=b4f14b256a252fd740f7498a043880f2&U=654116f7f0b650fd3fb20e73f1dd89ff&z=1&Q=2&S=0&N=0
IP
35.194.63.195:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /?T=B&u=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&t=1669500553602&v=1669500555132&H=c52289e3338b4b30d3c5cb52&s=b4f14b256a252fd740f7498a043880f2&U=654116f7f0b650fd3fb20e73f1dd89ff&z=1&Q=2&S=0&N=0 HTTP/1.1
Host: safelite-app.quantummetric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 579
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Cookie: s=b4f14b256a252fd740f7498a043880f2; U=654116f7f0b650fd3fb20e73f1dd89ff
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:09:15 GMT
content-type: application/json
content-length: 0
access-control-allow-origin: https://fixmyglass.safelite.com
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains;
content-security-policy: default-src 'self' *.quantummetric.com; connect-src * ws:; frame-src * data: blob:; font-src * data: blob:; img-src * data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.quantummetric.com https://app.getbeamer.com https://backend.getbeamer.com https://realtime.getbeamer.com https://static.getbeamer.com https://ajax.googleapis.com https://static.zdassets.com https://*.appcues.com https://*.appcues.net https://*.qualtrics.com; style-src 'self' 'unsafe-inline' *.quantummetric.com https://fonts.googleapis.com https://app.getbeamer.com https://*.appcues.com https://*.appcues.net;
x-robots-tag: noindex
X-Firefox-Spdy: h2

35.194.63.195

200 OK

140 B

URL HTTP/2
safelite-app.quantummetric.com/?T=B&u=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&t=1669500553602&v=1669500554339&z=1&S=0&N=0&P=0
IP
35.194.63.195:0
ASN
#15169 GOOGLE

File type
ASCII text, with no line terminators
Size
140 B (140 bytes)
Hash
bd814ebbc01344c1375baf8b59635f43
71460c956eb77d993dfb701ad382a29e052ce823
00d5e72c37459c81a1584b487b1985f7f11e07a8969aae5c702cac774f6edf88

HTTP Headers

POST /?T=B&u=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&t=1669500553602&v=1669500554339&z=1&S=0&N=0&P=0 HTTP/1.1
Host: safelite-app.quantummetric.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1216
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:09:15 GMT
content-type: application/json
vary: Accept-Encoding
access-control-allow-origin: https://fixmyglass.safelite.com
access-control-allow-credentials: true
set-cookie: s=b4f14b256a252fd740f7498a043880f2;path=/;samesite=none;secure
U=654116f7f0b650fd3fb20e73f1dd89ff;path=/;expires=Sun, 26 Nov 2023 22:09:15 GMT;samesite=none;secure
strict-transport-security: max-age=31536000; includeSubDomains;
content-security-policy: default-src 'self' *.quantummetric.com; connect-src * ws:; frame-src * data: blob:; font-src * data: blob:; img-src * data:; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: *.quantummetric.com https://app.getbeamer.com https://backend.getbeamer.com https://realtime.getbeamer.com https://static.getbeamer.com https://ajax.googleapis.com https://static.zdassets.com https://*.appcues.com https://*.appcues.net https://*.qualtrics.com; style-src 'self' 'unsafe-inline' *.quantummetric.com https://fonts.googleapis.com https://app.getbeamer.com https://*.appcues.com https://*.appcues.net;
x-robots-tag: noindex
content-encoding: gzip
X-Firefox-Spdy: h2

d.la1-c1-ia4.salesforceliveagent.com/chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5730c000000CwDk]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=5720c0000008jxz&org_id=00D30000001H7EF&version=48

13.110.60.53

200 OK

517 B

URL HTTP/1.1
d.la1-c1-ia4.salesforceliveagent.com/chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5730c000000CwDk]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=5720c0000008jxz&org_id=00D30000001H7EF&version=48
IP
13.110.60.53:0
ASN
#14340 SALESFORCE

File type
ASCII text, with very long lines (462), with no line terminators
Size
517 B (517 bytes)
Hash
8c16d1e17f37b9f4057304ccb2b971fd
eeb4389a152b5f3fd624948595980e3e3b45e864
7650a1bc4cdd0c659551635d40019d70bef25115c8cfa5a25d7975f557daad63

HTTP Headers

GET /chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5730c000000CwDk]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=5720c0000008jxz&org_id=00D30000001H7EF&version=48 HTTP/1.1
Host: d.la1-c1-ia4.salesforceliveagent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Connection: close
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: text/javascript
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Set-Cookie: X-Salesforce-CHAT=!OJMnNplMae209gZ6zVqiT8YkbwUxrwMYCzD3BDHIPgjV9bb+Agfotfi5SDf43lIvXkMnqacgygp6oWA=; path=/; Httponly; Secure

fixmyglass.safelite.com/FixMyGlass/default.aspx?sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage

206.131.216.72

301 Moved permanently

0 B

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/default.aspx?sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /FixMyGlass/default.aspx?sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved permanently
Location: https://fixmyglass.safelite.com/FixMyGlass/default.aspx?sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage
Connection: close
Cache-Control: no-cache
Pragma: no-cache

insight.adsrvr.org/track/conv/?adv=0sa8wch&ct=0:fttox9n&fmt=3

52.223.40.198

200 OK

0 B

URL HTTP/2
insight.adsrvr.org/track/conv/?adv=0sa8wch&ct=0:fttox9n&fmt=3
IP
52.223.40.198:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /track/conv/?adv=0sa8wch&ct=0:fttox9n&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6279403.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:12 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2

c.hrzn-nxt.com/js/v2.12.0/connect.min.js

54.230.111.19

200 OK

0 B

URL HTTP/2
c.hrzn-nxt.com/js/v2.12.0/connect.min.js
IP
54.230.111.19:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/v2.12.0/connect.min.js HTTP/1.1
Host: c.hrzn-nxt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/x-javascript
last-modified: Thu, 01 Oct 2020 01:22:23 GMT
x-amz-meta-cb-modifiedtime: Thu, 02 Jan 2020 17:05:29 GMT
server: AmazonS3
content-encoding: gzip
date: Sat, 26 Nov 2022 21:23:09 GMT
cache-control: max-age=7200
etag: W/"237f31c1c4f949ec68d5e446713a7630"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XS-asztVsRhMXKPaBiCYXAdTQN_8zvtVrBvDqUn32bZogPtFKEA27w==
age: 2767
X-Firefox-Spdy: h2

dntcl.qualaroo.com/frame.html

194.242.11.186

200 OK

0 B

URL HTTP/2
dntcl.qualaroo.com/frame.html
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /frame.html HTTP/1.1
Host: dntcl.qualaroo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:14 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 99568
cdn-uid: 50c043fb-dcd1-4574-9faf-b60384f66f78
cdn-requestcountrycode: NO
cache-control: public, max-age=604800
last-modified: Fri, 06 Dec 2019 12:46:59 GMT
cdn-storageserver: DE-51
cdn-fileserver: 55
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 206
cdn-cachedat: 08/01/2022 07:46:46
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0a91ae872f58b838912aa62c33354a52
cdn-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2

d.la4-c2-dfw.salesforceliveagent.com/chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5730c000000CwDk]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=5720c0000008jxz&org_id=00D30000001H7EF&version=48

136.147.108.130

200 OK

0 B

URL HTTP/1.1
d.la4-c2-dfw.salesforceliveagent.com/chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5730c000000CwDk]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=5720c0000008jxz&org_id=00D30000001H7EF&version=48
IP
136.147.108.130:0
ASN
#14340 SALESFORCE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /chat/rest/Visitor/Settings.jsonp?Settings.prefix=Visitor&Settings.buttonIds=[5730c000000CwDk]&Settings.updateBreadcrumb=1&callback=embedded_svc.liveAgentAPI.connection.handlePing&deployment_id=5720c0000008jxz&org_id=00D30000001H7EF&version=48 HTTP/1.1
Host: d.la4-c2-dfw.salesforceliveagent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Connection: close
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: text/javascript
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Set-Cookie: X-Salesforce-CHAT=!41mDyDWmivlVM3e0NTJ5d7CNEnnVNHTGupP/JSFxCdmNFHQrwnALRuUNw7ntQVOyuU49hGbFtqrkQYo=; path=/; Httponly; Secure

fixmyglass.safelite.com/FixMyGlass/default.aspx?sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage

206.131.216.72

302 Found

0 B

URL HTTP/1.1
fixmyglass.safelite.com/FixMyGlass/default.aspx?sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage
IP
206.131.216.72:0
ASN
#17339 SAFELITE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /FixMyGlass/default.aspx?sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage HTTP/1.1
Host: fixmyglass.safelite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 302 Found
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Content-Type: text/html; charset=utf-8
Location: /FixMyGlass/ServiceDetails.aspx?&sqid=a16a9e4a-c55d-4096-aece-0ef22247c235&utm_source=saved_omni&utm_medium=email&utm_campaign=saved_cashquote_omni&utm_content=safelite_advantage&sqe=Expired
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
Set-Cookie: ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; path=/; secure; HttpOnly; SameSite=Lax
ASP.NET_SessionId=v3yxyttt2v2vali2hdco0fme; path=/; secure; HttpOnly; SameSite=Lax
UNIQUE_SESSION_ID=43b048ac-4c4a-4b7a-b65c-47d7481a6844; expires=Sun, 26-Nov-2023 22:09:09 GMT; path=/; secure; HttpOnly
UserID=784396ab-ecd6-4043-9c36-2831ea33e565; expires=Sat, 03-Dec-2022 22:09:09 GMT; path=/; secure
dxdev=did=406d6228-2321-4898-bf73-0af02853dd3f&tz=-300&tzd=0; domain=safelite.com; expires=Sun, 26-Nov-2023 22:09:09 GMT; path=/; secure
SessionLogSeqNum=541590849; expires=Sun, 26-Nov-2023 22:09:09 GMT; path=/
dtCookie=v_4_srv_13_sn_981256A12C54D3B1F4392D0ED317EBF0_perc_100000_ol_0_mul_1_app-3A41f4fb202057787b_1_rcs-3Acss_0; Path=/; Domain=.safelite.com; secure
X-UA-Compatible: IE=edge
X-OneAgent-JS-Injection: true
X-ruxit-JS-Agent: true
Server-Timing: dtRpid;desc="1413460552"
Date: Sat, 26 Nov 2022 22:09:09 GMT
Content-Length: 42307

siteintercept.qualtrics.com/dxjsmodule/11.6d6c5ef8794769da04fd.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=fixmyglass.safelite.com

104.17.209.240

200 OK

0 B

URL HTTP/2
siteintercept.qualtrics.com/dxjsmodule/11.6d6c5ef8794769da04fd.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=fixmyglass.safelite.com
IP
104.17.209.240:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /dxjsmodule/11.6d6c5ef8794769da04fd.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=fixmyglass.safelite.com HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:13 GMT
content-type: application/javascript
cf-ray: 7705f27dfd03b4f4-OSL
access-control-allow-origin: *
age: 419005
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"f871-1845383cf10"
last-modified: Mon, 07 Nov 2022 19:14:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=63601
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

safelitees.mpeasylink.com/mpel/mpel_storage.html?cmd=storePref&href=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&siteurl=www.safelite.com&lang=en&country=&region=&sitelist=www.safelite.com,safelite.com,www.serviceautoglass.com,serviceautoglass.com,fixmyglass.safelite.com,agencyadvantage.safelite.com,agencyadvantagedev.safelite.com,agencyadvantagesys.safelite.com,demo.serviceautoglass.com,m-demo.serviceautoglass.com,m.serviceautoglass.com;espanol.safelite.com,espanol.serviceautoglass.com,fixmyglass.espanol.safelite.com,agencyadvantage.espanol.safelite.com,m.espanol.serviceautoglass.com&currency=&nonMP=false&mode=&uuid=

44.197.47.122

200 OK

0 B

URL HTTP/2
safelitees.mpeasylink.com/mpel/mpel_storage.html?cmd=storePref&href=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&siteurl=www.safelite.com&lang=en&country=&region=&sitelist=www.safelite.com,safelite.com,www.serviceautoglass.com,serviceautoglass.com,fixmyglass.safelite.com,agencyadvantage.safelite.com,agencyadvantagedev.safelite.com,agencyadvantagesys.safelite.com,demo.serviceautoglass.com,m-demo.serviceautoglass.com,m.serviceautoglass.com;espanol.safelite.com,espanol.serviceautoglass.com,fixmyglass.espanol.safelite.com,agencyadvantage.espanol.safelite.com,m.espanol.serviceautoglass.com&currency=&nonMP=false&mode=&uuid=
IP
44.197.47.122:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /mpel/mpel_storage.html?cmd=storePref&href=https%3A%2F%2Ffixmyglass.safelite.com%2FFixMyGlass%2FServiceDetails.aspx%3F%26sqid%3Da16a9e4a-c55d-4096-aece-0ef22247c235%26utm_source%3Dsaved_omni%26utm_medium%3Demail%26utm_campaign%3Dsaved_cashquote_omni%26utm_content%3Dsafelite_advantage%26sqe%3DExpired&siteurl=www.safelite.com&lang=en&country=&region=&sitelist=www.safelite.com,safelite.com,www.serviceautoglass.com,serviceautoglass.com,fixmyglass.safelite.com,agencyadvantage.safelite.com,agencyadvantagedev.safelite.com,agencyadvantagesys.safelite.com,demo.serviceautoglass.com,m-demo.serviceautoglass.com,m.serviceautoglass.com;espanol.safelite.com,espanol.serviceautoglass.com,fixmyglass.espanol.safelite.com,agencyadvantage.espanol.safelite.com,m.espanol.serviceautoglass.com&currency=&nonMP=false&mode=&uuid= HTTP/1.1
Host: safelitees.mpeasylink.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:09:12 GMT
content-type: text/html
accept-ranges: bytes
etag: W/"2674-1502980086000"
last-modified: Thu, 17 Aug 2017 14:28:06 GMT
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2

u360.d-bi.fr/hmx000000000593.js

34.249.81.80

200 OK

0 B

URL HTTP/2
u360.d-bi.fr/hmx000000000593.js
IP
34.249.81.80:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /hmx000000000593.js HTTP/1.1
Host: u360.d-bi.fr
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:12 GMT
content-type: application/javascript
server: hmxps
x-myname: 0241a83f107dc0534
cache-control: public, max-age=60
strict-transport-security: max-age=63072000
content-encoding: gzip
X-Firefox-Spdy: h2

participants.evolv.ai/v1/48ce15a4d0/96042948_1669500551822/allocations

143.204.55.113

200 OK

0 B

URL HTTP/2
participants.evolv.ai/v1/48ce15a4d0/96042948_1669500551822/allocations
IP
143.204.55.113:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v1/48ce15a4d0/96042948_1669500551822/allocations HTTP/1.1
Host: participants.evolv.ai
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/json
server: CloudFront
date: Sat, 26 Nov 2022 22:09:12 GMT
vary: Accept-Encoding
cache-control: must-revalidate, max-age=0
access-control-allow-origin: https://fixmyglass.safelite.com
access-control-allow-credentials: true
last-modified: Sat, 26 Nov 2022 22:09:12 GMT
content-encoding: gzip
x-cache: LambdaGeneratedResponse from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0CEg4eosaQzk3wPUrTV-4aGjJB4Ci7y1iAr_D31g4qVg9eFXN677Nw==
X-Firefox-Spdy: h2

d.la1-c1-ia4.salesforceliveagent.com/chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D30000001H7EF&EmbeddedServiceConfig.configName=Sales_Central_Snap_in&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48

13.110.60.53

200 OK

0 B

URL HTTP/1.1
d.la1-c1-ia4.salesforceliveagent.com/chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D30000001H7EF&EmbeddedServiceConfig.configName=Sales_Central_Snap_in&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48
IP
13.110.60.53:0
ASN
#14340 SALESFORCE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /chat/rest/EmbeddedService/EmbeddedServiceConfig.jsonp?Settings.prefix=EmbeddedService&org_id=00D30000001H7EF&EmbeddedServiceConfig.configName=Sales_Central_Snap_in&callback=embedded_svc.liveAgentAPI.handleChatSettings&version=48 HTTP/1.1
Host: d.la1-c1-ia4.salesforceliveagent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Connection: close
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Expires: -1
Content-Type: text/javascript
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Set-Cookie: X-Salesforce-CHAT=!1Bl0Zddcmfz9b4k21zbGvXgG2CGGzjuiC5PAfsvfv3VG4Fpei/wpRgtZbmvN95zEn7bdD0Iopd12lds=; path=/; Httponly; Secure

siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_eKHeVZr8y8owZ94&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web

104.17.209.240

200 OK

0 B

URL HTTP/2
siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_eKHeVZr8y8owZ94&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web
IP
104.17.209.240:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_eKHeVZr8y8owZ94&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 302
Origin: https://fixmyglass.safelite.com
Connection: keep-alive
Referer: https://fixmyglass.safelite.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sat, 26 Nov 2022 22:09:14 GMT
content-type: application/json
cf-ray: 7705f27e9dacb4f4-OSL
access-control-allow-origin: https://fixmyglass.safelite.com
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: 26f98e0d33726f59
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (134)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations