Report - aviva-group-emailverification.squarehealth.com/

Report Overview

Submitted URL
aviva-group-emailverification.squarehealth.com/
IP
52.19.31.233
ASN
#16509 AMAZON-02
Submitted
2022-12-09 13:50:36
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
aviva-group-emailverification.squarehealth.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	472 B	52.19.31.233
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	44 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	370 B	31 kB	69.16.175.10
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.131
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.82.221.194
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	411 B	164 kB	216.58.211.3
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	95.101.11.115
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	964 B	104.18.32.68
www.squarehealth.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	14 kB	3.3 MB	52.19.31.233
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	387 B	1.2 kB	216.58.211.4
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	797 B	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

Scan Date	Severity	Indicator	Alert
2022-12-07	medium	aviva-group-emailverification.squarehealth.com/	PayPal Inc.

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (23)

	URL	Size	First Seen	Last Seen
	www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js	409 kB	2023-03-08	2023-03-17
Pretty URL www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js IP 216.58.211.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:03 Last Seen2023-03-17 23:14:58 Times Seen1 Hash b2507198388fcc94ca9e94ed4c5561c5 8853fc86f1c616bd20a73e3e24442036fd90fd2f 02c7565a86d6d3a80295b85161d78fc88d8c79a0e314c0c7777570237a365ed0 Loading...

	code.jquery.com/jquery-3.6.0.min.js	90 kB	2023-03-07	2024-05-11
Pretty URL code.jquery.com/jquery-3.6.0.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-05-11 02:14:17 Times Seen270399 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	www.squarehealth.com/	121 B	2023-03-08	2023-03-08
Pretty URL www.squarehealth.com/ IP 52.19.31.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:56:51 Last Seen2023-03-08 23:56:51 Times Seen1 Hash 5f54e125b2fc508ef44804504a0b5467 26a14a28b819a5ca33191cc29e8e0eca0de88c49 b45dadc00fe325ca36deb475be501d78aa18c8119581500fc3b0583a463fa510 Loading...

	www.squarehealth.com/	2.1 kB	2023-03-08	2023-03-08
Pretty URL www.squarehealth.com/ IP 52.19.31.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:56:51 Last Seen2023-03-08 23:56:51 Times Seen1 Hash e58661df05afadef911d87031b31745c ddc03d672985d8f3100545d6d279d96ce37e47cb ef7e42dac857bc95a9ad653cc33d2ef93e5a7c74d7970b18952f609390a1536e Loading...

	www.google.com/recaptcha/api.js?render=6LdEoj4iAAAAAJmUNyiXfkxDre3Kfd0ysyaX1gC8&ver=3.0	884 B	2023-03-08	2023-03-08
Pretty URL www.google.com/recaptcha/api.js?render=6LdEoj4iAAAAAJmUNyiXfkxDre3Kfd0ysyaX1gC8&ver=3.0 IP 216.58.211.4 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:56:51 Last Seen2023-03-08 23:56:51 Times Seen1 Hash c0f1dd9b769922e0d0196b2dd8446625 35b7eaea918657ce45c94e34b972fdbd5739c5b4 2da25ea6101cae47b85869de946ea7f674b6bf6b4753a4e6abc691092c9c3d99 Loading...

	www.squarehealth.com/?wordfence_lh=1&hid=C5EA8FEE91BFFAD8F66BD5F244B56F71&r=0.993960596390398	0 B	2023-03-07	2024-05-11
Pretty URL www.squarehealth.com/?wordfence_lh=1&hid=C5EA8FEE91BFFAD8F66BD5F244B56F71&r=0.993960596390398 IP 52.19.31.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-11 03:24:42 Times Seen37534262 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.squarehealth.com/wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=5.9.1	1.8 kB	2023-03-08	2023-03-08
Pretty URL www.squarehealth.com/wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=5.9.1 IP 52.19.31.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:56:51 Last Seen2023-03-08 23:56:51 Times Seen1 Hash 4d54a444485586f270cf17b79d3d0a3e 1b446386e91dedaeb9233028e3e9f6963f45d8b8 ae1a65f1d669223cdc15c323a4ee305f729d3615a6cb6299dcd9e612d926b611 Loading...

	www.squarehealth.com/	134 B	2023-03-08	2023-03-08
Pretty URL www.squarehealth.com/ IP 52.19.31.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:56:51 Last Seen2023-03-08 23:56:51 Times Seen1 Hash 0bebbc2b0c7edd3fe283b37f01722cc3 42b76e230da32a31623144ac0001e6616556fa30 c792a74020c91221e621c13820f2c9239ff1f5dfd1fa2765b7a97a8aec9873a4 Loading...

	www.squarehealth.com/wp-content/themes/sqhc/js/all.js	18 kB	2023-03-08	2023-03-08
Pretty URL www.squarehealth.com/wp-content/themes/sqhc/js/all.js IP 52.19.31.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:56:51 Last Seen2023-03-08 23:56:51 Times Seen1 Hash a94d0b6920333c6f94a8f534a720efce 8bce455c13851d816fd27b859b3689f6f6934c78 88cdaf3cb556bb7c9e59b39915f4bd928c52abf83fca47f747f7e63faabe1a58 Loading...

	www.squarehealth.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6	9.7 kB	2023-03-07	2024-05-10
Pretty URL www.squarehealth.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 IP 52.19.31.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-05-10 21:21:46 Times Seen4735 Hash cfb428c02811f0cbe515d5f3dca61de6 e95f8696fbe29a706e66ccf582b36d9bd650ab9f 679e44f9b4bbbc2ad0c4000c1413fd3a88627d83f1cba8ebdac26f81bc7edb78 Loading...

	www.squarehealth.com/	1.4 kB	2023-03-08	2023-03-08
Pretty URL www.squarehealth.com/ IP 52.19.31.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:56:51 Last Seen2023-03-08 23:56:51 Times Seen1 Hash c565b5a565abbb6492d98d9ddb575077 543ccd697b57617bc1f5e26406adcfc17339cfdd c57b91ed094a6f46b42c47fcbed4721819ecf1bc78b4e584855e95b3d3952851 Loading...

	www.squarehealth.com/	167 B	2023-03-08	2023-03-08
Pretty URL www.squarehealth.com/ IP 52.19.31.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:56:51 Last Seen2023-03-08 23:56:51 Times Seen1 Hash dacabaa003479a43562dff897ef83479 a30bd96bdf99f5c361f025c2fdac92eefc4070bd 5de3d76b619f9f66af568dba594590076e00919d13f5bddf9f4cead9287844f5 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdEoj4iAAAAAJmUNyiXfkxDre3Kfd0ysyaX1gC8&co=aHR0cHM6Ly93d3cuc3F1YXJlaGVhbHRoLmNvbTo0NDM.&hl=en&v=Km9gKuG06He-isPsP6saG8cn&size=invisible&cb=46iiqg7aex7i	69 B	2023-03-07	2024-05-11
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdEoj4iAAAAAJmUNyiXfkxDre3Kfd0ysyaX1gC8&co=aHR0cHM6Ly93d3cuc3F1YXJlaGVhbHRoLmNvbTo0NDM.&hl=en&v=Km9gKuG06He-isPsP6saG8cn&size=invisible&cb=46iiqg7aex7i IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:05 Last Seen2024-05-11 01:48:15 Times Seen101484 Hash 45ecf7458f42da80ac248ad42d610372 a5b3edf8328769bc754e6e616a957ceed4fdadd7 75867e75b209895995014b43c3d711476e3437481e5fbec91a4da674302558bf Loading...

	www.squarehealth.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-05-11
Pretty URL www.squarehealth.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 52.19.31.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-05-11 00:17:01 Times Seen2843 Hash 64e89b93b02055fb75ea0913089ded0b 9ccf854a6acedb27496725fa7570a670fd7bd572 a3e64300797e8078baa41dbc49e2affc1d2bedd04a470f0c929ed7fac698fbcd Loading...

	www.squarehealth.com/	87 B	2023-03-07	2024-05-09
Pretty URL www.squarehealth.com/ IP 52.19.31.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:09 Last Seen2024-05-09 14:36:09 Times Seen93 Hash 858883dc9f5e8c21e4113fccc989587a 33089f345f4d982b6a544a6ca312caac1490e1d6 95583b02581c409d7a47b2c80490a4447c9b06a3cba00ee263165f0360a7abe9 Loading...

	www.squarehealth.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6	999 B	2023-03-07	2024-05-10
Pretty URL www.squarehealth.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6 IP 52.19.31.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:28 Last Seen2024-05-10 12:30:12 Times Seen11117 Hash 6a0e8318d42803736d2fafcc12238026 c955314a7e0a9a9871329b0f042c8f0b5df49a78 2648a1333fa24d383fd73a6beaac17156ae78f4267ff7407ad60e05a788df44c Loading...

	www.squarehealth.com/	330 B	2023-03-07	2024-05-09
Pretty URL www.squarehealth.com/ IP 52.19.31.233 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:07:09 Last Seen2024-05-09 14:36:09 Times Seen48 Hash c3da5cc501b7873890afbef056c8812d 651ddcdd996c809188a44d8f73c0a8f8097d7a5f 87e530a5e4bef9428cb12abbb7d0bb77cf7739c0091075ef207cee6b91ef5464 Loading...

	www.google.com/recaptcha/api2/anchor?ar=1&k=6LdEoj4iAAAAAJmUNyiXfkxDre3Kfd0ysyaX1gC8&co=aHR0cHM6Ly93d3cuc3F1YXJlaGVhbHRoLmNvbTo0NDM.&hl=en&v=Km9gKuG06He-isPsP6saG8cn&size=invisible&cb=46iiqg7aex7i	35 kB	2023-03-08	2023-03-08
Pretty URL www.google.com/recaptcha/api2/anchor?ar=1&k=6LdEoj4iAAAAAJmUNyiXfkxDre3Kfd0ysyaX1gC8&co=aHR0cHM6Ly93d3cuc3F1YXJlaGVhbHRoLmNvbTo0NDM.&hl=en&v=Km9gKuG06He-isPsP6saG8cn&size=invisible&cb=46iiqg7aex7i IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:56:51 Last Seen2023-03-08 23:56:51 Times Seen1 Hash 6589c048cade302aab6d5c1ad43345c5 6e454e9908fced49c3565397baa595e12a4a7129 0804956f54eb5a25bc39a9252fa797b3efc4b9ef65bbb0439cd40b0d8ca48bd0 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 5bd210fff45cf96ffcf0bb9123070d51	16 kB	2023-03-08	2023-11-04
Pretty Observations First Seen2023-03-08 14:33:54 Last Seen2023-11-04 16:55:45 Times Seen3 Hash 5bd210fff45cf96ffcf0bb9123070d51 09f3615c3096b1c7b413dbe39439be8f82d1eeef 0d4559ba47020dfb3d3229a79fae241152a0337f86a9c8a01bd5add41c1753b7 Loading...

	#2 Eval - 0d2fca76a746941a17fa7dcf80dfc0c2	22 B	2023-03-08	2023-11-04
Pretty Observations First Seen2023-03-08 14:33:54 Last Seen2023-11-04 16:55:45 Times Seen3 Hash 0d2fca76a746941a17fa7dcf80dfc0c2 a4d2a22237d8b10b7b611764266911ef1933bbd7 2ed176c7f9d5b3c8ca6ccdb0e994b6ddc34944c41fc4db7451fd7a3d27fed6f1 Loading...

	#3 Eval - fecfe1943f890efe55899e127e37c05f	22 kB	2023-03-08	2023-03-08
Pretty Observations First Seen2023-03-08 23:56:51 Last Seen2023-03-08 23:56:51 Times Seen1 Hash fecfe1943f890efe55899e127e37c05f 6f79d8ff03f894d1eba26707b507410acaa8e4be eefb4a992740c581a14d21765abe17506ffcd8e0edfdee880ab4d9d130cf82a8 Loading...

	#4 Eval - c9257e927ccf8069f3dcfb01c9234d09	22 B	2023-03-08	2023-11-04
Pretty Observations First Seen2023-03-08 14:33:54 Last Seen2023-11-04 16:55:45 Times Seen3 Hash c9257e927ccf8069f3dcfb01c9234d09 921955c8df691f30a12542510f33856a4cb972cb 9bb0c662c12831d4a6a9d504b2534e28f08b91591da1303a05ad2b3e12a6e49e Loading...

	#5 Eval - a67bad065c725f1d42d6eb83f626f676	64 B	2023-03-08	2023-11-04
Pretty Observations First Seen2023-03-08 14:33:54 Last Seen2023-11-04 16:55:45 Times Seen3 Hash a67bad065c725f1d42d6eb83f626f676 ecd1fed4bbaacbf771ba634b4616d2bebcba57cb cc158dc49db31ac40a09769c14f1e96ce12d8ee44ddb54a5321c32cd0536ef78 Loading...

HTTP Transactions (58)

URL IP Response Size

aviva-group-emailverification.squarehealth.com/

52.19.31.233

302 Found

213 B

URL HTTP/1.1
aviva-group-emailverification.squarehealth.com/
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
213 B (213 bytes)
Hash
6d61088bbc1a05a48cd1b609554eead5
22be2aace2a56978628d0232d306191eedff74cf
c317bf84564b3f21d822dd24f30dd8281fc9de1b01b0760cbdf78d6b9eb8f7df

Detections

Analyzer	Verdict	Alert
openphish	PayPal Inc.

HTTP Headers

GET / HTTP/1.1
Host: aviva-group-emailverification.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN
Location: https://www.squarehealth.com/
Content-Length: 213
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aea93551fa9deb76ae49a3b4019d64fe
e3b8862057ebe839959228e42246d7b1807fc90c
7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6778
Expires: Fri, 09 Dec 2022 15:43:23 GMT
Date: Fri, 09 Dec 2022 13:50:25 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7181eff9c60e83eb0004ece591e47dca
0fd8cd0c9d10b0547938982e57d2c43e2d98679f
89c5c0e2d6890798644174a8e31976aec03a1b3deb03812afbb520e5ed68f522

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89C5C0E2D6890798644174A8E31976AEC03A1B3DEB03812AFBB520E5ED68F522"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11918
Expires: Fri, 09 Dec 2022 17:09:03 GMT
Date: Fri, 09 Dec 2022 13:50:25 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 09 Dec 2022 13:08:18 GMT
content-type: application/json
age: 2527
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4ee537977be9c03702f8ffe0025bf1fe
21637881c4aa34c4add703f8bff4eff573159f45
4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA"
Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8017
Expires: Fri, 09 Dec 2022 16:04:02 GMT
Date: Fri, 09 Dec 2022 13:50:25 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: ++4p1M0nVBLIqlerhoDzvcJEJLu7ii5Broizf2fTBqLidayKLG91GNSbI8shJf1L1xz4yRIcraU=
x-amz-request-id: 7WRMKPBZFF03FT75
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 09 Dec 2022 13:50:16 GMT
age: 9
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 09 Dec 2022 13:50:25 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
a135efd9a4823451a0f870bdc7b48fec
407aa021bff0569ca546d4ae6a9e1d05e542d625
3a0948309e198b85356d2ec2a2a5d6d57687051ed8bf528eda7c681522cc4bdf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:50:25 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Thu, 08 Dec 2022 06:29:57 GMT
Expires: Thu, 15 Dec 2022 06:29:56 GMT
Etag: "407aa021bff0569ca546d4ae6a9e1d05e542d625"
Cache-Control: max-age=491370,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 776e35afcd85b529-OSL

www.squarehealth.com/

52.19.31.233

200 OK

14 kB

URL HTTP/1.1
www.squarehealth.com/
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size
14 kB (13480 bytes)
Hash
1e80ef11d9720c5538715f9c2f7247bf
82a6eaf3888361f38889b5081da6fc9b914c1aa9
40e94d5ec01f1e416eb182968dee81431e8682399622d4452ef30cc0a359ae02

HTTP Headers

GET / HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Strict-Transport-Security: max-age=631138519; includeSubDomains
Link: <https://www.squarehealth.com/wp-json/>; rel="https://api.w.org/", <https://www.squarehealth.com/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <https://www.squarehealth.com/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 13480
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.squarehealth.com/wp-content/themes/sqhc/style.css?1665135116

52.19.31.233

200 OK

12 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/themes/sqhc/style.css?1665135116
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (65485)
Size
12 kB (11689 bytes)
Hash
a9736b87f8f787fc802e6f6f1cb3ad63
532f8c9aa5d6ad07975d3b3a4850511dd0041ba3
c9567bafb55c316971dcac11f910c032b1d17afc75b8443d05d24a3cb2cfd582

HTTP Headers

GET /wp-content/themes/sqhc/style.css?1665135116 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Fri, 07 Oct 2022 09:31:56 GMT
ETag: "114d9-5ea6e7b238d2c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 11689
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

code.jquery.com/jquery-3.6.0.min.js

69.16.175.10

200 OK

31 kB

URL HTTP/2
code.jquery.com/jquery-3.6.0.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65447)
Size
31 kB (30875 bytes)
Hash
899f0189aaf034bbba5340f724d91dfa
210ea9de03968edb9d839ba4a0ce2d48666a8ab8
949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f

HTTP Headers

GET /jquery-3.6.0.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.squarehealth.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 09 Dec 2022 13:50:25 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670593825.dop021.sk1.t,1670593825.cds214.sk1.hn,1670593825.cds210.sk1.c
X-Firefox-Spdy: h2

www.squarehealth.com/wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=5.9.1

52.19.31.233

200 OK

711 B

URL HTTP/1.1
www.squarehealth.com/wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=5.9.1
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
711 B (711 bytes)
Hash
545c02f04e5a81d5bca8d76d9fb0c975
da73e6c70cd43bebd168f02742ff810b4ef549e6
fbc0430b06aa945e5b5c8dab92ef0cf83defcf40663fd8f778dc0f2f17eb7306

HTTP Headers

GET /wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=5.9.1 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:15 GMT
ETag: "6f1-5d8322f344ecc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 711
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
23f0fed6cb9af080a75d8b899ae5bd84
2c02a8cb4a6e70d8ba58696fd709838656d443c3
b1102b6924fcffe1f07a07385010a47aa142435d4efc79b338e50f8258a4d5da

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 13:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 09 Dec 2022 13:07:55 GMT
age: 2550
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

www.squarehealth.com/wp-content/plugins/uk-cookie-consent/assets/css/style.css?ver=5.9.1

52.19.31.233

200 OK

1.1 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/plugins/uk-cookie-consent/assets/css/style.css?ver=5.9.1
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1085 bytes)
Hash
70bfd015aacf0f89698e53e73322a4d2
27528d8beb369f74e25a584862566d94d438f0b3
d742ed582c9aa664f8841ec9cade44c45624ada242f3e13d47150fddb4b9e88a

HTTP Headers

GET /wp-content/plugins/uk-cookie-consent/assets/css/style.css?ver=5.9.1 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:15 GMT
ETag: "1230-5d8322f345e6c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 1085
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.squarehealth.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6

52.19.31.233

200 OK

972 B

URL HTTP/1.1
www.squarehealth.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
ASCII text
Size
972 B (972 bytes)
Hash
8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Mon, 07 Mar 2022 06:26:53 GMT
ETag: "aab-5d99af344c60c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 972
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.squarehealth.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6

52.19.31.233

200 OK

3.3 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (9720), with no line terminators
Size
3.3 kB (3286 bytes)
Hash
4ac0d5ab8d83806d59c4e1f7bf0a855a
81153a2f5e3a21febe9ede53c9f0073da3e14829
605fd4e7f4d3fbb5505bb81e3f72c685b6ef411c27cde2f7bab2787c3d870b10

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Mon, 07 Mar 2022 06:26:53 GMT
ETag: "25f8-5d99af344c60c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 3286
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

www.squarehealth.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

52.19.31.233

200 OK

7.0 kB

URL HTTP/1.1
www.squarehealth.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (19111)
Size
7.0 kB (7013 bytes)
Hash
3d97cdcc7f05c2b5782d39b135850bc3
d4427472e22221d71413745415a7b1e959da28f3
3b9a4010e3156a9143b38a24e91a5b34d898b1eeab165f49cda8c16212a968f7

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Mon, 07 Mar 2022 06:24:25 GMT
ETag: "4b3d-5d99aea745d6c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 7013
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.squarehealth.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

52.19.31.233

200 OK

2.4 kB

URL HTTP/1.1
www.squarehealth.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (6494), with no line terminators
Size
2.4 kB (2422 bytes)
Hash
c16f2821df385b57b616cb7c867e1253
6327ed04bc2d7c294db8358cdf8b06ff62c3eb13
ff1c71b966df6e007b9175772a52be12d7dd9b65aafcb78a55046f60e792ae42

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Mon, 07 Mar 2022 06:24:25 GMT
ETag: "195e-5d99aea745d6c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 2422
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

www.squarehealth.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.1

52.19.31.233

200 OK

11 kB

URL HTTP/1.1
www.squarehealth.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.1
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (39759)
Size
11 kB (11191 bytes)
Hash
bfa398b8f599a6feadb0929ecbb1b5c9
c9d4356c293014f82e31f2a1b68d16c3496779ac
a35cdc3026b5098c1bfc7c9ab02e4489e3634a7b1477828e7e70e34b16dbf465

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.1 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Mon, 07 Mar 2022 06:24:25 GMT
ETag: "145a9-5d99aea7670ac-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 11191
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.squarehealth.com/wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=2.3.0

52.19.31.233

200 OK

711 B

URL HTTP/1.1
www.squarehealth.com/wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=2.3.0
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
ASCII text, with CRLF line terminators
Size
711 B (711 bytes)
Hash
545c02f04e5a81d5bca8d76d9fb0c975
da73e6c70cd43bebd168f02742ff810b4ef549e6
fbc0430b06aa945e5b5c8dab92ef0cf83defcf40663fd8f778dc0f2f17eb7306

HTTP Headers

GET /wp-content/plugins/uk-cookie-consent/assets/js/uk-cookie-consent-js.js?ver=2.3.0 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:15 GMT
ETag: "6f1-5d8322f344ecc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 711
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.google.com/recaptcha/api.js?render=6LdEoj4iAAAAAJmUNyiXfkxDre3Kfd0ysyaX1gC8&ver=3.0

216.58.211.4

200 OK

582 B

URL HTTP/2
www.google.com/recaptcha/api.js?render=6LdEoj4iAAAAAJmUNyiXfkxDre3Kfd0ysyaX1gC8&ver=3.0
IP
216.58.211.4:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (884), with no line terminators
Size
582 B (582 bytes)
Hash
a998483cd6d0ddbfa0f49305a2d81853
939a7875965d21f0da92d417cb969e4708528d43
a766eb7dc78a284411ee765dcc36113b293dde30a1217b73bebb181e6cb644e2

HTTP Headers

GET /recaptcha/api.js?render=6LdEoj4iAAAAAJmUNyiXfkxDre3Kfd0ysyaX1gC8&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Fri, 09 Dec 2022 13:50:25 GMT
date: Fri, 09 Dec 2022 13:50:25 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 582
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.squarehealth.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6

52.19.31.233

200 OK

507 B

URL HTTP/1.1
www.squarehealth.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (999), with no line terminators
Size
507 B (507 bytes)
Hash
22f32f77e17fa7640cda0a401c2b0844
019765feeed7ea2a9e9e506ce000978ea3ecd171
269c0f075ceb9464731b25afc21ae41536b76ef76bf0cf856c42e3e6311ec6ce

HTTP Headers

GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.5.6 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Mon, 07 Mar 2022 06:26:53 GMT
ETag: "3e7-5d99af344a6cc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 507
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

www.squarehealth.com/wp-content/themes/sqhc/js/all.js

52.19.31.233

200 OK

5.2 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/themes/sqhc/js/all.js
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (560)
Size
5.2 kB (5219 bytes)
Hash
b28e43fe071511cdd9ff49e85eb4eace
3afcea82ed18ef9a1bc60b1d502c3a85425a4993
93eeb0231e13a6a3dd1cb0f06384f0606d779b0e8027b921e93ddec75aba55a9

HTTP Headers

GET /wp-content/themes/sqhc/js/all.js HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:10 GMT
ETag: "4863-5d8322eee4cec-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 5219
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

www.squarehealth.com/wp-content/themes/sqhc/images/pink-down-icon.svg

52.19.31.233

200 OK

351 B

URL HTTP/1.1
www.squarehealth.com/wp-content/themes/sqhc/images/pink-down-icon.svg
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
351 B (351 bytes)
Hash
a19b752a78ecb73f5e79a7e6a1148ee5
865dbd63d9d8171ebff87987f8f09e2c857339b1
2f82a15fd28fb8c834b017f2e07250fbfb8c776a0f7c3108b3be46360312613f

HTTP Headers

GET /wp-content/themes/sqhc/images/pink-down-icon.svg HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:10 GMT
ETag: "1e2-5d8322eefc3ec-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 351
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml

www.squarehealth.com/wp-content/themes/sqhc/images/logo.svg

52.19.31.233

200 OK

2.4 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/themes/sqhc/images/logo.svg
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5383)
Size
2.4 kB (2389 bytes)
Hash
8f6fe487a55fa8f5f214565fb855ea4c
a7cd763031719aad0617c69666b5d4ec4a7e7791
90aa245b6a0aaa60685be94a74cf693005babafff95f47eaeba2cfbf7736bfa0

HTTP Headers

GET /wp-content/themes/sqhc/images/logo.svg HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:10 GMT
ETag: "171e-5d8322eefb44c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 2389
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml

www.squarehealth.com/wp-content/themes/sqhc/images/white-down-arrow.svg

52.19.31.233

200 OK

356 B

URL HTTP/1.1
www.squarehealth.com/wp-content/themes/sqhc/images/white-down-arrow.svg
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
356 B (356 bytes)
Hash
ca4ea4ae2f3efd138712b2dbfa05ed8a
26439f991df9fa963e39326184bf2bdd159ac672
011b97b15ea9c80e7c7dbb40b7c7a4b78302a976123006bdc4a89b5a78ea0aa9

HTTP Headers

GET /wp-content/themes/sqhc/images/white-down-arrow.svg HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:10 GMT
ETag: "1f0-5d8322eef75cc-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 356
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/svg+xml

www.squarehealth.com/wp-content/themes/sqhc/images/boxes-purple-reverse.svg

52.19.31.233

200 OK

4.1 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/themes/sqhc/images/boxes-purple-reverse.svg
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- HTML document, ASCII text
Size
4.1 kB (4076 bytes)
Hash
808c71bdcabcde00d90418aaffd06752
b2b1e64368db7c6f4879602630b49e65ee9bdbac
a0ba291861c5665a124c4d51a8c60950821cfec0fcd203b4ff1e134f66076f1e

HTTP Headers

GET /wp-content/themes/sqhc/images/boxes-purple-reverse.svg HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:10 GMT
ETag: "39d0-5d8322eef662c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 4076
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml

www.squarehealth.com/wp-content/themes/sqhc/images/boxes-purple.svg

52.19.31.233

200 OK

4.0 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/themes/sqhc/images/boxes-purple.svg
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
SVG Scalable Vector Graphics image\012- HTML document, Unicode text, UTF-8 text
Size
4.0 kB (4018 bytes)
Hash
37484a7a7d8e422af32cf982c1e6cbb4
87631df6c67eb7ae8a82be0f04d9d33479869487
c8237aa6baf811674af26c8f74133f1bf6f1928dbe9485478a8e1daaa2889713

HTTP Headers

GET /wp-content/themes/sqhc/images/boxes-purple.svg HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:10 GMT
ETag: "39f5-5d8322eef856c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 4018
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/svg+xml

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8585fe73b51c643ee300c3df9313bfe1
c184ce0c12fbfc0f17a81ad0e0bdaad5503bceb1
807b590f961c83886bbd27c879dfbf03a3336005cdabbba42d4d63bdcb11bf51

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 13:50:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
e6be4d2155028ffff5d01ab6e7edf6da
07172071b5cf43c4cd7d7930b4ad8518ec1e32e9
4d8a5fa2362fd0910babd6d128d850d4460829468eb23d34ee5ee6eaa42d5a38

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6483
Cache-Control: max-age=162273
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 13:50:25 GMT
Etag: "6392faaf-1d7"
Expires: Sun, 11 Dec 2022 10:54:58 GMT
Last-Modified: Fri, 09 Dec 2022 09:06:55 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471

www.squarehealth.com/wp-content/themes/sqhc/fonts/Aileron-UltraLight.woff2

52.19.31.233

200 OK

13 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/themes/sqhc/fonts/Aileron-UltraLight.woff2
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 12964, version 1.0\012- data
Size
13 kB (12964 bytes)
Hash
db322523d873eb3a9c58652dfde935d5
830aae68f375592446a50c8d82a5a6aff6e51b41
9ad4f877b6c4192163b0ae15ea4fd30ef9b59471a95ea99ecac5a0182e244e25

HTTP Headers

GET /wp-content/themes/sqhc/fonts/Aileron-UltraLight.woff2 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.squarehealth.com/wp-content/themes/sqhc/style.css?1665135116
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:10 GMT
ETag: "32a4-5d8322eee7bcc"
Accept-Ranges: bytes
Content-Length: 12964
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2

www.squarehealth.com/wp-content/themes/sqhc/fonts/Aileron-Thin.woff2

52.19.31.233

200 OK

13 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/themes/sqhc/fonts/Aileron-Thin.woff2
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 13400, version 1.0\012- data
Size
13 kB (13400 bytes)
Hash
2096027089ea79143f3a2f68a726d748
9d44a7287300fd4e1b72907cebf4aadadda1915c
b119edb631500b23b21bc063e780b860813b711200d643e4f6381638b56c047b

HTTP Headers

GET /wp-content/themes/sqhc/fonts/Aileron-Thin.woff2 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.squarehealth.com/wp-content/themes/sqhc/style.css?1665135116
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:03 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:10 GMT
ETag: "3458-5d8322eee7bcc"
Accept-Ranges: bytes
Content-Length: 13400
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff2

www.squarehealth.com/wp-content/themes/sqhc/fonts/Aileron-Light.woff2

52.19.31.233

200 OK

13 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/themes/sqhc/fonts/Aileron-Light.woff2
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 13288, version 1.0\012- data
Size
13 kB (13288 bytes)
Hash
80da7ef095a8267d886c4ca73b192b78
786cf43ff99b08f02b95446bda56b0083969d77a
9e0bf2b6a962f12dbdec9a5dd664c6a6bc53075a5f6b1ad0623e757ad7633423

HTTP Headers

GET /wp-content/themes/sqhc/fonts/Aileron-Light.woff2 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.squarehealth.com/wp-content/themes/sqhc/style.css?1665135116
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:10 GMT
ETag: "33e8-5d8322eeeaaac"
Accept-Ranges: bytes
Content-Length: 13288
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2

www.squarehealth.com/wp-content/themes/sqhc/fonts/Aileron-SemiBold.woff2

52.19.31.233

200 OK

13 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/themes/sqhc/fonts/Aileron-SemiBold.woff2
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
Web Open Font Format (Version 2), TrueType, length 13376, version 1.0\012- data
Size
13 kB (13376 bytes)
Hash
1896b3a8e2eabd7b516b8d4466381c75
04c5fa8346c7793c14a1610ce718dc71b3331cb4
3930067995e74cc8062e4574ef931891a4cc25466f33e4e9f2c2e10b9b68f74c

HTTP Headers

GET /wp-content/themes/sqhc/fonts/Aileron-SemiBold.woff2 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.squarehealth.com/wp-content/themes/sqhc/style.css?1665135116
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:03 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:10 GMT
ETag: "3440-5d8322eee8b6c"
Accept-Ranges: bytes
Content-Length: 13376
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff2

www.squarehealth.com/wp-content/uploads/2017/07/clinical-excellence.png

52.19.31.233

200 OK

630 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/uploads/2017/07/clinical-excellence.png
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced\012- data
Size
630 kB (629856 bytes)
Hash
2a8ad485510930c8398e109c4fc50a48
31fe3c50dc9831a92b74e4c144625bd947b23731
c4dcb6aa03b043a72251a81d09d21644d2a00ad8aa38e567afe9d687ff1300e4

HTTP Headers

GET /wp-content/uploads/2017/07/clinical-excellence.png HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:13 GMT
ETag: "99c60-5d8322f19c1ec"
Accept-Ranges: bytes
Content-Length: 629856
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Cache-Control: max-age=2678400, public
X-Robots-Tag: noindex
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

www.squarehealth.com/wp-content/uploads/2018/01/screening-banner-alt.png

52.19.31.233

200 OK

523 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/uploads/2018/01/screening-banner-alt.png
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced\012- data
Size
523 kB (523285 bytes)
Hash
d3a9cee716b26d7d408f216d0d97352a
79e325880c7ff6be88139e828237f17adb8021c9
3d4a487af8632e912953920f3cbff42ab13d7edec35f30073af72f5712c8e610

HTTP Headers

GET /wp-content/uploads/2018/01/screening-banner-alt.png HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:11 GMT
ETag: "7fc15-5d8322ef91a8c"
Accept-Ranges: bytes
Content-Length: 523285
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Cache-Control: max-age=2678400, public
X-Robots-Tag: noindex
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

www.squarehealth.com/wp-content/uploads/2017/07/health-tech-banner.png

52.19.31.233

200 OK

434 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/uploads/2017/07/health-tech-banner.png
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced\012- data
Size
434 kB (434293 bytes)
Hash
eb3aa6a647a3ca76ea4311a74603bbda
5145ccc9092391652b99191bf0dbc85fc0dddd49
d011a65f53ca7e6656e8da718cf04f681cd5c1712dd4d5ed30b7ad2ca48bbdb6

HTTP Headers

GET /wp-content/uploads/2017/07/health-tech-banner.png HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:13 GMT
ETag: "6a075-5d8322f15e98c"
Accept-Ranges: bytes
Content-Length: 434293
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Cache-Control: max-age=2678400, public
X-Robots-Tag: noindex
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

www.squarehealth.com/wp-content/uploads/2017/07/advanced-healthcare.png

52.19.31.233

200 OK

667 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/uploads/2017/07/advanced-healthcare.png
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced\012- data
Size
667 kB (666761 bytes)
Hash
6b50544b050c81f5d936a35d210d8b0a
c5c7b3421c05802d1a6705ca9058c95fadb4a31a
da0295d4623b2253970dc016bff2f23c37229d8190e9f91b86ecddfb62183f2c

HTTP Headers

GET /wp-content/uploads/2017/07/advanced-healthcare.png HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:02 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:13 GMT
ETag: "a2c89-5d8322f1ba64c"
Accept-Ranges: bytes
Content-Length: 666761
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Cache-Control: max-age=2678400, public
X-Robots-Tag: noindex
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

www.squarehealth.com/wp-content/uploads/2018/01/healthcare-banner-alt.png

52.19.31.233

200 OK

451 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/uploads/2018/01/healthcare-banner-alt.png
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced\012- data
Size
451 kB (450751 bytes)
Hash
9c66a1640c91f9c87ff62e74d204159b
98cf13e56e4f2be2b6a59e3754c953b03a21696c
9375e09506ae4bccd0ae208b3542f61d30f91eb6209bbab7dd6f14d97dafa8cf

HTTP Headers

GET /wp-content/uploads/2018/01/healthcare-banner-alt.png HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:03 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:11 GMT
ETag: "6e0bf-5d8322ef8dc0c"
Accept-Ranges: bytes
Content-Length: 450751
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Cache-Control: max-age=2678400, public
X-Robots-Tag: noindex
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.squarehealth.com/?wordfence_lh=1&hid=C5EA8FEE91BFFAD8F66BD5F244B56F71&r=0.993960596390398

52.19.31.233

200 OK

25 B

URL HTTP/1.1
www.squarehealth.com/?wordfence_lh=1&hid=C5EA8FEE91BFFAD8F66BD5F244B56F71&r=0.993960596390398
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
data
Size
25 B (25 bytes)
Hash
363f411ba212d4d1ccf7856f856145e9
08331057577f273187dd15e7c6f57937835e0aff
c50b40612adfdbf2e228758746fc7927cf440cb9bb5a8280c00d7946632a1943

HTTP Headers

GET /?wordfence_lh=1&hid=C5EA8FEE91BFFAD8F66BD5F244B56F71&r=0.993960596390398 HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:03 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Strict-Transport-Security: max-age=631138519; includeSubDomains
Link: <https://www.squarehealth.com/wp-json/>; rel="https://api.w.org/", <https://www.squarehealth.com/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <https://www.squarehealth.com/>; rel=shortlink
Connection: close
X-Robots-Tag: noindex
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Transfer-Encoding: chunked
Content-Type: text/javascript;charset=UTF-8

www.squarehealth.com/wp-content/uploads/2017/07/corporates-banner.png

52.19.31.233

200 OK

466 kB

URL HTTP/1.1
www.squarehealth.com/wp-content/uploads/2017/07/corporates-banner.png
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced\012- data
Size
466 kB (465961 bytes)
Hash
99971e195a9b2fdd9007988992956ce0
587e56928ef82832db52861421987a4219eb99cd
78ee2cee28b561bafa77ef7b4c84f53fcefe9a7c579e1b269fd1664dc5dc8fa9

HTTP Headers

GET /wp-content/uploads/2017/07/corporates-banner.png HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:03 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:13 GMT
ETag: "71c29-5d8322f1397cc"
Accept-Ranges: bytes
Content-Length: 465961
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Cache-Control: max-age=2678400, public
X-Robots-Tag: noindex
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

www.squarehealth.com/wp-admin/admin-ajax.php

52.19.31.233

200 OK

0 B

URL HTTP/1.1
www.squarehealth.com/wp-admin/admin-ajax.php
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /wp-admin/admin-ajax.php HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 29
Origin: https://www.squarehealth.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:03 GMT
Server: 
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Access-Control-Allow-Origin: *
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN, SAMEORIGIN, SAMEORIGIN
Referrer-Policy: same-origin, strict-origin-when-cross-origin
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Content-Length: 0
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

www.squarehealth.com/wp-content/themes/sqhc/favicon.ico

52.19.31.233

200 OK

204 B

URL HTTP/1.1
www.squarehealth.com/wp-content/themes/sqhc/favicon.ico
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
204 B (204 bytes)
Hash
746d40c53c6415f0d5905d60e1df2afc
e60ba8deea40ab5038db99b5ec960b7d586e1af7
b054bb1a03f78f90108df744da0c8ac0031b23ebc9a376742157eb3f2eddce34

HTTP Headers

GET /wp-content/themes/sqhc/favicon.ico HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:03 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:11 GMT
ETag: "d1-5d8322ef021ac-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Cache-Control: max-age=2678400, public
Content-Length: 204
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/x-icon

www.squarehealth.com/wp-content/themes/sqhc/images/meta/apple-touch-icon-iphone4.png

52.19.31.233

200 OK

361 B

URL HTTP/1.1
www.squarehealth.com/wp-content/themes/sqhc/images/meta/apple-touch-icon-iphone4.png
IP
52.19.31.233:0
ASN
#16509 AMAZON-02

File type
PNG image data, 114 x 114, 8-bit colormap, non-interlaced\012- data
Size
361 B (361 bytes)
Hash
adb1c95d9c9857b74575f655981985b2
4f2cb62f1894351ec99486f1a10c045ac051d35a
cc3f2b9bc8d65d112c09421c8c8f196286b70b5de2fa6fc1acd6adc82686c620

HTTP Headers

GET /wp-content/themes/sqhc/images/meta/apple-touch-icon-iphone4.png HTTP/1.1
Host: www.squarehealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.squarehealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 09 Dec 2022 13:29:03 GMT
Server: 
X-Frame-Options: SAMEORIGIN, SAMEORIGIN
Access-Control-Allow-Methods: POST, GET, DELETE, PUT
Access-Control-Max-Age: 1000
Access-Control-Allow-Headers: x-requested-with, Content-Type, origin, authorization, accept, client-security-token
X-XSS-Protection: 1; mode=block
Referrer-Policy: same-origin
Last-Modified: Thu, 17 Feb 2022 08:02:10 GMT
ETag: "169-5d8322eef180c"
Accept-Ranges: bytes
Content-Length: 361
Access-Control-Allow-Origin: *
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=631138519; includeSubDomains
Content-Security-Policy: script-src 'self' 'unsafe-eval' 'unsafe-inline' https://maps.googleapis.com https://code.jquery.com https://www.google.com https://www.gstatic.com https://www.cqc.org.uk; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://www.cqc.org.uk; font-src 'self' https://fonts.gstatic.com data:; img-src 'self' https://maps.googleapis.com https://www.cqc.org.uk http://2.gravatar.com https://maps.gstatic.com data:; frame-src 'self' https://www.youtube.com https://www.google.com;
Cache-Control: max-age=2678400, public
X-Robots-Tag: noindex
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 13:50:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js

216.58.211.3

200 OK

163 kB

URL HTTP/2
www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (730)
Size
163 kB (162976 bytes)
Hash
79d18cf4265108d7cecca1bf4ada6109
e51d0285a545381d4c39e9e0292a650ffeeecbb9
59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6

HTTP Headers

GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.squarehealth.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Dec 2022 13:40:02 GMT
expires: Thu, 07 Dec 2023 13:40:02 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 173424
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.82.221.194

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.82.221.194:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: lBnVyWqVHfpmkBfwVUwdKQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jMM+WLxt0anQwm2ac9weNGyxTsk=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8f6ab0debac98d11413e20fa98ba8286
e63543ba0f3a685edf4d8fee3f587efd5417015f
fe6bc081b1963c61a3af1ab7b7b1213ae5bc7b962c5474d8f6fe123547d5d309

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 09 Dec 2022 13:50:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11129
Expires: Fri, 09 Dec 2022 16:55:56 GMT
Date: Fri, 09 Dec 2022 13:50:27 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11129
Expires: Fri, 09 Dec 2022 16:55:56 GMT
Date: Fri, 09 Dec 2022 13:50:27 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
48c90992f0837a58e0a36118a27dae6a
3d238fed35e6d247bddbba92864e6b92e6aed9b6
cacc53ed285e96dcd5ba7609823922a253bc0623999b8716f430632d2c0e7dac

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CACC53ED285E96DCD5BA7609823922A253BC0623999B8716F430632D2C0E7DAC"
Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11129
Expires: Fri, 09 Dec 2022 16:55:56 GMT
Date: Fri, 09 Dec 2022 13:50:27 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6578 bytes)
Hash
8546542f00ea29ef4df6ab8d3c7c2164
5c8ffe91490006a9890188b53f875568c2b6bd8f
7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6578
x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cw4beGG7oAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: nXaZ1pazAGWMI9GFYZjGlvVVIb8wX6feD0O8VpzjsL8F8l3mFmydAw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:59 GMT
age: 23788
etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7557 bytes)
Hash
5de5d319f43d9c9c641419d96655541f
cde4c7fa0145d3645af17e34c83c63c08f76a076
fdb114eb142f035c7a54195d16af51b5b423642c312f4bccc0f407d8fcc245aa

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29d00d08-ec53-4c7b-a2ef-5901b64cdefd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7557
x-amzn-requestid: 09204b5e-8af5-4d4b-8186-628443866e0f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctlz5EISoAMFdWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638ee9b2-357cd4f921c592e1319098dd;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 07:05:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 3KZwQ5HqXa_-tUyDHA5m-65OprogFpFgbbKpEJ65k-Yy3lwoCg8M5w==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 07:13:15 GMT
age: 23832
etag: "cde4c7fa0145d3645af17e34c83c63c08f76a076"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7897 bytes)
Hash
8c3214044657f3b876d1f1848bca5684
7558222788f06623ddae6e883413e38e1146281e
e1f9c9c445bba7765f371dbb655cab43c1e12de7cbd015f8034c494118f7f708

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe602fad-66c2-48db-acd3-371ca6dcb8f6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7897
x-amzn-requestid: 032fd8ae-b7e9-4e12-8546-838191a73688
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cwVM_F51IAMFunw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63900252-345ae6cd107d207f5dbe29a8;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oV7bB5Tek01MFi9x2tr_Wix13-UGlQPIt042XM0ALNUvVFYnu5DRcg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 03:38:26 GMT
age: 36721
etag: "7558222788f06623ddae6e883413e38e1146281e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5169 bytes)
Hash
06514ce96ae21cb01f526a5febdcbeb4
ebb97e5b97f394e8c67098f55581d5329ce819a2
4099a2fb6ddc4feaa30f357a180d64aeb7c9fc73f115fc762d5fe5c221d2e89e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2654f7a6-bd8b-4c13-9c46-9b7582ba979a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5169
x-amzn-requestid: 277a1b04-4e19-4313-8aac-5f9ab9076305
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ctEdkFGrIAMFvHg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638eb456-5b21edd57297665012d536cc;Sampled=0
x-amzn-remapped-date: Tue, 06 Dec 2022 03:17:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: swNGUcNy2i0w9UGe-EJhwslE01TzTC3rrDhLhVVxHyhWMGSC1uq0mA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 04:46:15 GMT
age: 32652
etag: "ebb97e5b97f394e8c67098f55581d5329ce819a2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5188 bytes)
Hash
fba9a3854df65740512f96efe7442e58
8fbff7725c842d70e047c635a725723a9dc9c55a
6e639298ebc82343cee9267d2910d15735af55f910e2c3de9218266b7c6fffc9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60d2c55a-1a85-4fbf-b256-9d812a2b5ec2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5188
x-amzn-requestid: afb8cbd2-3674-4dac-9cd9-9ff83618ac0a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ck2-5G9joAMFlPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638b6b92-2979ff216b9028aa70baef8b;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 15:30:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dGxzuQ6zj6wXQbkBuKBnOKxwKJDHUyGoi7PgcugcpdX4QYruNiFxsQ==
via: 1.1 8ae6af4d17aae7471e5fe2792eb6abcc.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Dec 2022 21:51:24 GMT
age: 57543
etag: "8fbff7725c842d70e047c635a725723a9dc9c55a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5382e616-602f-4e00-bed7-d95c66a5000d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5245 bytes)
Hash
43fdc85bfd574fa803f0bcdc216ef622
27f558d5cdc150a50f080c054423500666b63d74
fafd2a81cddacdb4e5fd7c9963a784e6e56d06ac98f0bd4124fd74fa3ba015e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5382e616-602f-4e00-bed7-d95c66a5000d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5245
x-amzn-requestid: 9770ebcd-fb1e-4b81-bb87-1e98ef024741
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cy-E8HugoAMFsKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63911085-54eb7a48323113d52329abf5;Sampled=0
x-amzn-remapped-date: Wed, 07 Dec 2022 22:15:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: d2DHUS5fGT4uoPPdjDXmHUOQVF93ULtO4zSHRmrx7KMu3lO0y0K9ag==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 09 Dec 2022 01:23:35 GMT
age: 44812
etag: "27f558d5cdc150a50f080c054423500666b63d74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (23)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations