Report - eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fsupport.sage.hr%2Fen%2F&data=05%7C01%7Cemmadaniels%40ready-homes.com%7Cf865b25215354916dfa908db05384e31%7Cbd4bb560c2124c32860a076c951b4f46%7C0%7C0%7C638109511605086537%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=3VLXdqPLNQqTpTxJSeVde20kMXP5DyL5fi1QNUKa6j4%3D&reserved=0

Report Overview

Submitted URL
eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fsupport.sage.hr%2Fen%2F&data=05%7C01%7Cemmadaniels%40ready-homes.com%7Cf865b25215354916dfa908db05384e31%7Cbd4bb560c2124c32860a076c951b4f46%7C0%7C0%7C638109511605086537%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=3VLXdqPLNQqTpTxJSeVde20kMXP5DyL5fi1QNUKa6j4%3D&reserved=0
IP
104.47.11.28
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Submitted
2023-02-02 16:57:23
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	682 B	1.2 kB	93.184.220.29
static.intercomassets.com	15167	2020-05-04T09:46:12Z	2023-03-13T07:52:11Z	2.7 kB	147 kB	54.230.111.46
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.0 kB	8.0 kB	23.36.76.226
widget.intercom.io	2417	2020-07-20T14:16:46Z	2023-03-13T07:32:58Z	369 B	6.8 kB	54.230.111.86
nexus-websocket-a.intercom.io	2137	2015-06-26T12:17:57Z	2023-03-13T05:38:27Z	733 B	281 B	35.174.127.31
downloads.intercomcdn.com	25225	2017-08-21T14:06:05Z	2023-03-13T08:47:02Z	1.4 kB	3.5 kB	15.197.143.135
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.155.255.170
eur02.safelinks.protection.outlook.com	59828	2017-01-30T11:39:39Z	2023-03-13T08:53:22Z	825 B	723 B	104.47.11.220
fonts.intercomcdn.com	59711	2019-06-08T12:05:08Z	2023-03-13T08:39:24Z	1.9 kB	43 kB	54.230.111.44
ocsp.r2m01.amazontrust.com	unknown	2022-10-12T22:43:53Z	2023-03-13T08:10:39Z	350 B	944 B	54.230.80.227
js.intercomcdn.com	2440	2020-02-19T12:43:00Z	2023-03-13T07:32:58Z	371 B	141 kB	54.230.111.84
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	62 kB	34.120.237.76
support.sage.hr	unknown	2022-06-11T12:17:31Z	2023-01-31T11:33:06Z	448 B	43 kB	104.18.20.140
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	700 B	1.9 kB	54.230.245.100
api-iam.intercom.io	2892	2018-08-02T22:07:54Z	2023-03-13T07:27:25Z	964 B	1.8 kB	54.156.44.158

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (6)

	URL	Size	First Seen	Last Seen
	static.intercomassets.com/assets/help_center-4bd5f02b3f728fa6a162738af841aa465b18d1f29be03fbbffe96556a1787882.js	358 kB	2023-03-12	2023-05-21
Pretty URL static.intercomassets.com/assets/help_center-4bd5f02b3f728fa6a162738af841aa465b18d1f29be03fbbffe96556a1787882.js IP 54.230.111.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:31:41 Last Seen2023-05-21 19:13:50 Times Seen3 Hash 9c13fda75ba87c5d511468e049af4e3b a3abb61f4e0e0498688a63e9e77ed8528e02aea8 4bd5f02b3f728fa6a162738af841aa465b18d1f29be03fbbffe96556a1787882 Loading...

	support.sage.hr/en/	44 B	2023-03-13	2023-03-13
Pretty URL support.sage.hr/en/ IP 104.18.20.140 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:29:44 Last Seen2023-03-13 15:09:18 Times Seen1 Hash e1b7cb52a3fd333c7dff6028ab8cbd91 3b40572780b198806e4f31071a67f655c25cc092 3bddcf1efa7c78f14fd89c72a2ccf9819c81c03c7b6f05e6acddf28a955a7bd8 Loading...

	support.sage.hr/en/	108 B	2023-03-13	2023-03-13
Pretty URL support.sage.hr/en/ IP 104.18.20.140 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:09:18 Last Seen2023-03-13 15:09:18 Times Seen1 Hash 406fe35dc2e9ce3ecf039525f5ceb061 cb4e1d0646ce965b18cd9e99c7379a2149a666aa 8fd1adc91593655d2cfd1ddd6824e4896c4baecb84fd6f05cf917dc4ad5de078 Loading...

	support.sage.hr/en/	539 B	2023-03-13	2023-03-13
Pretty URL support.sage.hr/en/ IP 104.18.20.140 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:09:18 Last Seen2023-03-13 15:09:18 Times Seen1 Hash 077c50b53d28e8abbe39849bf5b7df7c fdfa2a97adec16eb356cc011e0735a510e7dac93 226d9f20c93eb36b00ef66b662d4780f50531abad99955c914e79d14219facf1 Loading...

	widget.intercom.io/widget/rmdb9fa2	19 kB	2023-03-13	2023-03-13
Pretty URL widget.intercom.io/widget/rmdb9fa2 IP 54.230.111.86 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:07:48 Last Seen2023-03-13 15:44:11 Times Seen1 Hash f20e5c5ca3389520587b7141ad7b8a78 e8f2a9a272f83185d5272f8b9b2a2b8c12d86060 5f28d945ecbc3a4ab46e815178cb8b023ecb7a5f1fc57342f4bc451e1a8d2e4c Loading...

		Size	First Seen	Last Seen
	#1 Write - fe364450e1391215f596d043488f989f	15 B	2023-03-07	2024-04-26
Pretty Observations First Seen2023-03-07 01:02:47 Last Seen2024-04-26 07:22:03 Times Seen14319 Hash fe364450e1391215f596d043488f989f d1848aa7b5cfd853609db178070771ad67d351e9 c77e5168dffda66b8dc13f1425b4d3630a6656a3e5acf707f4393277ba3c8b5e Loading...

HTTP Transactions (45)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 62de35a6c8e4efd7633fc5236b5b086f 6a92912a86dfcd0330d040cef06bef36889c76ab ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC" Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8544 Expires: Thu, 02 Feb 2023 19:19:36 GMT Date: Thu, 02 Feb 2023 16:57:12 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7e05c8461bd2dc5a149f71e2c465ea29 705983959c887e243cb55a8a1796757b579ee977 4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922" Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3215 Expires: Thu, 02 Feb 2023 17:50:47 GMT Date: Thu, 02 Feb 2023 16:57:12 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash ff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Thu, 02 Feb 2023 16:43:31 GMT content-type: application/json age: 821 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash a8d45deaa7ebfcd996c2055dae592ab8 55befe074589fe7b39757c145968058162a8fc6b 50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7" Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7996 Expires: Thu, 02 Feb 2023 19:10:28 GMT Date: Thu, 02 Feb 2023 16:57:12 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: WeWKEANOG28uH9Fyd6TWdNo2B/1vFHzdn3qp621QZzart9qqw6ct2PW2WyG2lE5ofSbR4/BZNFw= x-amz-request-id: GR8YVJYNNVD4ARQP content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Thu, 02 Feb 2023 16:52:03 GMT age: 309 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Thu, 02 Feb 2023 16:57:12 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Thu, 02 Feb 2023 16:49:05 GMT age: 487 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8913af0be619500295008bb91f506660 a7b8068ba9aa506205a295b24458c2616997a0d1 6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A" Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12877 Expires: Thu, 02 Feb 2023 20:31:50 GMT Date: Thu, 02 Feb 2023 16:57:13 GMT Connection: keep-alive`

	push.services.mozilla.com/	35.155.255.170	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 35.155.255.170:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: U8rXaPp7LaK2nz4eeUGCKQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: Hbogcg8No4CgNfFWcUqceTjbA14=`

	eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fsupport.sage.hr%2Fen%2F&data=05%7C01%7Cemmadaniels%40ready-homes.com%7Cf865b25215354916dfa908db05384e31%7Cbd4bb560c2124c32860a076c951b4f46%7C0%7C0%7C638109511605086537%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=3VLXdqPLNQqTpTxJSeVde20kMXP5DyL5fi1QNUKa6j4%3D&reserved=0	104.47.11.220	302 Found	144 B
URL HTTP/1.1 eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fsupport.sage.hr%2Fen%2F&data=05%7C01%7Cemmadaniels%40ready-homes.com%7Cf865b25215354916dfa908db05384e31%7Cbd4bb560c2124c32860a076c951b4f46%7C0%7C0%7C638109511605086537%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=3VLXdqPLNQqTpTxJSeVde20kMXP5DyL5fi1QNUKa6j4%3D&reserved=0 IP 104.47.11.220:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 144 B (144 bytes) Hash 42ffca93fc2c3fda9273d0c1564f6fed 51a32c80d367c908ecb767a109f51b8f23cd79e7 7eb9bc0caa939073d2c5039e6d91c0490802529edb2a0e9fe30972e706c57984 HTTP Headers GET /?url=https%3A%2F%2Fsupport.sage.hr%2Fen%2F&data=05%7C01%7Cemmadaniels%40ready-homes.com%7Cf865b25215354916dfa908db05384e31%7Cbd4bb560c2124c32860a076c951b4f46%7C0%7C0%7C638109511605086537%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&sdata=3VLXdqPLNQqTpTxJSeVde20kMXP5DyL5fi1QNUKa6j4%3D&reserved=0 HTTP/1.1 Host: eur02.safelinks.protection.outlook.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/1.1 302 Found Cache-Control: private Content-Type: text/html; charset=utf-8 Location: https://support.sage.hr/en/ Server: Microsoft-IIS/10.0 X-AspNetMvc-Version: 4.0 X-SL-GetUrlReputation-Verdict: Good X-Robots-Tag: noindex, nofollow X-AspNet-Version: 4.0.30319 X-ServerName: AM0EUR02WS020 X-ServerVersion: 15.20.6064.027 X-ServerLat: 1730 X-SafeLinks-Tracking-Id: 05e464f1-70a8-4c75-3f9f-08db053e8791 X-Powered-By: ASP.NET X-Content-Type-Options: nosniff X-UA-Compatible: IE=Edge Date: Thu, 02 Feb 2023 16:57:14 GMT Connection: close Content-Length: 144

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 488dc9fd6d03a3f64f16545b5bd372c4 754e6ef3e438f1371bc86370f3712748fe93bafc 1da93d779da121355ee02bb5b7c0ceb6305137b72b20b1ba9b76c95afcd4ac33 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Cache-Control: max-age=101717 Content-Type: application/ocsp-response Date: Thu, 02 Feb 2023 16:57:14 GMT Etag: "63dad5bf-118" Expires: Fri, 03 Feb 2023 21:12:31 GMT Last-Modified: Wed, 01 Feb 2023 21:12:31 GMT Server: nginx Content-Length: 280`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash e8e0173672ec76c01676a1ba4e1be857 3d01334320c94972440226cfe96c8c7646cae796 c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1" Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9989 Expires: Thu, 02 Feb 2023 19:43:43 GMT Date: Thu, 02 Feb 2023 16:57:14 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash e8e0173672ec76c01676a1ba4e1be857 3d01334320c94972440226cfe96c8c7646cae796 c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1" Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9989 Expires: Thu, 02 Feb 2023 19:43:43 GMT Date: Thu, 02 Feb 2023 16:57:14 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash e8e0173672ec76c01676a1ba4e1be857 3d01334320c94972440226cfe96c8c7646cae796 c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1" Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9989 Expires: Thu, 02 Feb 2023 19:43:43 GMT Date: Thu, 02 Feb 2023 16:57:14 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash e8e0173672ec76c01676a1ba4e1be857 3d01334320c94972440226cfe96c8c7646cae796 c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1" Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9989 Expires: Thu, 02 Feb 2023 19:43:43 GMT Date: Thu, 02 Feb 2023 16:57:14 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash e8e0173672ec76c01676a1ba4e1be857 3d01334320c94972440226cfe96c8c7646cae796 c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1" Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9989 Expires: Thu, 02 Feb 2023 19:43:43 GMT Date: Thu, 02 Feb 2023 16:57:14 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg	34.120.237.76	200 OK	16 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 16 kB (15857 bytes) Hash 4bb3a6fba496d54cdbbccaf2b9600386 8e30002699e9fbf2047f9ac11a36d2175fc9c591 927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 15857 x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fmJ2JGGWoAMFSLA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0 x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google date: Thu, 02 Feb 2023 07:28:37 GMT age: 34117 etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (11367 bytes) Hash 395bb0f71f9eba82f5ca23548d08900f b1fada280c7ea3eb775a6fa46ce173a51eb045f5 7443babb69532e1ee3ee779e05ad4f62de2c5bf62548bcb5702f8290a527664c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F496723d4-47ce-49a5-b3b3-9ae546523015.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11367 x-amzn-requestid: 67702c15-9a68-46ec-95e5-efb57f08e2f1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: frc5OGfBoAMF3Yw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dadb6e-033182ba55fdd0230ad5a270;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:46 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: H1HIK6zdv95V96NxqSfHCqYtDQNPZ9NLAwG5oM5mwRr3nAUR0BPxlg== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google date: Wed, 01 Feb 2023 22:25:11 GMT age: 66723 etag: "b1fada280c7ea3eb775a6fa46ce173a51eb045f5" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg	34.120.237.76	200 OK	5.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.4 kB (5356 bytes) Hash 7c823f1d6bf1c50d58eb263b85e6e37c a7b74d11494fb3254df907e5cc1eead070d84617 b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5356 x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: frc5BEB6oAMFczg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg== via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google date: Wed, 01 Feb 2023 22:18:55 GMT age: 67099 etag: "a7b74d11494fb3254df907e5cc1eead070d84617" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg	34.120.237.76	200 OK	5.1 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.1 kB (5061 bytes) Hash 0224e848c34cb32cf932ed99dfd8468a 31c1abac8979bca5a998a6649ca3e6f59c0fb2f5 f93d5a69758e57d4d2b0d307ce98ad5ea8d86b825108873e8ea5bc36567dc5c0 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04301881-7728-4218-a61a-642cd5ffae53.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5061 x-amzn-requestid: a266acae-8f1e-4cd7-b93b-e40aa5393521 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: frdUpGcmoAMF16Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dadc1d-1fbae7785fccc58f71c1b3e9;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:41 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: PevXZz9rkBo3Cy6EooCVOpSoHyeKHMoYFjKRrvDld34WFWXzOmpANQ== via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google date: Wed, 01 Feb 2023 22:11:31 GMT age: 67543 etag: "31c1abac8979bca5a998a6649ca3e6f59c0fb2f5" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg	34.120.237.76	200 OK	8.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.9 kB (8944 bytes) Hash b9af1fd56c0de8f128ddce88d49c1b4d e3bb3d4950f7c0267f4476eef21872da332831aa 908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8944 x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: freiLHRPoAMFYbw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 86qoRJHXcrnBGi3REMF5q3ANzKdqEs5F3yFUBmiIt6SCbBVnhGe2Kw== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google date: Wed, 01 Feb 2023 21:58:57 GMT age: 68297 etag: "e3bb3d4950f7c0267f4476eef21872da332831aa" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg	34.120.237.76	200 OK	8.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.6 kB (8642 bytes) Hash 0f85742f336de59ca88f7f964a8b33f4 0fc7177f8cb06421a8807e93989f651bda743567 fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8642 x-amzn-requestid: 79840c68-3e99-428d-9c01-9e4a93a34486 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: frdUzH1-oAMFiwQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dadc1e-5bb93c5126aaff474900da63;Sampled=0 x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:42 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: Mc8C-oesi4njIn2K2f56GKuyt6erRJAqCU-B4InhTD8oIoqo4s5-Fg== via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google date: Wed, 01 Feb 2023 22:18:43 GMT age: 67111 etag: "0fc7177f8cb06421a8807e93989f651bda743567" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 488dc9fd6d03a3f64f16545b5bd372c4 754e6ef3e438f1371bc86370f3712748fe93bafc 1da93d779da121355ee02bb5b7c0ceb6305137b72b20b1ba9b76c95afcd4ac33 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 1 Cache-Control: max-age=101717 Content-Type: application/ocsp-response Date: Thu, 02 Feb 2023 16:57:15 GMT Etag: "63dad5bf-118" Expires: Fri, 03 Feb 2023 21:12:32 GMT Last-Modified: Wed, 01 Feb 2023 21:12:31 GMT Server: ECS (ska/F711) X-Cache: HIT Content-Length: 280`

	static.intercomassets.com/avatars/3950075/square_128/Profile-1586353404.JPG	54.230.111.46	200 OK	11 kB
URL HTTP/2 static.intercomassets.com/avatars/3950075/square_128/Profile-1586353404.JPG IP 54.230.111.46:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, description=Processed with VSCO with c3 preset, manufacturer=Apple, model=iPhone, orientation=upper-left, xresolution=208, yresolution=216, resolutionunit=2, software=VSCO, datetime=2017:05:28 20:03:20, hostcomputer=iPhone, copyright=Copyright 2017. All rights reserved.], baseline, precision 8, 128x128, components 3\012- data Size 11 kB (11427 bytes) Hash 9328169e7403bf9d5c6f0631ca8afdfa e7fe21e6d8f25bea2974024e0d3919d91c8be625 6568529316838175e13a9eee238b53c6e4f11c56b70955c29c9dee2892423a7f HTTP Headers `GET /avatars/3950075/square_128/Profile-1586353404.JPG HTTP/1.1 Host: static.intercomassets.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.sage.hr/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: image/jpeg content-length: 11427 last-modified: Wed, 08 Apr 2020 13:43:25 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: null accept-ranges: bytes server: AmazonS3 date: Thu, 02 Feb 2023 07:34:39 GMT cache-control: max-age=86400 etag: "9328169e7403bf9d5c6f0631ca8afdfa" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: UHOWOqurJhxJgwUFyQx6_B7YaZhoYN9Ty03jIm-n44hzGi6zSu8d-Q== age: 33758 X-Firefox-Spdy: h2

	static.intercomassets.com/avatars/3340462/square_128/1582296740830-1637861463.jpeg	54.230.111.46	200 OK	5.6 kB
URL HTTP/2 static.intercomassets.com/avatars/3340462/square_128/1582296740830-1637861463.jpeg IP 54.230.111.46:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3\012- data Size 5.6 kB (5571 bytes) Hash 60e86c88cdedd3087e6e387d35d35f92 2c0fc17009a97ff51586675138394b657d35a58e c61a930441700f98b285ff9698aabd77b68e608992ef2429d619cceed366c6ab HTTP Headers `GET /avatars/3340462/square_128/1582296740830-1637861463.jpeg HTTP/1.1 Host: static.intercomassets.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.sage.hr/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: image/jpeg content-length: 5571 last-modified: Thu, 25 Nov 2021 17:31:04 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: null accept-ranges: bytes server: AmazonS3 date: Thu, 02 Feb 2023 16:57:16 GMT cache-control: max-age=86400 etag: "60e86c88cdedd3087e6e387d35d35f92" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: MdyKwDlXPOtBJk2KXO_-ggzvPz34g0uOFM8D6gsbOVw5imJwG8RpBA== age: 29804 X-Firefox-Spdy: h2

	support.sage.hr/en/	104.18.20.140	200 OK	40 kB
URL HTTP/2 support.sage.hr/en/ IP 104.18.20.140:0 ASN #13335 CLOUDFLARENET File type data Size 40 kB (40228 bytes) Hash bd6adc9ebb8f3add8baa0138a6b41a47 0fb557c5297bde983529755debc47337faef5a89 6843f2e3b33d734c74eadc7ba0a6e35ac23aaba91d2a2eed23289d8228fcae6d HTTP Headers `GET /en/ HTTP/1.1 Host: support.sage.hr User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Thu, 02 Feb 2023 16:57:15 GMT content-type: text/html; charset=utf-8 status: 200 OK cache-control: max-age=0, private, must-revalidate vary: Accept-Encoding x-intercom-version: aa1d592f63c683de82e59e2ea90e994c05a3350d x-xss-protection: 1; mode=block x-request-id: 0018up4suk6vldte4rb0 x-runtime: 1.177888 x-frame-options: DENY x-content-type-options: nosniff content-security-policy: default-src 'self'; base-uri 'self'; connect-src 'self' wss://.intercom.io https://.intercom.io https://.intercom.com https://uploads.intercomcdn.com https://uploads.intercomcdn.eu https://uploads.intercomusercontent.com https://.google-analytics.com https://.analytics.google.com https://stats.g.doubleclick.net; font-src data: https:; frame-ancestors 'self' https://intercom.skilljar.com https://academy.intercom.com; frame-src 'self' https://platform.twitter.com https://staticxx.facebook.com https://www.facebook.com https://fast.wistia.net https://fast.wistia.com https://www.useloom.com https://www.loom.com https://play.vidyard.com https://player.vimeo.com https://web.microsoftstream.com https://share.synthesia.io https://www.youtube.com https://www.youtube-nocookie.com https://content.jwplatform.com https://players.brightcove.net https://intercom-sheets.com https://www.intercom-reporting.com; img-src data: blob: https: http:; media-src data: blob: https:; object-src 'self' https://static.intercomassets.com; script-src 'self' https://connect.facebook.net https://platform.twitter.com https://static.intercomassets.com https://googleadservices.com https://googletagmanager.com https://google-analytics.com https://widget.intercom.io https://js.intercomcdn.com https://www.googletagmanager.com https://.google-analytics.com https://*.analytics.google.com https://intercom.help https://intercom-help.eu https://au.intercom.help 'nonce-M+zyiBLidw4usCCPhsHTqWMHEm3R81mrQszobq6lBP4='; style-src 'self' 'unsafe-inline' https://fonts.intercomcdn.com https://static.intercomassets.com https://static.intercomcdn.com https://marketing.intercomassets.com https://marketing.intercomcdn.com https://intercom.help https://intercom-help.eu https://au.intercom.help https://static.intercomassets.eu https://static.au.intercomassets.com x-ami-version: ami-0e40581e672c9a67a cf-cache-status: DYNAMIC set-cookie: __cf_bm=mXVSj4dCPSQE7XEFiETdWnZTmh5kL4GqPFEWQReZelk-1675357035-0-ASM3LL1nTsAgRqnykMV+4KIg/XnZDghjSWhGrhyQNz/5VUX1yZyVt1FZaQc59+plYEQIWF/sIJaD3f8xrwysaWI=; path=/; expires=Thu, 02-Feb-23 17:27:15 GMT; domain=.sage.hr; HttpOnly; Secure; SameSite=None strict-transport-security: max-age=15552000; includeSubDomains; preload server: cloudflare cf-ray: 793476f81969fab4-OSL content-encoding: gzip alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	static.intercomassets.com/avatars/3925366/square_128/My_profile-1587036455.jpg	54.230.111.46	200 OK	9.9 kB
URL HTTP/2 static.intercomassets.com/avatars/3925366/square_128/My_profile-1587036455.jpg IP 54.230.111.46:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 128x128, components 3\012- data Size 9.9 kB (9944 bytes) Hash 81930344d5ab82badaf0f541fcb9601a 60803964256a665723df94677109bad1b6dd20fc f34a5ceabe24eec156868178b647b4ef4184d8173f0dc6c7e0f08b7358bd4319 HTTP Headers `GET /avatars/3925366/square_128/My_profile-1587036455.jpg HTTP/1.1 Host: static.intercomassets.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.sage.hr/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: image/jpeg content-length: 9944 last-modified: Thu, 16 Apr 2020 11:27:36 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: null accept-ranges: bytes server: AmazonS3 date: Thu, 02 Feb 2023 16:57:16 GMT cache-control: max-age=86400 etag: "81930344d5ab82badaf0f541fcb9601a" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: jH7lwZBYRRCVYvsoOBKSzvEZhccuuVmGhqWWRa8GOLyds_3dYd6EMA== age: 33758 X-Firefox-Spdy: h2

	static.intercomassets.com/avatars/3080347/square_128/image1-1554119954.jpeg	54.230.111.46	200 OK	35 kB
URL HTTP/2 static.intercomassets.com/avatars/3080347/square_128/image1-1554119954.jpeg IP 54.230.111.46:0 ASN #16509 AMAZON-02 File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16], baseline, precision 8, 128x128, components 3\012- data Size 35 kB (35200 bytes) Hash 38e69b64dc37764e8e37c5982fb35129 8b369808d6c68d6c07c2595c0eb78bbf0822e894 3f55793ab0774bf9cf0f33b0030c53ba4a8530bd6b1de1198f192a1bf654b035 HTTP Headers `GET /avatars/3080347/square_128/image1-1554119954.jpeg HTTP/1.1 Host: static.intercomassets.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.sage.hr/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: image/jpeg content-length: 35200 last-modified: Mon, 01 Apr 2019 11:59:17 GMT x-amz-server-side-encryption: AES256 x-amz-version-id: null accept-ranges: bytes server: AmazonS3 date: Thu, 02 Feb 2023 07:09:23 GMT cache-control: max-age=86400 etag: "38e69b64dc37764e8e37c5982fb35129" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: wAu3ZQOCpxZ7bR7vwKkXvfCSxuK0tq9uUOuEmqlz0EQhO2vdEw21zA== age: 35274 X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	54.230.245.100	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.100:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 692d4034c92fbbadb446b1aa1ed3197d 25f3e2a7a6b4e71fa2bc1b8ae02ece746672be49 c29c46c1991e64a29e45f63a30b2e61386bc5f617dad55605a253dadd1f8849b HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Thu, 02 Feb 2023 16:57:16 GMT Last-Modified: Thu, 02 Feb 2023 15:30:45 GMT Server: ECS (bsa/EB1B) X-Cache: Miss from cloudfront Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: x5ntrfSvJyV-F1iov9K4ik4Aq2QV1xyoqWmKLhSXy2LLJxCHYRniSg== Age: 5191`

	static.intercomassets.com/assets/help_center-4bd5f02b3f728fa6a162738af841aa465b18d1f29be03fbbffe96556a1787882.js	54.230.111.46	200 OK	81 kB
URL HTTP/2 static.intercomassets.com/assets/help_center-4bd5f02b3f728fa6a162738af841aa465b18d1f29be03fbbffe96556a1787882.js IP 54.230.111.46:0 ASN #16509 AMAZON-02 File type data Size 81 kB (80998 bytes) Hash d9aa9e833d279941c663ca519df50e95 4491284a4f0788ac8a4d01d8c8e309ec73d0f35c 2ac034667a849f8998275ebee4563ae38754e6ec0f527b432a223b5085c19800 HTTP Headers `GET /assets/help_center-4bd5f02b3f728fa6a162738af841aa465b18d1f29be03fbbffe96556a1787882.js HTTP/1.1 Host: static.intercomassets.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.sage.hr/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=utf-8 date: Fri, 06 Jan 2023 12:13:33 GMT last-modified: Fri, 06 Jan 2023 12:07:56 GMT etag: W/"9c13fda75ba87c5d511468e049af4e3b" x-amz-server-side-encryption: AES256 x-amz-version-id: Cwya4IcUCqQ9ziRhplzanyjzDxVKYSLu server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: RDnqbZq5xJRvEmb80p97gtK--00DVWYzJjbC1fi_7pnYhY630eXHNA== age: 2349824 X-Firefox-Spdy: h2

	fonts.intercomcdn.com/proxima-nova/latin/proxima-nova-latin-bold.woff2	54.230.111.44	200 OK	12 kB
URL HTTP/2 fonts.intercomcdn.com/proxima-nova/latin/proxima-nova-latin-bold.woff2 IP 54.230.111.44:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 12504, version 3.917\012- data Size 12 kB (12504 bytes) Hash 9f3e0f5077679174152c43c0da165657 935ac6e6abb14e09890cb4e0e7877ad4ce18ed6f db397c85775fc852e6431e218ca461edbf6491cb7aad8b8ec32f46f9d5daee90 HTTP Headers `GET /proxima-nova/latin/proxima-nova-latin-bold.woff2 HTTP/1.1 Host: fonts.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://support.sage.hr Connection: keep-alive Referer: https://fonts.intercomcdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: binary/octet-stream content-length: 12504 date: Mon, 30 Jan 2023 07:21:36 GMT access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 last-modified: Thu, 17 Nov 2022 13:54:47 GMT etag: "9f3e0f5077679174152c43c0da165657" x-amz-server-side-encryption: AES256 cache-control: max-age=2592000 x-amz-version-id: AMznOrdMUpt2moovRZGMZnDiVtjuSkU4 accept-ranges: bytes server: AmazonS3 vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: 1EpECrZP3vefRWBfDQuE3DGdnZUFIfIf6RBEsQLW7hiRqljpyBplEA== age: 293741 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	fonts.intercomcdn.com/proxima-nova/latin/proxima-nova-latin-regular.woff2	54.230.111.44	200 OK	13 kB
URL HTTP/2 fonts.intercomcdn.com/proxima-nova/latin/proxima-nova-latin-regular.woff2 IP 54.230.111.44:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 12724, version 3.917\012- data Size 13 kB (12724 bytes) Hash 39e537d059414d389318cb0964bb2a0b 0bb4bb03b24cbcb1edea2cb5674169d0d9910e6e d435b33a2b6696d165b465378a658ed0f3b61bf36017fbd4e2d42e1eec84ebc8 HTTP Headers `GET /proxima-nova/latin/proxima-nova-latin-regular.woff2 HTTP/1.1 Host: fonts.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://support.sage.hr Connection: keep-alive Referer: https://fonts.intercomcdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: binary/octet-stream content-length: 12724 date: Mon, 30 Jan 2023 07:20:34 GMT access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 last-modified: Thu, 17 Nov 2022 13:54:47 GMT etag: "39e537d059414d389318cb0964bb2a0b" x-amz-server-side-encryption: AES256 cache-control: max-age=2592000 x-amz-version-id: OtBvnPkj5lPSCzmrvR5ndMBvuoVoeQGK accept-ranges: bytes server: AmazonS3 vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: UIOLzNFvP8vTZ5ERPab2BqRZy8D3B6_a05jFcCXazSoMFwuNjE2Q_A== age: 293803 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	fonts.intercomcdn.com/proxima-nova/latin/proxima-nova-latin-semibold.woff2	54.230.111.44	200 OK	12 kB
URL HTTP/2 fonts.intercomcdn.com/proxima-nova/latin/proxima-nova-latin-semibold.woff2 IP 54.230.111.44:0 ASN #16509 AMAZON-02 File type Web Open Font Format (Version 2), TrueType, length 12280, version 3.917\012- data Size 12 kB (12280 bytes) Hash 7db94101edae29203150575d6c82d799 dcf2c8ff9154d5cba438133bf72f27c50239c859 b6b940ae85fb5fc386e3d521dec1d5db3fc2154e151ae6beabc864d8a855f96b HTTP Headers `GET /proxima-nova/latin/proxima-nova-latin-semibold.woff2 HTTP/1.1 Host: fonts.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://support.sage.hr Connection: keep-alive Referer: https://fonts.intercomcdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: binary/octet-stream content-length: 12280 date: Mon, 23 Jan 2023 09:28:00 GMT access-control-allow-origin: * access-control-allow-methods: GET access-control-max-age: 3000 last-modified: Thu, 17 Nov 2022 13:54:47 GMT etag: "7db94101edae29203150575d6c82d799" x-amz-server-side-encryption: AES256 cache-control: max-age=2592000 x-amz-version-id: 7ljllA8utEEcBQI0uXf1HxY57d35ku.i accept-ranges: bytes server: AmazonS3 vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: dmdl8_s08EdSQqBpyp__1Y004PDzrJYpX2Ywq5QRUF2VEqJ18oFhXA== age: 890957 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	fonts.intercomcdn.com/proxima-nova/proxima-nova-all.css	54.230.111.44	200 OK	1.9 kB
URL HTTP/2 fonts.intercomcdn.com/proxima-nova/proxima-nova-all.css IP 54.230.111.44:0 ASN #16509 AMAZON-02 File type data Size 1.9 kB (1870 bytes) Hash 2450fbb98e462cba9cc4870f8b539cd9 0ca6269ebbfc9aefd25d7274bfc4bc334f32bbdf fcbaf8fb67bc633f30c1f2a73a74a0cf1657623f300c8b165493ac505a2e3769 HTTP Headers `GET /proxima-nova/proxima-nova-all.css HTTP/1.1 Host: fonts.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://static.intercomassets.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css date: Sat, 14 Jan 2023 00:46:38 GMT last-modified: Thu, 17 Nov 2022 13:54:47 GMT etag: W/"2cd1a0dc5ee667937d235a9fd85f2948" x-amz-server-side-encryption: AES256 cache-control: max-age=2592000 x-amz-version-id: QQ7vZxSY3P1_b_TZ1BFuExERzVy.7IRX server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: CMvj_xp0UEWVP6MUyi1mlDSJ0VUimJ4XOz6ElKAZ1rMUhpQqkhmOyQ== age: 1699839 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	ocsp.r2m01.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m01.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash e088d49943fc22f5a8c7dfa39456f844 d73e15544314dee56150a4ad718f1000a889a2ad b45862547b5b55255476755c72eba886fbddb249825dc1e015b98b07943bec5b HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m01.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Thu, 02 Feb 2023 16:57:16 GMT Last-Modified: Thu, 02 Feb 2023 15:15:34 GMT Server: ECS (nyb/1D14) X-Cache: Miss from cloudfront Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 8r_NVFASeBa8YZD2dTG_MP7KTx7V_KrzBbNS99foa1F2200aaN9elw== Age: 6103`

	widget.intercom.io/widget/rmdb9fa2	54.230.111.86	200 OK	6.0 kB
URL HTTP/2 widget.intercom.io/widget/rmdb9fa2 IP 54.230.111.86:0 ASN #16509 AMAZON-02 File type Unicode text, UTF-8 text, with very long lines (18637), with no line terminators Size 6.0 kB (6046 bytes) Hash bfc0da6edb87a4194af5f0db6fbae83d 9387b326aa95c73f268a8f818f54a88b8b978009 878d1402530abec4507623dd8bc526accbe9ba9e35472ec564184206684cd3e3 HTTP Headers `GET /widget/rmdb9fa2 HTTP/1.1 Host: widget.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.sage.hr/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 6046 last-modified: Thu, 02 Feb 2023 16:14:31 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip x-amz-version-id: 8yImfNz2rQQzBQiMoEg1EHaZvRWrM7fv accept-ranges: bytes server: AmazonS3 date: Thu, 02 Feb 2023 16:50:28 GMT cache-control: max-age=900, s-maxage=900, public etag: "bfc0da6edb87a4194af5f0db6fbae83d" x-cache: Error from cloudfront via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: MmGR8VXCWUKvwwBaX2M2EUwkWp4xHUBXxFZH9t_as88qyZls-FuSXw== age: 456 vary: Accept-Encoding, Origin X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	54.230.245.100	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.100:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 621c9d51fc1626afc8205b3f1a813900 7fdc3b13737de934c1fc8f3cd7c6561c1ba45be3 2eb462fe8ec2d915d27d1d047f43114f6a2c97ba173f16b9148ba71547d1e53e HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Thu, 02 Feb 2023 16:57:16 GMT Last-Modified: Thu, 02 Feb 2023 15:12:12 GMT Server: ECS (nyb/1D23) X-Cache: Miss from cloudfront Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: -wfGVBF_6bm-L1gA98zmAf8vffQqtyRe0IUM0YAFiWEuP7FjMHQuLA== Age: 6304`

	js.intercomcdn.com/frame.82f4e53b.js	54.230.111.84	200 OK	140 kB
URL HTTP/2 js.intercomcdn.com/frame.82f4e53b.js IP 54.230.111.84:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (65536), with no line terminators Size 140 kB (139839 bytes) Hash eb9bf63c31a80378acd4de5734ee3994 fa8861fd96409b0445d04044a3a03f2b6681c594 6fbc634875ab5da0ff430830b6b053bceff5564ab3bda9ae4b72082243ecc08e HTTP Headers `GET /frame.82f4e53b.js HTTP/1.1 Host: js.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.sage.hr/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 content-length: 139839 date: Thu, 02 Feb 2023 16:14:41 GMT last-modified: Thu, 02 Feb 2023 16:12:53 GMT etag: "eb9bf63c31a80378acd4de5734ee3994" x-amz-server-side-encryption: AES256 cache-control: max-age=31536000, s-maxage=7200, public content-encoding: gzip x-amz-version-id: lAvP38H4pDEpuV4Md6yiaGhgW0fDbi_3 accept-ranges: bytes server: AmazonS3 x-cache: Hit from cloudfront via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: Mqi3st1OcgWXf78axbNemTBoV7_VeLh7ZCL7kKTusQzJOZNSn6N_tg== age: 2556 strict-transport-security: max-age=31536000; includeSubDomains; preload X-Firefox-Spdy: h2

	nexus-websocket-a.intercom.io/pubsub/5-XwnMSK2POpfS5fgc2RE62ELENcZym6ZoS6fWRcZhksxDaBuN9XsEkflJg3H8jcZfzc5ChGMioxDK60Q8XTh0FDItH_2Z1vn9SSzE?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined	35.174.127.31	101 Switching Protocols	0 B
URL HTTP/1.1 nexus-websocket-a.intercom.io/pubsub/5-XwnMSK2POpfS5fgc2RE62ELENcZym6ZoS6fWRcZhksxDaBuN9XsEkflJg3H8jcZfzc5ChGMioxDK60Q8XTh0FDItH_2Z1vn9SSzE?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined IP 35.174.127.31:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /pubsub/5-XwnMSK2POpfS5fgc2RE62ELENcZym6ZoS6fWRcZhksxDaBuN9XsEkflJg3H8jcZfzc5ChGMioxDK60Q8XTh0FDItH_2Z1vn9SSzE?X-Nexus-New-Client=true&X-Nexus-Version=0.9.0&user_role=undefined HTTP/1.1 Host: nexus-websocket-a.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: https://support.sage.hr Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: NKSvt2cmIHfOtpqJ0fQfyg== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Server: nginx Date: Thu, 02 Feb 2023 16:57:18 GMT Connection: upgrade Upgrade: websocket Sec-WebSocket-Accept: UC5YKkA7Z3BQeyKcacwqNwl9tvE= Sec-WebSocket-Extensions: permessage-deflate; server_no_context_takeover; client_no_context_takeover`

	downloads.intercomcdn.com/i/o/199862/79a7b605d439c838c5fcfb40/267b1d5ddf0cfec90cfbf2a44e851bc8.png	15.197.143.135	200 OK	0 B
URL HTTP/2 downloads.intercomcdn.com/i/o/199862/79a7b605d439c838c5fcfb40/267b1d5ddf0cfec90cfbf2a44e851bc8.png IP 15.197.143.135:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /i/o/199862/79a7b605d439c838c5fcfb40/267b1d5ddf0cfec90cfbf2a44e851bc8.png HTTP/1.1 Host: downloads.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.sage.hr/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Thu, 02 Feb 2023 16:57:16 GMT content-type: image/png status: 200 OK last-modified: Thu, 09 Apr 2020 12:46:27 GMT cache-control: max-age=86400, private strict-transport-security: max-age=31556952; includeSubDomains; preload x-intercom-version: aa1d592f63c683de82e59e2ea90e994c05a3350d vary: Accept-Encoding content-encoding: gzip x-xss-protection: 1; mode=block x-request-id: 0004kjt0q8ve76ps032g content-disposition: inline; filename="267b1d5ddf0cfec90cfbf2a44e851bc8.png"; filename*=UTF-8''267b1d5ddf0cfec90cfbf2a44e851bc8.png content-transfer-encoding: binary x-runtime: 0.078201 x-frame-options: deny x-content-type-options: nosniff content-security-policy: default-src 'none'; font-src fonts.intercomcdn.com; img-src downloads.intercomcdn.com/images/logo-gray-16x16-at-2x.png; media-src 'self'; style-src downloads.intercomcdn.com/410.css fonts.intercomcdn.com/proxima-nova/proxima-nova-all.css set-cookie: gtm_id=a87b91f8-f8a8-4e41-a4e2-3696136cbea3; domain=intercom.com; path=/; expires=Fri, 02 Feb 2024 16:57:16 GMT; SameSite=None; secure server: nginx x-ami-version: ami-0e40581e672c9a67a X-Firefox-Spdy: h2

	static.intercomassets.com/assets/help_center-93e4c114554a10635b09d18bd02849c442fe801fd374ba72e7b571fbfcd17dc0.css	54.230.111.46	200 OK	0 B
URL HTTP/2 static.intercomassets.com/assets/help_center-93e4c114554a10635b09d18bd02849c442fe801fd374ba72e7b571fbfcd17dc0.css IP 54.230.111.46:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /assets/help_center-93e4c114554a10635b09d18bd02849c442fe801fd374ba72e7b571fbfcd17dc0.css HTTP/1.1 Host: static.intercomassets.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.sage.hr/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 date: Thu, 02 Feb 2023 16:30:30 GMT last-modified: Thu, 02 Feb 2023 16:16:02 GMT etag: W/"3ee3ad5fafa20a5b966c2aca111b8b26" x-amz-server-side-encryption: AES256 x-amz-version-id: klsDwD4xZpCLxYjn5ufNl9tbiKKOr3o1 server: AmazonS3 content-encoding: gzip vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 alt-svc: h3=":443"; ma=86400 x-amz-cf-id: _--kiJDIaQMxvfLFuBH75X-hCtFGVeXzl_f1bwGh_AgvPHOMVQ230w== age: 1607 X-Firefox-Spdy: h2

	downloads.intercomcdn.com/i/o/329802/3158a11d9b8da13de8c3e5ca/63f5b1f8b62871a0e7911bb5fba1617d.png	15.197.143.135	200 OK	0 B
URL HTTP/2 downloads.intercomcdn.com/i/o/329802/3158a11d9b8da13de8c3e5ca/63f5b1f8b62871a0e7911bb5fba1617d.png IP 15.197.143.135:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /i/o/329802/3158a11d9b8da13de8c3e5ca/63f5b1f8b62871a0e7911bb5fba1617d.png HTTP/1.1 Host: downloads.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.sage.hr/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Thu, 02 Feb 2023 16:57:16 GMT content-type: image/png status: 200 OK last-modified: Thu, 05 May 2022 19:56:10 GMT cache-control: max-age=86400, private strict-transport-security: max-age=31556952; includeSubDomains; preload x-intercom-version: aa1d592f63c683de82e59e2ea90e994c05a3350d vary: Accept-Encoding content-encoding: gzip x-xss-protection: 1; mode=block x-request-id: 001lq02fjf898ivipij0 content-disposition: inline; filename="63f5b1f8b62871a0e7911bb5fba1617d.png"; filename*=UTF-8''63f5b1f8b62871a0e7911bb5fba1617d.png content-transfer-encoding: binary x-runtime: 0.059055 x-frame-options: deny x-content-type-options: nosniff content-security-policy: default-src 'none'; font-src fonts.intercomcdn.com; img-src downloads.intercomcdn.com/images/logo-gray-16x16-at-2x.png; media-src 'self'; style-src downloads.intercomcdn.com/410.css fonts.intercomcdn.com/proxima-nova/proxima-nova-all.css set-cookie: gtm_id=0942954d-b1cd-474d-a967-6e34498baaba; domain=intercom.com; path=/; expires=Fri, 02 Feb 2024 16:57:16 GMT; SameSite=None; secure server: nginx x-ami-version: ami-0e40581e672c9a67a X-Firefox-Spdy: h2

	downloads.intercomcdn.com/i/o/329757/db77852863b5f999cf47882c/79e4f289a471f0c9fbd0e31c16767587.png	15.197.143.135	200 OK	0 B
URL HTTP/2 downloads.intercomcdn.com/i/o/329757/db77852863b5f999cf47882c/79e4f289a471f0c9fbd0e31c16767587.png IP 15.197.143.135:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /i/o/329757/db77852863b5f999cf47882c/79e4f289a471f0c9fbd0e31c16767587.png HTTP/1.1 Host: downloads.intercomcdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://support.sage.hr/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Thu, 02 Feb 2023 16:57:16 GMT content-type: image/png status: 200 OK last-modified: Thu, 05 May 2022 16:01:05 GMT cache-control: max-age=86400, private strict-transport-security: max-age=31556952; includeSubDomains; preload x-intercom-version: aa1d592f63c683de82e59e2ea90e994c05a3350d vary: Accept-Encoding content-encoding: gzip x-xss-protection: 1; mode=block x-request-id: 00042nrfrjaa6llah6j0 content-disposition: inline; filename="79e4f289a471f0c9fbd0e31c16767587.png"; filename*=UTF-8''79e4f289a471f0c9fbd0e31c16767587.png content-transfer-encoding: binary x-runtime: 0.068432 x-frame-options: deny x-content-type-options: nosniff content-security-policy: default-src 'none'; font-src fonts.intercomcdn.com; img-src downloads.intercomcdn.com/images/logo-gray-16x16-at-2x.png; media-src 'self'; style-src downloads.intercomcdn.com/410.css fonts.intercomcdn.com/proxima-nova/proxima-nova-all.css set-cookie: gtm_id=ab9eb438-a22d-4c62-bd27-649a86e38a6d; domain=intercom.com; path=/; expires=Fri, 02 Feb 2024 16:57:16 GMT; SameSite=None; secure server: nginx x-ami-version: ami-0e40581e672c9a67a X-Firefox-Spdy: h2

	api-iam.intercom.io/messenger/web/ping	54.156.44.158	200 OK	0 B
URL HTTP/2 api-iam.intercom.io/messenger/web/ping IP 54.156.44.158:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash HTTP Headers `POST /messenger/web/ping HTTP/1.1 Host: api-iam.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 424 Origin: https://support.sage.hr Connection: keep-alive Referer: https://support.sage.hr/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Thu, 02 Feb 2023 16:57:17 GMT content-type: application/json; charset=utf-8 status: 200 OK cache-control: max-age=0, private, must-revalidate x-ratelimit-limit: 13333 x-ratelimit-reset: 1675357040 strict-transport-security: max-age=31556952; includeSubDomains; preload x-ratelimit-remaining: 13258 access-control-allow-origin: https://support.sage.hr vary: Accept,Accept-Encoding x-intercom-version: aa1d592f63c683de82e59e2ea90e994c05a3350d x-xss-protection: 1; mode=block content-encoding: gzip x-request-id: 0000djnrdqnke6gmuv5g access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA access-control-allow-credentials: true access-control-allow-methods: POST, GET, OPTIONS etag: W/"dd98d695aa4968e82cdc86c3723a7581" x-runtime: 0.380919 x-frame-options: SAMEORIGIN x-content-type-options: nosniff server: nginx x-ami-version: ami-0c75d874912a7b35f X-Firefox-Spdy: h2

	api-iam.intercom.io/messenger/web/metrics	54.156.44.158	200 OK	0 B
URL HTTP/2 api-iam.intercom.io/messenger/web/metrics IP 54.156.44.158:0 ASN #14618 AMAZON-AES File type Size 0 B (0 bytes) Hash HTTP Headers `POST /messenger/web/metrics HTTP/1.1 Host: api-iam.intercom.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 1046 Origin: https://support.sage.hr Connection: keep-alive Referer: https://support.sage.hr/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Thu, 02 Feb 2023 16:57:18 GMT content-type: text/html status: 200 OK cache-control: no-cache access-control-allow-origin: https://support.sage.hr vary: Accept-Encoding strict-transport-security: max-age=31556952; includeSubDomains; preload x-intercom-version: aa1d592f63c683de82e59e2ea90e994c05a3350d content-encoding: gzip x-xss-protection: 1; mode=block x-request-id: 0006p9u6qgpksgjf6phg access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA access-control-allow-credentials: true access-control-allow-methods: POST, GET, OPTIONS x-runtime: 0.024484 x-frame-options: SAMEORIGIN x-content-type-options: nosniff server: nginx x-ami-version: ami-0c75d874912a7b35f X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (6)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (45)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP