Report - rfrtpc7s.r.us-west-2.awstrack.me/L0/https:%2F%2Fsquareup.com%2Fsecure/1/01010185e514e25c-bd9bf5d5-4395-470d-a863-8f68b14c0b1f-000000/iY80XGbgSE-SAu9rJHTPCa-liPw=306

Report Overview

Submitted URL
rfrtpc7s.r.us-west-2.awstrack.me/L0/https:%2F%2Fsquareup.com%2Fsecure/1/01010185e514e25c-bd9bf5d5-4395-470d-a863-8f68b14c0b1f-000000/iY80XGbgSE-SAu9rJHTPCa-liPw=306
IP
54.190.1.37
ASN
#16509 AMAZON-02
Submitted
2023-01-24 20:58:55
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
static.cloudflareinsights.com	1294	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	449 B	88 kB	104.16.56.101
images.ctfassets.net	4623	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	517 B	44 kB	54.230.111.45
xms-production-f.squarecdn.com	116521	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	444 kB	151.101.65.49
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
rfrtpc7s.r.us-west-2.awstrack.me	96863	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	593 B	139 B	54.190.1.37
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	604 B	93.184.220.29
reporting.cdndex.io	45676	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	937 B	1.1 kB	54.230.111.12
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	944 B	54.230.245.110
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	55 kB	34.120.237.76
cdn.cookielaw.org	502	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.0 kB	186 kB	104.16.148.64
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
squareup.com	4103	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	17 kB	184 kB	162.159.136.66
square-fonts-production-f.squarecdn.com	112977	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	71 kB	151.101.193.49
geolocation.onetrust.com	802	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	428 B	394 B	104.18.27.85
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	44.238.73.182

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	17 kB	2023-03-08	2024-02-28
Pretty URL static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.56.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:00 Last Seen2024-02-28 12:44:37 Times Seen1362 Hash 33100f2355611b2375f05486299abf05 0b2d1b75f6695e67b884bee2eb72165d6e881a26 0f48c5678ce459a596423b0e55344e7ad8eb3d3b1b27c54cd76a9d4cee7dd6c3 Loading...

	xms-production-f.squarecdn.com/xms/assets/application-c5436accc56ebfde9303a8f9a6cf4c91c2a0d2aa01bd87ca7c4157371523e466.js	1.1 MB	2023-03-13	2023-03-13
Pretty URL xms-production-f.squarecdn.com/xms/assets/application-c5436accc56ebfde9303a8f9a6cf4c91c2a0d2aa01bd87ca7c4157371523e466.js IP 151.101.65.49 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:53:06 Last Seen2023-03-13 06:53:06 Times Seen1 Hash 48b3791b259e34654ac1270ae1241afa a614bd96c64669429fe9142496804ded44ec8fbe c5436accc56ebfde9303a8f9a6cf4c91c2a0d2aa01bd87ca7c4157371523e466 Loading...

	cdn.cookielaw.org/scripttemplates/otSDKStub.js	25 kB	2023-03-12	2024-02-09
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.16.148.64 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 17:14:09 Last Seen2024-02-09 15:34:11 Times Seen17 Hash 58fccbac723b412a2d6cebc77f2e8875 0cde201d8db5c30aa0d82d7d9bc42938b54cc8ef 3d277a90920d78efa3d6e473d67240beb26100591c7b02a34bd444aa78ee5d5c Loading...

	squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/p.js	185 kB	2023-03-13	2023-03-13
Pretty URL squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/p.js IP 162.159.136.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:53:04 Last Seen2023-03-13 06:53:06 Times Seen1 Hash 76c6bd529da526bf18329c289a234e5d 39bf8bfbf7e0010778c1a89990cc470c39d493a1 5bef6796f18c1092147e22277b0593b373686938931f27c356d694fb6301c3d2 Loading...

	squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/fp	154 B	2023-03-09	2023-10-13
Pretty URL squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/fp IP 162.159.136.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 22:30:37 Last Seen2023-10-13 20:11:04 Times Seen85 Hash 4d2f48d48fb6871224562ab87c5a7a24 aa9f582e9b33af1447cc8d3a906d731e8eedf52e 48446d5a83f0811c540d5d1c26ea53d60d4826c2f0732c92873c7c5917bc4cc5 Loading...

	squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/ips.js?KP_UIDz=0aNu2qzDmfmEBs4mQrprgcQp2Mr9MrWSAfICCbTaDKAH7ZA7cDeZ8u0J6dWBRb8iH8jxFQZIAhH8P542ucTeIdlq7KghfPdB9nPG4KPPkzOSdoBVtCM9eyMxm7tR3cPQykLDkBV7gs7JSwkxOqaeMkhv	239 kB	2023-03-13	2023-03-13
Pretty URL squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/ips.js?KP_UIDz=0aNu2qzDmfmEBs4mQrprgcQp2Mr9MrWSAfICCbTaDKAH7ZA7cDeZ8u0J6dWBRb8iH8jxFQZIAhH8P542ucTeIdlq7KghfPdB9nPG4KPPkzOSdoBVtCM9eyMxm7tR3cPQykLDkBV7gs7JSwkxOqaeMkhv IP 162.159.136.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:53:06 Last Seen2023-03-13 06:53:06 Times Seen1 Hash dce7457bb927618e019673b1c9030865 95d1c73cf9f9abd53f37a5290cc60d7d7f5f11cb e389b0e2a74efbd21b83629dda9eae45431bb6f3f29ac93010a1ee7b179a61ac Loading...

		Size	First Seen	Last Seen
	#1 Eval - 4346d362f67c89d7ab4e28732a1b1ce8	2 B	2023-03-07	2024-03-28
Pretty Observations First Seen2023-03-07 17:52:50 Last Seen2024-03-28 01:01:50 Times Seen121 Hash 4346d362f67c89d7ab4e28732a1b1ce8 229db9bc4ef680cb90e1ef2793d6c761a444884f 42e969e9dee66e64259c0abc3bdc13e4f8957c47f99a9d2993a51282d5e5ad1d Loading...

	#2 Eval - 2f7ee0c7f48a490beeac97bacf22cc14	4 B	2023-03-13	2024-03-28
Pretty Observations First Seen2023-03-13 00:43:33 Last Seen2024-03-28 01:01:50 Times Seen121 Hash 2f7ee0c7f48a490beeac97bacf22cc14 05d4e507134976df7a9e03d1bbfcea972a762a7c 60d83eb32a20e6a011341fa1208c9df3e96741d3df247965a7b2205126d44b53 Loading...

HTTP Transactions (52)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 0be6cec5607bb65c06dbadd33456aec1 9d13129e936eb5fc82e403931884cdc8c6e6ab92 cb028034340b709ece65e45e8fc1a26a64dd85926beaa542f308d3f1d5ee2c84 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "CB028034340B709ECE65E45E8FC1A26A64DD85926BEAA542F308D3F1D5EE2C84" Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2894 Expires: Tue, 24 Jan 2023 21:46:58 GMT Date: Tue, 24 Jan 2023 20:58:44 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f5e46725831d8d722872bf68d752f4c5 cf37793a1b73e3f84fe6c37fb27382c83b49dbc0 0582b6180687dd95c7fd728f1b9db4495b807151e309b608ad203d69708f9da6 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0582B6180687DD95C7FD728F1B9DB4495B807151E309B608AD203D69708F9DA6" Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8398 Expires: Tue, 24 Jan 2023 23:18:42 GMT Date: Tue, 24 Jan 2023 20:58:44 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash dcd75ca6daca51c5e39d431468511793 07f76d3bf23d65c9110d810fa71a994e39e085d3 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 24 Jan 2023 20:42:45 GMT content-type: application/json age: 959 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 31c8743c2b5202ce0228bac5aad7229b 4b5eee8e1ecbfc992505003be58e265ff3a0ee0a 8b3b47ea29fc02b8a08ee2a340a05ab23e391f0eb3b8d6beb17516706bb2e94d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "8B3B47EA29FC02B8A08EE2A340A05AB23E391F0EB3B8D6BEB17516706BB2E94D" Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15958 Expires: Wed, 25 Jan 2023 01:24:42 GMT Date: Tue, 24 Jan 2023 20:58:44 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: pjdLdcS1ZZ111b46ryNtjahqdv1P+49iB57N5uBZOTIbUEj5arI7BKXdl7A1Q+uoq4AyL9wUqNA= x-amz-request-id: E6TAJ7GCRNVM7485 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 24 Jan 2023 20:19:24 GMT age: 2360 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.sca1b.amazontrust.com/	54.230.245.110	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.110:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 85c5a866b98facc1be543265284a9b52 1969ff4e78fd911a6bf2d4623e89cb30a98b33bd 6ccb43fd93a54d299b977fdda3c19765be691f1b26a8c1f61b8aac6bca9117df HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Tue, 24 Jan 2023 20:58:44 GMT Last-Modified: Tue, 24 Jan 2023 19:32:18 GMT Server: ECS (nyb/1D0F) X-Cache: Miss from cloudfront Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: d4YUNVRuncMxgJrWyxhrzwH1-TL8SzmriDJB-9odv2iHi8_mq948iw== Age: 5186`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 24 Jan 2023 20:58:44 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	rfrtpc7s.r.us-west-2.awstrack.me/L0/https:%2F%2Fsquareup.com%2Fsecure/1/01010185e514e25c-bd9bf5d5-4395-470d-a863-8f68b14c0b1f-000000/iY80XGbgSE-SAu9rJHTPCa-liPw=306	54.190.1.37	302 Found	0 B
URL HTTP/1.1 rfrtpc7s.r.us-west-2.awstrack.me/L0/https:%2F%2Fsquareup.com%2Fsecure/1/01010185e514e25c-bd9bf5d5-4395-470d-a863-8f68b14c0b1f-000000/iY80XGbgSE-SAu9rJHTPCa-liPw=306 IP 54.190.1.37:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /L0/https:%2F%2Fsquareup.com%2Fsecure/1/01010185e514e25c-bd9bf5d5-4395-470d-a863-8f68b14c0b1f-000000/iY80XGbgSE-SAu9rJHTPCa-liPw=306 HTTP/1.1 Host: rfrtpc7s.r.us-west-2.awstrack.me User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 `HTTP/1.1 302 Found Date: Tue, 24 Jan 2023 20:58:43 GMT Location: https://squareup.com/secure Content-Length: 0 Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 24 Jan 2023 20:17:31 GMT age: 2473 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash 6a1d9128f918f1dd3480c9f8d695a5bd 04e7f6aaa9f514273683e652d90a170615c3620b 9036874c7fbea005eaf135d1307faa121e83a08796ba885b0c064a32daf127e0 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3851 Cache-Control: max-age=120954 Content-Type: application/ocsp-response Date: Tue, 24 Jan 2023 20:58:44 GMT Etag: "63cf6cf3-116" Expires: Thu, 26 Jan 2023 06:34:38 GMT Last-Modified: Tue, 24 Jan 2023 05:30:27 GMT Server: ECS (ska/F715) X-Cache: HIT Content-Length: 278`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash c398b6b39d11d25b8ae9bc5cd94a1c98 640aa8c399ced71d0c2a9f5a90fbaf091b01d642 a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855" Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20641 Expires: Wed, 25 Jan 2023 02:42:45 GMT Date: Tue, 24 Jan 2023 20:58:44 GMT Connection: keep-alive`

	push.services.mozilla.com/	44.238.73.182	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 44.238.73.182:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: Qq9lyx9chPi9XtlKFn6ahA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 4X+YkWUv7NjnVsPatYBFQX6e+1Y=`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d5528af26e629a9bfbf0c421146b921f 1e4f99245d551384bedfe9b59b5f9905127d87bf 989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A" Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12236 Expires: Wed, 25 Jan 2023 00:22:42 GMT Date: Tue, 24 Jan 2023 20:58:46 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d5528af26e629a9bfbf0c421146b921f 1e4f99245d551384bedfe9b59b5f9905127d87bf 989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A" Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12236 Expires: Wed, 25 Jan 2023 00:22:42 GMT Date: Tue, 24 Jan 2023 20:58:46 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d5528af26e629a9bfbf0c421146b921f 1e4f99245d551384bedfe9b59b5f9905127d87bf 989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A" Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12236 Expires: Wed, 25 Jan 2023 00:22:42 GMT Date: Tue, 24 Jan 2023 20:58:46 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg	34.120.237.76	200 OK	8.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.3 kB (8308 bytes) Hash 91b2e12a39dc4f63b9d52e8800cce1f2 42d5b4b4a091778d98c351f0002d8656449d0243 d4dbc79e3383e83f861ccf8cde3e78ba427a66cd3fa99c17e23ec935867de4ad HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8308 x-amzn-requestid: 1988d3b3-5e1a-41fd-83f5-092eddb9185f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fNys5GDKoAMFdbA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cefe52-2349fde60b7db8a34c996717;Sampled=0 x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:26 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 5_1j_Z6HZ3DSGFPAACJduM5D9eAqMQT42GgI61x8dHAmPQtUexpEYQ== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google date: Mon, 23 Jan 2023 21:59:05 GMT age: 82781 etag: "42d5b4b4a091778d98c351f0002d8656449d0243" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b12041d-fdaa-483d-b290-d584ffb6ea13.jpeg	34.120.237.76	200 OK	7.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b12041d-fdaa-483d-b290-d584ffb6ea13.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.6 kB (7642 bytes) Hash deb690b8f5503bf4bcf424e58ddb6b8c eb96120190e3a5c286ac5ec51ee8b163540377fd c762b17d3e43d773966490d1186ebc352a78d47781c77a4f048e32fee9732b7d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b12041d-fdaa-483d-b290-d584ffb6ea13.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7642 x-amzn-requestid: 3f4482cf-98a5-420e-abe7-17fd2d214da0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fNyxIF3aIAMFWoQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cefe6d-0c1838dc7b4ab4650d54ee56;Sampled=0 x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:53 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: RI2PzIKXk_H09T20cGoqTCC1WdRp3S5N6TOBX_lIcEk8wYaCIfCPJw== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google date: Mon, 23 Jan 2023 22:08:04 GMT age: 82242 etag: "eb96120190e3a5c286ac5ec51ee8b163540377fd" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ee9090f-cd45-474d-b05a-663eab75ddc2.jpeg	34.120.237.76	200 OK	9.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ee9090f-cd45-474d-b05a-663eab75ddc2.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.2 kB (9158 bytes) Hash a9088e8181cf43fa7e77bd0c169d459e 2a06f6ea31a615ac3a1a33fb2997e8617468e6f0 d09867478b7fe952ad8919728805cdc0918d849827f5e646ad2d824f9a6911e2 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ee9090f-cd45-474d-b05a-663eab75ddc2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9158 x-amzn-requestid: 27bce48a-9cab-4546-a713-33a4c42036eb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fNzFoEw2IAMF_eQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cefef0-341ee41e3ac904ee28e70f47;Sampled=0 x-amzn-remapped-date: Mon, 23 Jan 2023 21:41:04 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: a75srt98xfgRarLpcIU8ZtCm9VQd66ISnOCvAUYFBItDMatlJDjTKQ== via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google date: Mon, 23 Jan 2023 21:57:46 GMT etag: "2a06f6ea31a615ac3a1a33fb2997e8617468e6f0" content-type: image/jpeg age: 82860 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (11918 bytes) Hash 4cb7be12333fa7ea3353901b4b3215af 4b758cc432874384f330568177eef5a328d7e69a d6f86c0ddbabd5c4fd7cee72ce4da62ccddd9d29139c9ab033bb1ab8425bae22 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409361f2-a546-44d7-82d6-d496f6ee134d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11918 x-amzn-requestid: ff47dd24-004f-4cc7-acfb-283b2e751f23 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fEqxwEyWoAMF3gw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cb580b-1e95f74b0846080f75a757f6;Sampled=0 x-amzn-remapped-date: Sat, 21 Jan 2023 03:12:11 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: OsitP8LhrabAIbfq-ZTMmpJfnfvttYGad42iE3obktcRneUqbBHlpw== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Tue, 24 Jan 2023 03:59:27 GMT age: 61159 etag: "4b758cc432874384f330568177eef5a328d7e69a" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	squareup.com/secure	162.159.136.66	301 Moved Permanently	4.9 kB
URL HTTP/2 squareup.com/secure IP 162.159.136.66:0 ASN #13335 CLOUDFLARENET File type data Size 4.9 kB (4861 bytes) Hash 4f7daefff20a3101ef9f207d0d45fbdd 8350beb95aaae7e2d826ff4070195bcfb3a44c6a d4853eb0022b0b81ab2c84ef8ea89d59d590e6cd4cedadfa95371f65644c6747 HTTP Headers `GET /secure HTTP/1.1 Host: squareup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 301 Moved Permanently date: Tue, 24 Jan 2023 20:58:45 GMT content-type: text/html; charset=utf-8 location: https://squareup.com/us/en/secure cf-ray: 78ebb05c98a0b4ed-OSL cache-control: no-cache strict-transport-security: max-age=631152000; includeSubDomains; preload cf-cache-status: DYNAMIC access-control-allow-headers: x-kpsdk-cd, x-kpsdk-ct x-content-type-options: nosniff x-debug-cf-cdn-cache-control: max-age=300, stale-if-error=86400, stale-while-revalidate=86400 x-download-options: noopen x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block set-cookie: squareGeo=NO-undefined; path=/; SameSite=Strict; Secure; max-age=2419200 __cf_bm=bYnM5ZxgaOE78EAtZh.fQix.8lm5UB3rdjqqv22mMGU-1674593925-0-AQ5LiS7E6+kFoxMo4EsIClejsDc14zscgWe8Va4Db+kjlfDPax3JD6/ajFGoo9PnI1zP3w9StUCiAaxXsLkXdpo=; path=/; expires=Tue, 24-Jan-23 21:28:45 GMT; domain=.squareup.com; HttpOnly; Secure; SameSite=None vary: Accept-Encoding server: cloudflare X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67794d4b-c63e-47af-b530-92b195f8e718.jpeg	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67794d4b-c63e-47af-b530-92b195f8e718.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (12907 bytes) Hash 16d9c0855b43a6c2351cb450187948e2 7208e2e4beb739ae9aded4a207d48cb3572fad5f 92b0423b09aa653ec7326d0aa05dbe137ba452ef21f118c7eb6499a8ccecc8fd HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67794d4b-c63e-47af-b530-92b195f8e718.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12907 x-amzn-requestid: c9f9a619-f0e1-4bc4-af2a-796b16aa1250 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fNzFqF-lIAMFXIg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cefef0-625e4bab03baa979605f13f8;Sampled=0 x-amzn-remapped-date: Mon, 23 Jan 2023 21:41:04 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: kPx_xJAOsrYKWFcHe6JlWILe3jbBtqFuOphGjZALwy4xJC3F2vE2Xw== via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google date: Mon, 23 Jan 2023 21:57:33 GMT age: 82873 etag: "7208e2e4beb739ae9aded4a207d48cb3572fad5f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	xms-production-f.squarecdn.com/xms/assets/application-9f1182d392526a4b92c53caf6b9972ea0506eb3be61dede98460c689d5d44971.css	151.101.65.49	200 OK	113 kB
URL HTTP/2 xms-production-f.squarecdn.com/xms/assets/application-9f1182d392526a4b92c53caf6b9972ea0506eb3be61dede98460c689d5d44971.css IP 151.101.65.49:0 ASN #54113 FASTLY File type Unicode text, UTF-8 (with BOM) text, with very long lines (53714) Size 113 kB (112617 bytes) Hash 4eb6234268b46787ddd89691a13edb56 a3ecfcfb5cb8cca29ad3e8eaf7c52068a6e24524 49cba6d21dfd68c23bb2909c6d0ebec8546bd8b623692165c4a3e75cfd497e1b HTTP Headers `GET /xms/assets/application-9f1182d392526a4b92c53caf6b9972ea0506eb3be61dede98460c689d5d44971.css HTTP/1.1 Host: xms-production-f.squarecdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://squareup.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: 9+RF9fqHg3ocM1pBvejOQhsGknxRnz/uOtMC3zkCtECuh7p6dE1wyxo/GcOK3SexrsbE3qtmahI= x-amz-request-id: WXFZ5HP3AFX51HGQ last-modified: Tue, 24 Jan 2023 00:00:50 GMT etag: "4eb6234268b46787ddd89691a13edb56" cache-control: public, max-age=31557600 content-encoding: gzip expires: Wed, 24 Jan 2024 06:00:49 GMT x-amz-version-id: bP04mZILMBjJ3rKNzEHtulLbB9Kol0UL content-type: text/css server: AmazonS3 access-control-allow-origin: * accept-ranges: bytes date: Tue, 24 Jan 2023 20:58:47 GMT via: 1.1 varnish age: 70904 x-served-by: cache-bma1636-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1674593928.523041,VS0,VE1 vary: Accept-Encoding content-length: 112617 X-Firefox-Spdy: h2

	xms-production-f.squarecdn.com/xms/assets/application-c5436accc56ebfde9303a8f9a6cf4c91c2a0d2aa01bd87ca7c4157371523e466.js	151.101.65.49	200 OK	329 kB
URL HTTP/2 xms-production-f.squarecdn.com/xms/assets/application-c5436accc56ebfde9303a8f9a6cf4c91c2a0d2aa01bd87ca7c4157371523e466.js IP 151.101.65.49:0 ASN #54113 FASTLY File type ASCII text, with very long lines (32720) Size 329 kB (328667 bytes) Hash c135d283f309ccb788530f66242663a6 afb8351c5a0ba93916fca3183f59d3068d1204b7 b37369a7f80e6f2d75f4106e1ac64c8a21a93447751df2a36ac6fc5db1245f6b HTTP Headers `GET /xms/assets/application-c5436accc56ebfde9303a8f9a6cf4c91c2a0d2aa01bd87ca7c4157371523e466.js HTTP/1.1 Host: xms-production-f.squarecdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://squareup.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: O+KvylR2tWymXqZfdu7uK9vq1sMOb0/KSYE15mWwYQ/nJnxN95S/YCgKHVmNQQNCQrgWRnZ98TI= x-amz-request-id: TNNSZ9PB2F3V7C70 last-modified: Tue, 24 Jan 2023 02:40:46 GMT etag: "c135d283f309ccb788530f66242663a6" cache-control: public, max-age=31557600 content-encoding: gzip expires: Wed, 24 Jan 2024 08:40:45 GMT x-amz-version-id: MlPLlWSPIylrLuVwhV0mGhvCBMefIza5 content-type: application/javascript server: AmazonS3 access-control-allow-origin: * accept-ranges: bytes date: Tue, 24 Jan 2023 20:58:47 GMT via: 1.1 varnish age: 13174 x-served-by: cache-bma1636-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1674593928.522164,VS0,VE1 vary: Accept-Encoding content-length: 328667 X-Firefox-Spdy: h2

	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	104.16.56.101	200 OK	87 kB
URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.56.101:0 ASN #13335 CLOUDFLARENET File type data Size 87 kB (87378 bytes) Hash d22082d9323fdcd3967d1d1be46c4342 ca091c1947f85b1063b227257f9a372e106dc345 c1ee35c19079c0bb549371a74686c54d0dc818eb84761b0be544446cdb099127 HTTP Headers `GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://squareup.com Connection: keep-alive Referer: https://squareup.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:47 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/2022.10.1 last-modified: Fri, 21 Oct 2022 01:56:09 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 78ebb06ebb2a1c06-OSL content-encoding: gzip X-Firefox-Spdy: h2`

	square-fonts-production-f.squarecdn.com/square-text/SquareSansText-Upright-VF.woff2	151.101.193.49	200 OK	36 kB
URL HTTP/2 square-fonts-production-f.squarecdn.com/square-text/SquareSansText-Upright-VF.woff2 IP 151.101.193.49:0 ASN #54113 FASTLY File type Web Open Font Format (Version 2), TrueType, length 35844, version 2.197\012- data Size 36 kB (35844 bytes) Hash b4a5ad35b82b05e604dd82769f724078 7161d63ff338fc22f69a61428d82cc74fe231011 5575694036a2d342f18ca455251396c6dc98214f30641c3c7539d5568aefd6e9 HTTP Headers GET /square-text/SquareSansText-Upright-VF.woff2 HTTP/1.1 Host: square-fonts-production-f.squarecdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://squareup.com Connection: keep-alive Referer: https://xms-production-f.squarecdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK x-amz-id-2: LlI0qzeuxrh6qnk4CsOxuczgXiKJ2rSVUpset9siYADVM+Us16XyhRFCSKnB00i4u+SIkyTUamM= x-amz-request-id: 357NF1DVPTGE8SY6 last-modified: Wed, 02 Nov 2022 21:10:28 GMT etag: "b4a5ad35b82b05e604dd82769f724078" x-amz-version-id: TDwvh9hzd3ZbRCeYrTUzII6N.yrxx_W. content-type: font/woff2 server: AmazonS3 access-control-allow-origin: * accept-ranges: bytes date: Tue, 24 Jan 2023 20:58:47 GMT via: 1.1 varnish age: 3276 x-served-by: cache-bma1681-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1674593928.975007,VS0,VE1 content-length: 35844 X-Firefox-Spdy: h2

	squareup.com/mp/status	162.159.136.66	401 Unauthorized	2 B
URL HTTP/2 squareup.com/mp/status IP 162.159.136.66:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with no line terminators Size 2 B (2 bytes) Hash 99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a HTTP Headers GET /mp/status HTTP/1.1 Host: squareup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://squareup.com/us/en/payments/secure Connection: keep-alive Cookie: squareGeo=NO-undefined; __cf_bm=bYnM5ZxgaOE78EAtZh.fQix.8lm5UB3rdjqqv22mMGU-1674593925-0-AQ5LiS7E6+kFoxMo4EsIClejsDc14zscgWe8Va4Db+kjlfDPax3JD6/ajFGoo9PnI1zP3w9StUCiAaxXsLkXdpo= Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 401 Unauthorized date: Tue, 24 Jan 2023 20:58:48 GMT content-type: application/json;charset=utf-8 content-length: 2 cf-ray: 78ebb0727fa4b4ed-OSL cache-control: no-store strict-transport-security: max-age=631152000; includeSubDomains; preload cf-cache-status: DYNAMIC access-control-allow-headers: x-kpsdk-cd, x-kpsdk-ct content-security-policy: object-src 'none'; base-uri 'none'; script-src 'nonce-a0mbuUxP0ZEONGOS6nklYg==' 'unsafe-inline' 'strict-dynamic' https: http: 'report-sample'; report-uri https://sentry.io/api/1474740/security/?sentry_key=f510e74496ac409fb59c50c52d7822da frame-options: SAMEORIGIN set-cookie: _sqweb_session=eyJ1c2VyX3Nlc3Npb25fdG9rZW4iOiIiLCJzZXNzaW9uX2lkIjoiYTlhNjE1MjI0YjI4NGVhMmJlN2QzODgzNjkzMTRmZmEiLCJfY3NyZl90b2tlbiI6ImVhQlpzaEdMWEYtMzd6NFVSMlc3enVQUzBacHlnbm5CaHpDMHNrMVJyTW8ifQ%3D%3D--7db13381bb7163d392024dbf199b54ac18b6a4aa76f601fe635f502a49a98cd63741372006ff67c4c636ae7167290bac5cea03f6347f9c839e451e65195568e9;Version=1;Domain=squareup.com;Path=/;Max-Age=31536000;Secure;HttpOnly;SameSite=lax;Expires=Wed, 24 Jan 2024 20:58:48 GMT;Category=C0001 _js_csrf=eaBZshGLXF-37z4UR2W7zuPS0ZpygnnBhzC0sk1RrMo;Version=1;Domain=squareup.com;Path=/;Max-Age=31536000;Secure;SameSite=lax;Expires=Wed, 24 Jan 2024 20:58:48 GMT;Category=C0001 squareGeo=NO-undefined; path=/; SameSite=Strict; Secure; max-age=2419200 x-content-type-options: nosniff x-frame-options: SAMEORIGIN x-xss-protection: 1; mode=block vary: Accept-Encoding server: cloudflare X-Firefox-Spdy: h2

	square-fonts-production-f.squarecdn.com/square-text/SquareSansText-Medium.woff2	151.101.193.49	200 OK	34 kB
URL HTTP/2 square-fonts-production-f.squarecdn.com/square-text/SquareSansText-Medium.woff2 IP 151.101.193.49:0 ASN #54113 FASTLY File type Web Open Font Format (Version 2), TrueType, length 34212, version 1.0\012- data Size 34 kB (34212 bytes) Hash ee9f02c1a67ec4e150c7695b84fad7a0 be98639e5b53c1deffbfc4b0b7cebf1f47378320 04e85eea06f360b431634528dfb02ea384ed5ba559988779e3fd05548bd2d4f3 HTTP Headers GET /square-text/SquareSansText-Medium.woff2 HTTP/1.1 Host: square-fonts-production-f.squarecdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://squareup.com Connection: keep-alive Referer: https://xms-production-f.squarecdn.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK x-amz-id-2: kD0WOVuejOWDCS11XW9G+OM6JHdJtd/29SZIBbGHZfJ3JKcCvQN+yOylJxC33FP4hKnt56hF8DA= x-amz-request-id: Q3A9YFNN96MJM051 last-modified: Wed, 02 Nov 2022 21:10:28 GMT etag: "ee9f02c1a67ec4e150c7695b84fad7a0" x-amz-version-id: I07qybJglxO_fAthtZULQBkKQ63Tj8S9 content-type: font/woff2 server: AmazonS3 access-control-allow-origin: * accept-ranges: bytes date: Tue, 24 Jan 2023 20:58:48 GMT via: 1.1 varnish age: 2545 x-served-by: cache-bma1681-BMA x-cache: HIT x-cache-hits: 1 x-timer: S1674593928.409464,VS0,VE19 content-length: 34212 X-Firefox-Spdy: h2

	cdn.cookielaw.org/scripttemplates/otSDKStub.js	104.16.148.64	200 OK	8.1 kB
URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (24742) Size 8.1 kB (8053 bytes) Hash 59d0843ea535a679e836bfdc4fd847c9 8c8938ff086a2b05eb9e431cb8ff7150f50c7b48 6f5b514345f75508ac2e5827b6e50c804a3d5ec2aa44975ec6a2bdfcb438fd17 HTTP Headers `GET /scripttemplates/otSDKStub.js HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://squareup.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:48 GMT content-type: application/javascript content-length: 8053 content-encoding: gzip content-md5: WdCEPqU1pnnoNr/cT9hHyQ== last-modified: Mon, 23 Jan 2023 15:06:29 GMT etag: 0x8DAFD5368341AFA x-ms-request-id: 24351ae5-e01e-0135-0688-2f30e6000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 8427 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 78ebb0752fd50b45-OSL X-Firefox-Spdy: h2

	cdn.cookielaw.org/consent/c4657020-c7d1-4a14-a091-267a7ee4863e/c4657020-c7d1-4a14-a091-267a7ee4863e.json	104.16.148.64	200 OK	1.8 kB
URL HTTP/2 cdn.cookielaw.org/consent/c4657020-c7d1-4a14-a091-267a7ee4863e/c4657020-c7d1-4a14-a091-267a7ee4863e.json IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (5273), with no line terminators Size 1.8 kB (1772 bytes) Hash 0e23376e9c1693315b2d615fa5d2e87e aa38d51ca0a314b06edb726b136d062c133de44e 81cb4707d3317cb3aa22f54ab94ac55c37681e5ce6287e7bd7c8bcb6ec07f9cd HTTP Headers `GET /consent/c4657020-c7d1-4a14-a091-267a7ee4863e/c4657020-c7d1-4a14-a091-267a7ee4863e.json HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://squareup.com Connection: keep-alive Referer: https://squareup.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:48 GMT content-type: application/x-javascript content-length: 1772 cache-control: public, max-age=86400 content-encoding: gzip content-md5: DiM3bpwWkzFbLWFfpdLofg== last-modified: Mon, 15 Aug 2022 23:42:58 GMT etag: 0x8DA7F17E2857A5F x-ms-request-id: f88d513f-201e-0068-191d-b186b7000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cf-cache-status: HIT age: 18768 expires: Wed, 25 Jan 2023 20:58:48 GMT accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 78ebb075eea30b41-OSL X-Firefox-Spdy: h2

	xms-production-f.squarecdn.com/xms/assets/public-web-styles/favicon-770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6.ico	151.101.65.49	200 OK	579 B
URL HTTP/2 xms-production-f.squarecdn.com/xms/assets/public-web-styles/favicon-770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6.ico IP 151.101.65.49:0 ASN #54113 FASTLY File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data Size 579 B (579 bytes) Hash 12be35d70d929ffe4358e1b338a3b2ea 9a22dd9a529dd41fe3ef0e3b8cff6551ebce728b 79c4c3fa5d7b385828b9a0632f1384e9b5972835a0d8f3fcd48e28672c071f5d HTTP Headers `GET /xms/assets/public-web-styles/favicon-770e0889aefd823056c7cdbb066a445be0f0754c1b4d4cba877e120fdbcb63e6.ico HTTP/1.1 Host: xms-production-f.squarecdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://squareup.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-amz-id-2: K/qp/OUkBEHnt9DSdu9IMWVr2706Cha759meA0XcuqqIHP1WCGlMtpmYHUh9ZospfBYC/vrzArQ= x-amz-request-id: 44JA62VX5XA02N37 last-modified: Wed, 20 Jun 2018 17:31:33 GMT etag: "12be35d70d929ffe4358e1b338a3b2ea" cache-control: public, max-age=31557600 content-encoding: gzip expires: Thu, 20 Jun 2019 23:31:32 GMT x-amz-version-id: JqpIa8y1uvQtoIYjWkG7OmFyNHWzoZAN content-type: image/vnd.microsoft.icon server: AmazonS3 access-control-allow-origin: * accept-ranges: bytes date: Tue, 24 Jan 2023 20:58:48 GMT via: 1.1 varnish age: 4302011 x-served-by: cache-bma1636-BMA x-cache: HIT x-cache-hits: 2 x-timer: S1674593929.738609,VS0,VE0 vary: Accept-Encoding content-length: 579 X-Firefox-Spdy: h2

	squareup.com/shop/hardware/us/en/api/v1/item_count	162.159.136.66	200 OK	66 B
URL HTTP/2 squareup.com/shop/hardware/us/en/api/v1/item_count IP 162.159.136.66:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with no line terminators Size 66 B (66 bytes) Hash ce980f635001de664207aa4785c5c4ab ef2014cb3da597be7ac94a461c6efc2bd310aac1 e6c7156ab96fd7df573a8c26a74d7d2297a833efc9d219cc7965a29084868830 HTTP Headers GET /shop/hardware/us/en/api/v1/item_count HTTP/1.1 Host: squareup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://squareup.com/us/en/payments/secure Connection: keep-alive Cookie: squareGeo=NO-undefined; __cf_bm=bYnM5ZxgaOE78EAtZh.fQix.8lm5UB3rdjqqv22mMGU-1674593925-0-AQ5LiS7E6+kFoxMo4EsIClejsDc14zscgWe8Va4Db+kjlfDPax3JD6/ajFGoo9PnI1zP3w9StUCiAaxXsLkXdpo= Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:48 GMT content-type: application/json; charset=utf-8 cf-ray: 78ebb0727fa0b4ed-OSL cache-control: max-age=0, private, must-revalidate content-encoding: gzip content-language: en-us etag: W/"ce8abd9bedf2bf74ef9003bb78140784" strict-transport-security: max-age=631152000; includeSubDomains; preload vary: Accept-Encoding cf-cache-status: DYNAMIC access-control-allow-headers: x-kpsdk-cd, x-kpsdk-ct content-security-policy-report-only: default-src 'self' data: solidshop-production-c.squarecdn.com solidshop-production-f.squarecdn.com xms-production-f.squarecdn.com solidshop-staging-c.squarecdn.com solidshop-staging-f.squarecdn.com xms-staging-f.squarecdn.com d1g145x70srn7h.cloudfront.net square-fonts-production-f.squarecdn.com images.ctfassets.net cdn.cookielaw.org .facebook.com; base-uri 'self'; block-all-mixed-content; child-src 'self' tealium-f.squarecdn.com tealium-c.squarecdn.com d3a2ymoycmbv15.cloudfront.net solidshop-production-c.squarecdn.com solidshop-production-f.squarecdn.com xms-production-f.squarecdn.com solidshop-staging-c.squarecdn.com solidshop-staging-f.squarecdn.com xms-staging-f.squarecdn.com d1g145x70srn7h.cloudfront.net square-fonts-production-f.squarecdn.com images.ctfassets.net cdn.cookielaw.org .facebook.com connect.squareup.com connect.squareupstaging.com a8447815042.cdn-pci.optimizely.com staging.web.squarecdn.com/v1/square.js web.squarecdn.com/v1/square.js; connect-src ws: wss: 'self' data: solidshop-production-c.squarecdn.com solidshop-production-f.squarecdn.com xms-production-f.squarecdn.com solidshop-staging-c.squarecdn.com solidshop-staging-f.squarecdn.com xms-staging-f.squarecdn.com d1g145x70srn7h.cloudfront.net square-fonts-production-f.squarecdn.com images.ctfassets.net cdn.cookielaw.org .facebook.com data-platform-staging.squarecloudservices.com data-platform.squarecloudservices.com .squareup.com .squareupstaging.com .mktoresp.com .google.com .google-analytics.com connect.facebook.net logx.optimizely.com errors.client.optimizely.com; font-src 'self' data: solidshop-production-c.squarecdn.com solidshop-production-f.squarecdn.com xms-production-f.squarecdn.com solidshop-staging-c.squarecdn.com solidshop-staging-f.squarecdn.com xms-staging-f.squarecdn.com d1g145x70srn7h.cloudfront.net square-fonts-production-f.squarecdn.com images.ctfassets.net cdn.cookielaw.org .facebook.com; form-action 'self'; frame-ancestors 'none'; img-src 'self' data: solidshop-production-c.squarecdn.com solidshop-production-f.squarecdn.com xms-production-f.squarecdn.com solidshop-staging-c.squarecdn.com solidshop-staging-f.squarecdn.com xms-staging-f.squarecdn.com d1g145x70srn7h.cloudfront.net square-fonts-production-f.squarecdn.com images.ctfassets.net cdn.cookielaw.org .facebook.com data-platform-staging.squarecloudservices.com data-platform.squarecloudservices.com .squareup.com .squareupstaging.com .mktoresp.com .google.com .google-analytics.com connect.facebook.net; object-src 'self' solidshop-production-c.squarecdn.com solidshop-production-f.squarecdn.com xms-production-f.squarecdn.com solidshop-staging-c.squarecdn.com solidshop-staging-f.squarecdn.com xms-staging-f.squarecdn.com d1g145x70srn7h.cloudfront.net square-fonts-production-f.squarecdn.com images.ctfassets.net cdn.cookielaw.org .facebook.com; script-src 'self' 'unsafe-inline' solidshop-production-c.squarecdn.com solidshop-production-f.squarecdn.com xms-production-f.squarecdn.com solidshop-staging-c.squarecdn.com solidshop-staging-f.squarecdn.com xms-staging-f.squarecdn.com d1g145x70srn7h.cloudfront.net square-fonts-production-f.squarecdn.com images.ctfassets.net cdn.cookielaw.org .facebook.com data-platform-staging.squarecloudservices.com data-platform.squarecloudservices.com .squareup.com .squareupstaging.com .mktoresp.com .google.com .google-analytics.com connect.facebook.net cdn-pci.optimizely.com geolocation.onetrust.com/cookieconsentpub/v1/geo/location staging.web.squarecdn.com/v1/square.js web.squarecdn.com/v1/square.js martech-production-c.squarecdn.com/martech.js martech-staging-c.squarecdn.com/martech.js martech-development-c.squarecdn.com/martech.js www.googletagmanager.com/gtm.js; style-src 'self' 'unsafe-inline' solidshop-production-c.squarecdn.com solidshop-production-f.squarecdn.com xms-production-f.squarecdn.com solidshop-staging-c.squarecdn.com solidshop-staging-f.squarecdn.com xms-staging-f.squarecdn.com d1g145x70srn7h.cloudfront.net square-fonts-production-f.squarecdn.com images.ctfassets.net cdn.cookielaw.org *.facebook.com; report-uri https://squareup.com/1.0/as-reporter/csp/TWmT61QupXf4ZzbCUmpKb1K5_kA4rMhMV1K_x25hnPlO set-cookie: _solidshop_guest_token=Ik1IOGFhSE1acUNuN3lBaWFYNFdMMXci--b20efc90d6a6f160f8887c206e84ad091f676225; domain=.squareup.com; path=/; expires=Sat, 24 Jan 2043 20:58:48 GMT; secure squareGeo=NO-undefined; path=/; SameSite=Strict; Secure; max-age=2419200 x-content-type-options: nosniff x-download-options: noopen x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block server: cloudflare X-Firefox-Spdy: h2

	squareup.com/detect_country.json?country_code=US&lang_code=en&canonical_path=/payments/secure	162.159.136.66	200 OK	314 B
URL HTTP/2 squareup.com/detect_country.json?country_code=US&lang_code=en&canonical_path=/payments/secure IP 162.159.136.66:0 ASN #13335 CLOUDFLARENET File type data Size 314 B (314 bytes) Hash fdff0e4907a5103db43c5e4bb62b94ec 47ac282ed5e60849fe9dc3496a1685073cc6971e f1a5d2515ca69ef77c79f0aac95f726f546ca6437c1a018fe139434bb33bd020 HTTP Headers GET /detect_country.json?country_code=US&lang_code=en&canonical_path=/payments/secure HTTP/1.1 Host: squareup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-Requested-With: XMLHttpRequest Connection: keep-alive Referer: https://squareup.com/us/en/payments/secure Cookie: squareGeo=NO-undefined; __cf_bm=bYnM5ZxgaOE78EAtZh.fQix.8lm5UB3rdjqqv22mMGU-1674593925-0-AQ5LiS7E6+kFoxMo4EsIClejsDc14zscgWe8Va4Db+kjlfDPax3JD6/ajFGoo9PnI1zP3w9StUCiAaxXsLkXdpo=; _sqweb_session=eyJ1c2VyX3Nlc3Npb25fdG9rZW4iOiIiLCJzZXNzaW9uX2lkIjoiYTlhNjE1MjI0YjI4NGVhMmJlN2QzODgzNjkzMTRmZmEiLCJfY3NyZl90b2tlbiI6ImVhQlpzaEdMWEYtMzd6NFVSMlc3enVQUzBacHlnbm5CaHpDMHNrMVJyTW8ifQ%3D%3D--7db13381bb7163d392024dbf199b54ac18b6a4aa76f601fe635f502a49a98cd63741372006ff67c4c636ae7167290bac5cea03f6347f9c839e451e65195568e9; _js_csrf=eaBZshGLXF-37z4UR2W7zuPS0ZpygnnBhzC0sk1RrMo; _savt=67f63441-e9db-488d-aabd-0093a31a46f3 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:48 GMT content-type: application/json; charset=utf-8 cf-ray: 78ebb0752c02b4ed-OSL cache-control: max-age=0, private, must-revalidate content-encoding: gzip etag: W/"7c67a6555f439aef3c03d5ca08cb2958" set-cookie: squareGeo=NO-undefined; path=/; SameSite=Strict; Secure; max-age=2419200 strict-transport-security: max-age=631152000; includeSubDomains; preload vary: Accept-Encoding, Accept cf-cache-status: DYNAMIC access-control-allow-headers: x-kpsdk-cd, x-kpsdk-ct x-content-type-options: nosniff x-download-options: noopen x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block server: cloudflare X-Firefox-Spdy: h2

	cdn.cookielaw.org/scripttemplates/6.39.0/otBannerSdk.js	104.16.148.64	200 OK	90 kB
URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/otBannerSdk.js IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65455) Size 90 kB (90454 bytes) Hash 669fc272b6662bb850d92e9cfedf53a7 e573ee887b0ca01445457cc338f510c559a092f4 e77f0bfe908a1ee2181992bad85721333d192528c2a00aac42077549f7d377ba HTTP Headers `GET /scripttemplates/6.39.0/otBannerSdk.js HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://squareup.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:48 GMT content-type: application/javascript content-length: 90454 content-encoding: gzip content-md5: Zp/CcrZmK7hQ2S6c/t9Tpw== last-modified: Fri, 26 Aug 2022 16:31:04 GMT etag: 0x8DA87805EB35DE2 x-ms-request-id: 41a1e322-301e-0173-6402-efee70000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 1319 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 78ebb07729f70b45-OSL X-Firefox-Spdy: h2

	images.ctfassets.net/2d5q1td6cyxq/7fEQsujb6fcvOHXwlE4BxS/d6f2c8623c0a836a5f48882f328acf6e/PD03212_-_USEN_Retail_S3_Hero_Image.png?w=868&h=555&fm=avif&q=85&fit=scale	54.230.111.45	200 OK	43 kB
URL HTTP/2 images.ctfassets.net/2d5q1td6cyxq/7fEQsujb6fcvOHXwlE4BxS/d6f2c8623c0a836a5f48882f328acf6e/PD03212_-_USEN_Retail_S3_Hero_Image.png?w=868&h=555&fm=avif&q=85&fit=scale IP 54.230.111.45:0 ASN #16509 AMAZON-02 File type ISO Media, AVIF Image\012- data Size 43 kB (43031 bytes) Hash 4d7e5e77ebfb208bb23a213e921c09b4 2cf33db62f0c4598ff72cac35a85bf311afced19 724a4508bf6d0c781aaf2a5cd0a9a92ab5c5559122dcd79018426bde238c06b3 HTTP Headers GET /2d5q1td6cyxq/7fEQsujb6fcvOHXwlE4BxS/d6f2c8623c0a836a5f48882f328acf6e/PD03212_-_USEN_Retail_S3_Hero_Image.png?w=868&h=555&fm=avif&q=85&fit=scale HTTP/1.1 Host: images.ctfassets.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://squareup.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-type: image/avif content-length: 43031 etag: "4d7e5e77ebfb208bb23a213e921c09b4" last-modified: Mon, 09 Jan 2023 10:32:47 GMT date: Tue, 24 Jan 2023 15:16:14 GMT cache-control: max-age=31536000 server: Contentful Images API access-control-allow-origin: * x-cache: Hit from cloudfront via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: Tu8tRD10Enz87o_8Y1d2p3hSyWmnPuJLkxadFZXMEDgJBWTkyKXb6Q== age: 20554 X-Firefox-Spdy: h2`

	cdn.cookielaw.org/consent/c4657020-c7d1-4a14-a091-267a7ee4863e/9b7ca9ec-1842-4adb-84e7-39b3af0700b9/en-us.json	104.16.148.64	200 OK	30 kB
URL HTTP/2 cdn.cookielaw.org/consent/c4657020-c7d1-4a14-a091-267a7ee4863e/9b7ca9ec-1842-4adb-84e7-39b3af0700b9/en-us.json IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65527), with no line terminators Size 30 kB (30265 bytes) Hash 2aa7cbcf040f69a2de90862c9404ca62 cf9d68f1c57cfda3d2b6ef445ef1eb391ce5ded6 04b3fff39b5acbff33c9a6f1ccd63a20a3b87abedb2aadea829ffb3f11097487 HTTP Headers `GET /consent/c4657020-c7d1-4a14-a091-267a7ee4863e/9b7ca9ec-1842-4adb-84e7-39b3af0700b9/en-us.json HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://squareup.com/ Origin: https://squareup.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:48 GMT content-type: application/x-javascript content-length: 30265 cache-control: public, max-age=86400 content-encoding: gzip content-md5: KqfLzwQPaaLekIYslATKYg== last-modified: Mon, 15 Aug 2022 23:43:14 GMT etag: 0x8DA7F17EBE33E1A x-ms-request-id: 4874adfb-701e-017f-4d1d-b10081000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cf-cache-status: HIT age: 7733 expires: Wed, 25 Jan 2023 20:58:48 GMT accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 78ebb077a8560b41-OSL X-Firefox-Spdy: h2

	cdn.cookielaw.org/scripttemplates/6.39.0/assets/v2/otPcCenter.json	104.16.148.64	200 OK	13 kB
URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/v2/otPcCenter.json IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (51284) Size 13 kB (13253 bytes) Hash e38e21a3f78685674dede8fb4425b6cf 4fc5bbca760240c8f6af81f84da717685d3c666e bec50fe766a7d19c4d0ef16b963b606b2aa69a011acd94028cbea471a463744d HTTP Headers `GET /scripttemplates/6.39.0/assets/v2/otPcCenter.json HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://squareup.com/ Origin: https://squareup.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:48 GMT content-type: application/json content-length: 13253 content-encoding: gzip content-md5: 444ho/eGhWdN7ej7RCW2zw== last-modified: Fri, 26 Aug 2022 16:30:57 GMT etag: 0x8DA87805AD77A2D x-ms-request-id: 77abf492-001e-0159-507f-b99b35000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 18767 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 78ebb077f8920b41-OSL X-Firefox-Spdy: h2

	cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCenterRounded.json	104.16.148.64	200 OK	2.6 kB
URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCenterRounded.json IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (7679) Size 2.6 kB (2612 bytes) Hash 41fe878fe29ffaedd823565a99791c3b 457046cc59e4e8cf5b343f237d3a3700e56433ee a3063d7a7e4642ecf26d395c20af89a0825b0f70f98cf5284f4188b729489b57 HTTP Headers `GET /scripttemplates/6.39.0/assets/otCenterRounded.json HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://squareup.com/ Origin: https://squareup.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:48 GMT content-type: application/json content-length: 2612 content-encoding: gzip content-md5: Qf6Hj+Kf+u3YI1ZamXkcOw== last-modified: Fri, 26 Aug 2022 16:30:56 GMT etag: 0x8DA878059EDB228 x-ms-request-id: fa540730-d01e-0179-1e7f-b9f7f9000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 18767 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 78ebb077f8910b41-OSL X-Firefox-Spdy: h2

	cdn.cookielaw.org/logos/aa498dad-1691-4c3b-894a-906c990be323/eab8b6ff-57d6-438a-a7e5-c58dd370ce73/000d8b20-8c3d-4f4f-a0da-5b515f8f20d2/Square_combinationmark_black.png	104.16.148.64	200 OK	32 kB
URL HTTP/2 cdn.cookielaw.org/logos/aa498dad-1691-4c3b-894a-906c990be323/eab8b6ff-57d6-438a-a7e5-c58dd370ce73/000d8b20-8c3d-4f4f-a0da-5b515f8f20d2/Square_combinationmark_black.png IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type PNG image data, 1036 x 414, 8-bit/color RGBA, non-interlaced\012- data Size 32 kB (31949 bytes) Hash e9221a340230248d714d7d6983e72ca1 a052dd3e500a102551b1f707d6aa39d4a3bd4bd8 e11e7676cb4332944ae6c7a9abd2b87d56721ebbf87227cc2dac0a7c343b3a16 HTTP Headers GET /logos/aa498dad-1691-4c3b-894a-906c990be323/eab8b6ff-57d6-438a-a7e5-c58dd370ce73/000d8b20-8c3d-4f4f-a0da-5b515f8f20d2/Square_combinationmark_black.png HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://squareup.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:49 GMT content-type: image/png content-length: 31949 content-md5: 6SIaNAIwJI1xTX1pg+csoQ== last-modified: Tue, 30 Mar 2021 18:43:19 GMT etag: 0x8D8F3ABB01160DE x-ms-request-id: 0185b66a-201e-00c2-116c-c45058000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 53623 accept-ranges: bytes vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 78ebb0786b4f0b45-OSL X-Firefox-Spdy: h2

	squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/p.js	162.159.136.66	200 OK	66 kB
URL HTTP/2 squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/p.js IP 162.159.136.66:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65536), with no line terminators Size 66 kB (66530 bytes) Hash 934d7337deadc4e1f73126abe1892848 c796f537a08478f82d053e0b8d9d7e41ada0f25f 53fd06f78d010cf5f86c4e8a2e4c486026baf5511ce9ba9875acc6f9b9e262c2 HTTP Headers GET /149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/p.js HTTP/1.1 Host: squareup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://squareup.com/us/en/payments/secure Cookie: squareGeo=NO-undefined; __cf_bm=bYnM5ZxgaOE78EAtZh.fQix.8lm5UB3rdjqqv22mMGU-1674593925-0-AQ5LiS7E6+kFoxMo4EsIClejsDc14zscgWe8Va4Db+kjlfDPax3JD6/ajFGoo9PnI1zP3w9StUCiAaxXsLkXdpo=; _sqweb_session=eyJ1c2VyX3Nlc3Npb25fdG9rZW4iOiIiLCJzZXNzaW9uX2lkIjoiYTlhNjE1MjI0YjI4NGVhMmJlN2QzODgzNjkzMTRmZmEiLCJfY3NyZl90b2tlbiI6ImVhQlpzaEdMWEYtMzd6NFVSMlc3enVQUzBacHlnbm5CaHpDMHNrMVJyTW8ifQ%3D%3D--7db13381bb7163d392024dbf199b54ac18b6a4aa76f601fe635f502a49a98cd63741372006ff67c4c636ae7167290bac5cea03f6347f9c839e451e65195568e9; _js_csrf=eaBZshGLXF-37z4UR2W7zuPS0ZpygnnBhzC0sk1RrMo; _savt=67f63441-e9db-488d-aabd-0093a31a46f3; _solidshop_guest_token=Ik1IOGFhSE1acUNuN3lBaWFYNFdMMXci--b20efc90d6a6f160f8887c206e84ad091f676225 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:49 GMT content-type: application/javascript; charset=utf-8 content-length: 66530 cf-ray: 78ebb076decbb4ed-OSL cache-control: public, max-age=60 content-encoding: gzip etag: 95d521cab2895a1b3af2d54ffb6111d332f61263-Exad7uH/jIm++Zp3iXw1oukH2G0=-mc5esLFwQxTDfFa4NRve8AwpqZU= expires: Tue, 24 Jan 2023 20:59:49 GMT set-cookie: squareGeo=NO-undefined; path=/; SameSite=Strict; Secure; max-age=2419200 vary: Accept-Encoding cf-cache-status: DYNAMIC access-control-allow-headers: x-kpsdk-cd, x-kpsdk-ct server: cloudflare X-Firefox-Spdy: h2

	squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/ips.js?KP_UIDz=0aNu2qzDmfmEBs4mQrprgcQp2Mr9MrWSAfICCbTaDKAH7ZA7cDeZ8u0J6dWBRb8iH8jxFQZIAhH8P542ucTeIdlq7KghfPdB9nPG4KPPkzOSdoBVtCM9eyMxm7tR3cPQykLDkBV7gs7JSwkxOqaeMkhv	162.159.136.66	200 OK	96 kB
URL HTTP/2 squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/ips.js?KP_UIDz=0aNu2qzDmfmEBs4mQrprgcQp2Mr9MrWSAfICCbTaDKAH7ZA7cDeZ8u0J6dWBRb8iH8jxFQZIAhH8P542ucTeIdlq7KghfPdB9nPG4KPPkzOSdoBVtCM9eyMxm7tR3cPQykLDkBV7gs7JSwkxOqaeMkhv IP 162.159.136.66:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with very long lines (52816) Size 96 kB (95877 bytes) Hash c5aa0907c3a3f832e461c5e8d14782e4 b7f9cbf838e8113a3b4ca0d7bb6adda509946d40 48290a9cd509830464aeb2d65a4244eeef0d6e88fd8f419a7f03bc0a0f28885c HTTP Headers GET /149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/ips.js?KP_UIDz=0aNu2qzDmfmEBs4mQrprgcQp2Mr9MrWSAfICCbTaDKAH7ZA7cDeZ8u0J6dWBRb8iH8jxFQZIAhH8P542ucTeIdlq7KghfPdB9nPG4KPPkzOSdoBVtCM9eyMxm7tR3cPQykLDkBV7gs7JSwkxOqaeMkhv HTTP/1.1 Host: squareup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/fp Cookie: squareGeo=NO-undefined; __cf_bm=bYnM5ZxgaOE78EAtZh.fQix.8lm5UB3rdjqqv22mMGU-1674593925-0-AQ5LiS7E6+kFoxMo4EsIClejsDc14zscgWe8Va4Db+kjlfDPax3JD6/ajFGoo9PnI1zP3w9StUCiAaxXsLkXdpo=; _sqweb_session=eyJ1c2VyX3Nlc3Npb25fdG9rZW4iOiIiLCJzZXNzaW9uX2lkIjoiYTlhNjE1MjI0YjI4NGVhMmJlN2QzODgzNjkzMTRmZmEiLCJfY3NyZl90b2tlbiI6ImVhQlpzaEdMWEYtMzd6NFVSMlc3enVQUzBacHlnbm5CaHpDMHNrMVJyTW8ifQ%3D%3D--7db13381bb7163d392024dbf199b54ac18b6a4aa76f601fe635f502a49a98cd63741372006ff67c4c636ae7167290bac5cea03f6347f9c839e451e65195568e9; _js_csrf=eaBZshGLXF-37z4UR2W7zuPS0ZpygnnBhzC0sk1RrMo; _savt=67f63441-e9db-488d-aabd-0093a31a46f3; _solidshop_guest_token=Ik1IOGFhSE1acUNuN3lBaWFYNFdMMXci--b20efc90d6a6f160f8887c206e84ad091f676225; OptanonConsent=isIABGlobal=false&datestamp=Tue+Jan+24+2023+20%3A58%3A47+GMT%2B0000+(Coordinated+Universal+Time)&version=6.39.0&hosts=&consentId=66f69325-fb12-4af4-8a24-20e31253ee1d&interactionCount=0&landingPath=https%3A%2F%2Fsquareup.com%2Fus%2Fen%2Fpayments%2Fsecure&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0; KP_UIDz-ssn=0aNu2qzDmfmEBs4mQrprgcQp2Mr9MrWSAfICCbTaDKAH7ZA7cDeZ8u0J6dWBRb8iH8jxFQZIAhH8P542ucTeIdlq7KghfPdB9nPG4KPPkzOSdoBVtCM9eyMxm7tR3cPQykLDkBV7gs7JSwkxOqaeMkhv; KP_UIDz=0aNu2qzDmfmEBs4mQrprgcQp2Mr9MrWSAfICCbTaDKAH7ZA7cDeZ8u0J6dWBRb8iH8jxFQZIAhH8P542ucTeIdlq7KghfPdB9nPG4KPPkzOSdoBVtCM9eyMxm7tR3cPQykLDkBV7gs7JSwkxOqaeMkhv Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:50 GMT content-type: application/javascript; charset=utf-8 content-length: 95877 cf-ray: 78ebb07edabfb4ed-OSL cache-control: no-cache, no-store, must-revalidate content-encoding: gzip expires: 0 vary: Accept-Encoding cf-cache-status: DYNAMIC access-control-allow-headers: x-kpsdk-cd, x-kpsdk-ct p3p: CP="This site does not specify a policy in the P3P header" pragma: no-cache set-cookie: KP_UIDz-ssn=09RRlRYAQEAjCVzY1xLtpe0AWrOvkNjnl2UP7MBxWBQoLQ4sqKHwqD2JKSfSi6OGTzfKl4ZcAjxLzFzfYGqQ3jxSHz835hlMZa3oFITpvXkpuoxf2gFteKE0tJvkWzMtwmiXMK5VPg1bijhWGRTWevAP; Max-Age=86400; Path=/; Expires=Wed, 25 Jan 2023 20:58:50 GMT; HttpOnly; Secure; SameSite=None KP_UIDz=09RRlRYAQEAjCVzY1xLtpe0AWrOvkNjnl2UP7MBxWBQoLQ4sqKHwqD2JKSfSi6OGTzfKl4ZcAjxLzFzfYGqQ3jxSHz835hlMZa3oFITpvXkpuoxf2gFteKE0tJvkWzMtwmiXMK5VPg1bijhWGRTWevAP; Max-Age=86400; Path=/; Expires=Wed, 25 Jan 2023 20:58:50 GMT; HttpOnly squareGeo=NO-undefined; path=/; SameSite=Strict; Secure; max-age=2419200 x-kpsdk-ct: 09RRlRYAQEAjCVzY1xLtpe0AWrOvkNjnl2UP7MBxWBQoLQ4sqKHwqD2JKSfSi6OGTzfKl4ZcAjxLzFzfYGqQ3jxSHz835hlMZa3oFITpvXkpuoxf2gFteKE0tJvkWzMtwmiXMK5VPg1bijhWGRTWevAP server: cloudflare X-Firefox-Spdy: h2

	reporting.cdndex.io/error	54.230.111.12	200 OK	2 B
URL HTTP/2 reporting.cdndex.io/error IP 54.230.111.12:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 2 B (2 bytes) Hash 99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a HTTP Headers `OPTIONS /error HTTP/1.1 Host: reporting.cdndex.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://squareup.com/ Origin: https://squareup.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/json content-length: 2 server: CloudFront date: Tue, 24 Jan 2023 20:58:51 GMT access-control-allow-origin: * access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token access-control-expose-headers: * access-control-allow-methods: GET,POST,OPTIONS x-cache: LambdaGeneratedResponse from cloudfront via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: IJulWIbYbGGXJ7GHsqPwfWswwvcWGALTcqJ_dUabZjY6Q0jMdcD3MA== X-Firefox-Spdy: h2

	squareup.com/cdn-cgi/rum?	162.159.136.66	204 No Content	0 B
URL HTTP/2 squareup.com/cdn-cgi/rum? IP 162.159.136.66:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: squareup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br content-type: application/json Content-Length: 1962 Origin: https://squareup.com Connection: keep-alive Referer: https://squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/fp Cookie: squareGeo=NO-undefined; __cf_bm=bYnM5ZxgaOE78EAtZh.fQix.8lm5UB3rdjqqv22mMGU-1674593925-0-AQ5LiS7E6+kFoxMo4EsIClejsDc14zscgWe8Va4Db+kjlfDPax3JD6/ajFGoo9PnI1zP3w9StUCiAaxXsLkXdpo=; _sqweb_session=eyJ1c2VyX3Nlc3Npb25fdG9rZW4iOiIiLCJzZXNzaW9uX2lkIjoiYTlhNjE1MjI0YjI4NGVhMmJlN2QzODgzNjkzMTRmZmEiLCJfY3NyZl90b2tlbiI6ImVhQlpzaEdMWEYtMzd6NFVSMlc3enVQUzBacHlnbm5CaHpDMHNrMVJyTW8ifQ%3D%3D--7db13381bb7163d392024dbf199b54ac18b6a4aa76f601fe635f502a49a98cd63741372006ff67c4c636ae7167290bac5cea03f6347f9c839e451e65195568e9; _js_csrf=eaBZshGLXF-37z4UR2W7zuPS0ZpygnnBhzC0sk1RrMo; _savt=67f63441-e9db-488d-aabd-0093a31a46f3; _solidshop_guest_token=Ik1IOGFhSE1acUNuN3lBaWFYNFdMMXci--b20efc90d6a6f160f8887c206e84ad091f676225; OptanonConsent=isIABGlobal=false&datestamp=Tue+Jan+24+2023+20%3A58%3A47+GMT%2B0000+(Coordinated+Universal+Time)&version=6.39.0&hosts=&consentId=66f69325-fb12-4af4-8a24-20e31253ee1d&interactionCount=0&landingPath=https%3A%2F%2Fsquareup.com%2Fus%2Fen%2Fpayments%2Fsecure&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0; KP_UIDz-ssn=09RRlRYAQEAjCVzY1xLtpe0AWrOvkNjnl2UP7MBxWBQoLQ4sqKHwqD2JKSfSi6OGTzfKl4ZcAjxLzFzfYGqQ3jxSHz835hlMZa3oFITpvXkpuoxf2gFteKE0tJvkWzMtwmiXMK5VPg1bijhWGRTWevAP; KP_UIDz=09RRlRYAQEAjCVzY1xLtpe0AWrOvkNjnl2UP7MBxWBQoLQ4sqKHwqD2JKSfSi6OGTzfKl4ZcAjxLzFzfYGqQ3jxSHz835hlMZa3oFITpvXkpuoxf2gFteKE0tJvkWzMtwmiXMK5VPg1bijhWGRTWevAP Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 204 No Content date: Tue, 24 Jan 2023 20:58:51 GMT access-control-allow-origin: https://squareup.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 78ebb087bf55b4ed-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	reporting.cdndex.io/error	54.230.111.12	200 OK	8 B
URL HTTP/2 reporting.cdndex.io/error IP 54.230.111.12:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 8 B (8 bytes) Hash d223c6f7f2f41d4e382d8a46737f4ff3 259192b780cf8d009d6dccc3b2493fd980838b29 2cb69644d1877e6dfa38adcfddfc21208f12a43753394381a54587438db2e666 HTTP Headers `POST /error HTTP/1.1 Host: reporting.cdndex.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json;charset=UTF-8 Content-Length: 30791 Origin: https://squareup.com Connection: keep-alive Referer: https://squareup.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: application/json content-length: 8 server: CloudFront date: Tue, 24 Jan 2023 20:58:51 GMT access-control-allow-origin: * access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token access-control-allow-methods: GET,POST,OPTIONS x-cache: LambdaGeneratedResponse from cloudfront via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 5T5vPgjoSTk2TcKFoQyICX6NSTffLidm4sPDZush68_WzpOM9xBr2Q== X-Firefox-Spdy: h2

	squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/tl	162.159.136.66	200 OK	15 B
URL HTTP/2 squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/tl IP 162.159.136.66:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with no line terminators Size 15 B (15 bytes) Hash 2f3dacf52e4642b0426a44cc91f5dcb8 e5d047d7560beea99c369f95da4136dd89a5205f f6ada6da39dbd575d9ae048067c2cddd9f39623fe07bf92cd5f0dbed40c92e7d HTTP Headers POST /149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/tl HTTP/1.1 Host: squareup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/octet-stream x-kpsdk-ct: 081eamYtFIyygvBVRJk632wR5AQw27DFbagZortjWHh9KAFLA2LMvUZFAdUxFKHdJI4jEAmokWxSfe0wT25dBUgi0No4OQ0BKGRAcjPTwidXkV10hvX2oglXb5YBCmVnYGdHh30KbUCcAvrSclubnewV x-kpsdk-dt: 14acx62ex3kx1p7w212z51px01aoz718 Content-Length: 10850 Origin: https://squareup.com Connection: keep-alive Referer: https://squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/fp Cookie: squareGeo=NO-undefined; __cf_bm=bYnM5ZxgaOE78EAtZh.fQix.8lm5UB3rdjqqv22mMGU-1674593925-0-AQ5LiS7E6+kFoxMo4EsIClejsDc14zscgWe8Va4Db+kjlfDPax3JD6/ajFGoo9PnI1zP3w9StUCiAaxXsLkXdpo=; _sqweb_session=eyJ1c2VyX3Nlc3Npb25fdG9rZW4iOiIiLCJzZXNzaW9uX2lkIjoiYTlhNjE1MjI0YjI4NGVhMmJlN2QzODgzNjkzMTRmZmEiLCJfY3NyZl90b2tlbiI6ImVhQlpzaEdMWEYtMzd6NFVSMlc3enVQUzBacHlnbm5CaHpDMHNrMVJyTW8ifQ%3D%3D--7db13381bb7163d392024dbf199b54ac18b6a4aa76f601fe635f502a49a98cd63741372006ff67c4c636ae7167290bac5cea03f6347f9c839e451e65195568e9; _js_csrf=eaBZshGLXF-37z4UR2W7zuPS0ZpygnnBhzC0sk1RrMo; _savt=67f63441-e9db-488d-aabd-0093a31a46f3; _solidshop_guest_token=Ik1IOGFhSE1acUNuN3lBaWFYNFdMMXci--b20efc90d6a6f160f8887c206e84ad091f676225; OptanonConsent=isIABGlobal=false&datestamp=Tue+Jan+24+2023+20%3A58%3A47+GMT%2B0000+(Coordinated+Universal+Time)&version=6.39.0&hosts=&consentId=66f69325-fb12-4af4-8a24-20e31253ee1d&interactionCount=0&landingPath=https%3A%2F%2Fsquareup.com%2Fus%2Fen%2Fpayments%2Fsecure&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0; KP_UIDz-ssn=09RRlRYAQEAjCVzY1xLtpe0AWrOvkNjnl2UP7MBxWBQoLQ4sqKHwqD2JKSfSi6OGTzfKl4ZcAjxLzFzfYGqQ3jxSHz835hlMZa3oFITpvXkpuoxf2gFteKE0tJvkWzMtwmiXMK5VPg1bijhWGRTWevAP; KP_UIDz=09RRlRYAQEAjCVzY1xLtpe0AWrOvkNjnl2UP7MBxWBQoLQ4sqKHwqD2JKSfSi6OGTzfKl4ZcAjxLzFzfYGqQ3jxSHz835hlMZa3oFITpvXkpuoxf2gFteKE0tJvkWzMtwmiXMK5VPg1bijhWGRTWevAP Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:51 GMT content-type: application/json; charset=utf-8 content-length: 15 cf-ray: 78ebb0877ef9b4ed-OSL cache-control: no-cache, no-store, must-revalidate expires: 0 cf-cache-status: DYNAMIC access-control-allow-headers: x-kpsdk-cd, x-kpsdk-ct p3p: CP="This site does not specify a policy in the P3P header" pragma: no-cache set-cookie: KP_UIDz-ssn=07Mmm2HN29nPlwayaOyDCMitinNVkF0pkHV7eWpCoui8bKgP6nGOe15sX1xxGNzAp5s1ij4N0jA2XAiRRjcA8Szb6EpTobk0HsFjZppZ3b61pnRveVf2UR0jz8mb9UJ1XgKfbr4OOClt947FICON6Lb7; Max-Age=86400; Path=/; Expires=Wed, 25 Jan 2023 20:58:51 GMT; HttpOnly; Secure; SameSite=None KP_UIDz=07Mmm2HN29nPlwayaOyDCMitinNVkF0pkHV7eWpCoui8bKgP6nGOe15sX1xxGNzAp5s1ij4N0jA2XAiRRjcA8Szb6EpTobk0HsFjZppZ3b61pnRveVf2UR0jz8mb9UJ1XgKfbr4OOClt947FICON6Lb7; Max-Age=86400; Path=/; Expires=Wed, 25 Jan 2023 20:58:51 GMT; HttpOnly squareGeo=NO-undefined; path=/; SameSite=Strict; Secure; max-age=2419200 x-kpsdk-cr: true x-kpsdk-ct: 07Mmm2HN29nPlwayaOyDCMitinNVkF0pkHV7eWpCoui8bKgP6nGOe15sX1xxGNzAp5s1ij4N0jA2XAiRRjcA8Szb6EpTobk0HsFjZppZ3b61pnRveVf2UR0jz8mb9UJ1XgKfbr4OOClt947FICON6Lb7 x-kpsdk-st: 1674593931852 vary: Accept-Encoding server: cloudflare X-Firefox-Spdy: h2

	squareup.com/cdn-cgi/rum?	162.159.136.66	204 No Content	0 B
URL HTTP/2 squareup.com/cdn-cgi/rum? IP 162.159.136.66:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: squareup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 684 Origin: https://squareup.com Connection: keep-alive Referer: https://squareup.com/us/en/payments/secure Cookie: squareGeo=NO-undefined; __cf_bm=bYnM5ZxgaOE78EAtZh.fQix.8lm5UB3rdjqqv22mMGU-1674593925-0-AQ5LiS7E6+kFoxMo4EsIClejsDc14zscgWe8Va4Db+kjlfDPax3JD6/ajFGoo9PnI1zP3w9StUCiAaxXsLkXdpo=; _sqweb_session=eyJ1c2VyX3Nlc3Npb25fdG9rZW4iOiIiLCJzZXNzaW9uX2lkIjoiYTlhNjE1MjI0YjI4NGVhMmJlN2QzODgzNjkzMTRmZmEiLCJfY3NyZl90b2tlbiI6ImVhQlpzaEdMWEYtMzd6NFVSMlc3enVQUzBacHlnbm5CaHpDMHNrMVJyTW8ifQ%3D%3D--7db13381bb7163d392024dbf199b54ac18b6a4aa76f601fe635f502a49a98cd63741372006ff67c4c636ae7167290bac5cea03f6347f9c839e451e65195568e9; _js_csrf=eaBZshGLXF-37z4UR2W7zuPS0ZpygnnBhzC0sk1RrMo; _savt=67f63441-e9db-488d-aabd-0093a31a46f3; _solidshop_guest_token=Ik1IOGFhSE1acUNuN3lBaWFYNFdMMXci--b20efc90d6a6f160f8887c206e84ad091f676225; OptanonConsent=isIABGlobal=false&datestamp=Tue+Jan+24+2023+20%3A58%3A51+GMT%2B0000+(Coordinated+Universal+Time)&version=6.39.0&hosts=&consentId=66f69325-fb12-4af4-8a24-20e31253ee1d&interactionCount=1&landingPath=https%3A%2F%2Fsquareup.com%2Fus%2Fen%2Fpayments%2Fsecure&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0; KP_UIDz-ssn=07Mmm2HN29nPlwayaOyDCMitinNVkF0pkHV7eWpCoui8bKgP6nGOe15sX1xxGNzAp5s1ij4N0jA2XAiRRjcA8Szb6EpTobk0HsFjZppZ3b61pnRveVf2UR0jz8mb9UJ1XgKfbr4OOClt947FICON6Lb7; KP_UIDz=07Mmm2HN29nPlwayaOyDCMitinNVkF0pkHV7eWpCoui8bKgP6nGOe15sX1xxGNzAp5s1ij4N0jA2XAiRRjcA8Szb6EpTobk0HsFjZppZ3b61pnRveVf2UR0jz8mb9UJ1XgKfbr4OOClt947FICON6Lb7 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 204 No Content date: Tue, 24 Jan 2023 20:58:53 GMT access-control-allow-origin: https://squareup.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 78ebb0920e54b4ed-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	squareup.com/cdn-cgi/rum?	162.159.136.66	204 No Content	0 B
URL HTTP/2 squareup.com/cdn-cgi/rum? IP 162.159.136.66:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /cdn-cgi/rum? HTTP/1.1 Host: squareup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Content-Length: 733 Origin: https://squareup.com Connection: keep-alive Referer: https://squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/fp Cookie: squareGeo=NO-undefined; __cf_bm=bYnM5ZxgaOE78EAtZh.fQix.8lm5UB3rdjqqv22mMGU-1674593925-0-AQ5LiS7E6+kFoxMo4EsIClejsDc14zscgWe8Va4Db+kjlfDPax3JD6/ajFGoo9PnI1zP3w9StUCiAaxXsLkXdpo=; _sqweb_session=eyJ1c2VyX3Nlc3Npb25fdG9rZW4iOiIiLCJzZXNzaW9uX2lkIjoiYTlhNjE1MjI0YjI4NGVhMmJlN2QzODgzNjkzMTRmZmEiLCJfY3NyZl90b2tlbiI6ImVhQlpzaEdMWEYtMzd6NFVSMlc3enVQUzBacHlnbm5CaHpDMHNrMVJyTW8ifQ%3D%3D--7db13381bb7163d392024dbf199b54ac18b6a4aa76f601fe635f502a49a98cd63741372006ff67c4c636ae7167290bac5cea03f6347f9c839e451e65195568e9; _js_csrf=eaBZshGLXF-37z4UR2W7zuPS0ZpygnnBhzC0sk1RrMo; _savt=67f63441-e9db-488d-aabd-0093a31a46f3; _solidshop_guest_token=Ik1IOGFhSE1acUNuN3lBaWFYNFdMMXci--b20efc90d6a6f160f8887c206e84ad091f676225; OptanonConsent=isIABGlobal=false&datestamp=Tue+Jan+24+2023+20%3A58%3A51+GMT%2B0000+(Coordinated+Universal+Time)&version=6.39.0&hosts=&consentId=66f69325-fb12-4af4-8a24-20e31253ee1d&interactionCount=1&landingPath=https%3A%2F%2Fsquareup.com%2Fus%2Fen%2Fpayments%2Fsecure&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0; KP_UIDz-ssn=07Mmm2HN29nPlwayaOyDCMitinNVkF0pkHV7eWpCoui8bKgP6nGOe15sX1xxGNzAp5s1ij4N0jA2XAiRRjcA8Szb6EpTobk0HsFjZppZ3b61pnRveVf2UR0jz8mb9UJ1XgKfbr4OOClt947FICON6Lb7; KP_UIDz=07Mmm2HN29nPlwayaOyDCMitinNVkF0pkHV7eWpCoui8bKgP6nGOe15sX1xxGNzAp5s1ij4N0jA2XAiRRjcA8Szb6EpTobk0HsFjZppZ3b61pnRveVf2UR0jz8mb9UJ1XgKfbr4OOClt947FICON6Lb7 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 204 No Content date: Tue, 24 Jan 2023 20:58:53 GMT access-control-allow-origin: https://squareup.com access-control-allow-methods: POST,OPTIONS access-control-max-age: 86400 vary: Origin access-control-allow-credentials: true server: cloudflare cf-ray: 78ebb0920e55b4ed-OSL x-frame-options: DENY x-content-type-options: nosniff X-Firefox-Spdy: h2`

	cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCommonStyles.css	104.16.148.64	200 OK	0 B
URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.39.0/assets/otCommonStyles.css IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /scripttemplates/6.39.0/assets/otCommonStyles.css HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://squareup.com/ Origin: https://squareup.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:48 GMT content-type: text/css content-md5: B55i3ZY9miZIaUrwjufy0w== last-modified: Fri, 26 Aug 2022 16:31:09 GMT x-ms-request-id: b38f1b3d-001e-0030-267f-b982cc000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 18767 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 78ebb077f8940b41-OSL content-encoding: gzip X-Firefox-Spdy: h2

	cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg	104.16.148.64	200 OK	0 B
URL HTTP/2 cdn.cookielaw.org/logos/static/poweredBy_ot_logo.svg IP 104.16.148.64:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /logos/static/poweredBy_ot_logo.svg HTTP/1.1 Host: cdn.cookielaw.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://squareup.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:49 GMT content-type: image/svg+xml content-md5: LpuayL42jB78xRllx0vkOw== last-modified: Mon, 23 Jan 2023 15:06:31 GMT x-ms-request-id: 5087f3bc-001e-0116-164e-2f5f2d000000 x-ms-version: 2009-09-19 x-ms-lease-status: unlocked x-ms-blob-type: BlockBlob access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding access-control-allow-origin: * cache-control: max-age=86400 cf-cache-status: HIT age: 68905 vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff server: cloudflare cf-ray: 78ebb0787b550b45-OSL content-encoding: gzip X-Firefox-Spdy: h2

	squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/fp	162.159.136.66	429 Too Many Requests	0 B
URL HTTP/2 squareup.com/149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/fp IP 162.159.136.66:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /149e9513-01fa-4fb0-aad4-566afd725d1b/2d206a39-8ed7-437e-a3be-862e0f06eea3/fp HTTP/1.1 Host: squareup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://squareup.com/us/en/payments/secure Cookie: squareGeo=NO-undefined; __cf_bm=bYnM5ZxgaOE78EAtZh.fQix.8lm5UB3rdjqqv22mMGU-1674593925-0-AQ5LiS7E6+kFoxMo4EsIClejsDc14zscgWe8Va4Db+kjlfDPax3JD6/ajFGoo9PnI1zP3w9StUCiAaxXsLkXdpo=; _sqweb_session=eyJ1c2VyX3Nlc3Npb25fdG9rZW4iOiIiLCJzZXNzaW9uX2lkIjoiYTlhNjE1MjI0YjI4NGVhMmJlN2QzODgzNjkzMTRmZmEiLCJfY3NyZl90b2tlbiI6ImVhQlpzaEdMWEYtMzd6NFVSMlc3enVQUzBacHlnbm5CaHpDMHNrMVJyTW8ifQ%3D%3D--7db13381bb7163d392024dbf199b54ac18b6a4aa76f601fe635f502a49a98cd63741372006ff67c4c636ae7167290bac5cea03f6347f9c839e451e65195568e9; _js_csrf=eaBZshGLXF-37z4UR2W7zuPS0ZpygnnBhzC0sk1RrMo; _savt=67f63441-e9db-488d-aabd-0093a31a46f3; _solidshop_guest_token=Ik1IOGFhSE1acUNuN3lBaWFYNFdMMXci--b20efc90d6a6f160f8887c206e84ad091f676225; OptanonConsent=isIABGlobal=false&datestamp=Tue+Jan+24+2023+20%3A58%3A47+GMT%2B0000+(Coordinated+Universal+Time)&version=6.39.0&hosts=&consentId=66f69325-fb12-4af4-8a24-20e31253ee1d&interactionCount=0&landingPath=https%3A%2F%2Fsquareup.com%2Fus%2Fen%2Fpayments%2Fsecure&groups=C0001%3A1%2CC0002%3A0%2CC0003%3A0%2CC0004%3A0 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: same-origin TE: trailers HTTP/2 429 Too Many Requests date: Tue, 24 Jan 2023 20:58:50 GMT content-type: text/html; charset=utf-8 cf-ray: 78ebb07bee6ab4ed-OSL cache-control: no-cache, no-store, must-revalidate expires: 0 cf-cache-status: DYNAMIC access-control-allow-headers: x-kpsdk-cd, x-kpsdk-ct p3p: CP="This site does not specify a policy in the P3P header" pragma: no-cache set-cookie: KP_UIDz-ssn=0aNu2qzDmfmEBs4mQrprgcQp2Mr9MrWSAfICCbTaDKAH7ZA7cDeZ8u0J6dWBRb8iH8jxFQZIAhH8P542ucTeIdlq7KghfPdB9nPG4KPPkzOSdoBVtCM9eyMxm7tR3cPQykLDkBV7gs7JSwkxOqaeMkhv; Max-Age=86400; Path=/; Expires=Wed, 25 Jan 2023 20:58:49 GMT; HttpOnly; Secure; SameSite=None KP_UIDz=0aNu2qzDmfmEBs4mQrprgcQp2Mr9MrWSAfICCbTaDKAH7ZA7cDeZ8u0J6dWBRb8iH8jxFQZIAhH8P542ucTeIdlq7KghfPdB9nPG4KPPkzOSdoBVtCM9eyMxm7tR3cPQykLDkBV7gs7JSwkxOqaeMkhv; Max-Age=86400; Path=/; Expires=Wed, 25 Jan 2023 20:58:49 GMT; HttpOnly squareGeo=NO-undefined; path=/; SameSite=Strict; Secure; max-age=2419200 x-kpsdk-ct: 0aNu2qzDmfmEBs4mQrprgcQp2Mr9MrWSAfICCbTaDKAH7ZA7cDeZ8u0J6dWBRb8iH8jxFQZIAhH8P542ucTeIdlq7KghfPdB9nPG4KPPkzOSdoBVtCM9eyMxm7tR3cPQykLDkBV7gs7JSwkxOqaeMkhv vary: Accept-Encoding server: cloudflare X-Firefox-Spdy: h2

	squareup.com/us/en/payments/secure	162.159.136.66	200 OK	0 B
URL HTTP/2 squareup.com/us/en/payments/secure IP 162.159.136.66:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /us/en/payments/secure HTTP/1.1 Host: squareup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: __cf_bm=bYnM5ZxgaOE78EAtZh.fQix.8lm5UB3rdjqqv22mMGU-1674593925-0-AQ5LiS7E6+kFoxMo4EsIClejsDc14zscgWe8Va4Db+kjlfDPax3JD6/ajFGoo9PnI1zP3w9StUCiAaxXsLkXdpo= Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 TE: trailers HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:47 GMT content-type: text/html; charset=utf-8 cf-ray: 78ebb0663eb4b4ed-OSL cache-control: max-age=0, public, must-revalidate set-cookie: squareGeo=NO-undefined; path=/; SameSite=Strict; Secure; max-age=2419200 strict-transport-security: max-age=631152000; includeSubDomains; preload vary: Accept-Encoding, Accept cf-cache-status: HIT access-control-allow-headers: x-kpsdk-cd, x-kpsdk-ct x-content-type-options: nosniff x-debug-cf-cache-tag: app:xms,page_cache_key_hash:3d80727b7f284742dda2ca65bb59aa5fd076e5d28abb5bdda8bd2ea8ae1cd22e,locale:en-US x-debug-cf-cdn-cache-control: max-age=300, stale-if-error=86400, stale-while-revalidate=86400 x-download-options: noopen x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block server: cloudflare content-encoding: gzip X-Firefox-Spdy: h2

	squareup.com/us/en/secure	162.159.136.66	301 Moved Permanently	0 B
URL HTTP/2 squareup.com/us/en/secure IP 162.159.136.66:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /us/en/secure HTTP/1.1 Host: squareup.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: __cf_bm=bYnM5ZxgaOE78EAtZh.fQix.8lm5UB3rdjqqv22mMGU-1674593925-0-AQ5LiS7E6+kFoxMo4EsIClejsDc14zscgWe8Va4Db+kjlfDPax3JD6/ajFGoo9PnI1zP3w9StUCiAaxXsLkXdpo= Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 TE: trailers HTTP/2 301 Moved Permanently date: Tue, 24 Jan 2023 20:58:46 GMT content-type: text/html; charset=utf-8 location: https://squareup.com/us/en/payments/secure cf-ray: 78ebb05fed8ab4ed-OSL cache-control: no-cache link: <https://xms-production-f.squarecdn.com/xms/assets/application-9f1182d392526a4b92c53caf6b9972ea0506eb3be61dede98460c689d5d44971.css>; rel=preload; as=style, <https://xms-production-f.squarecdn.com/xms/assets/application-c5436accc56ebfde9303a8f9a6cf4c91c2a0d2aa01bd87ca7c4157371523e466.js>; rel=preload; as=script, <https://square-fonts-production-f.squarecdn.com/square-text/SquareSansText-Upright-VF.woff2>; rel=preload; as=font; type=font/woff2; crossorigin, <https://square-fonts-production-f.squarecdn.com/square-display/SquareSansDisplay-VF.woff2>; rel=preload; as=font; type=font/woff2; crossorigin, <https://images.ctfassets.net>; rel=preconnect; crossorigin set-cookie: squareGeo=NO-undefined; path=/; SameSite=Strict; Secure; max-age=2419200 strict-transport-security: max-age=631152000; includeSubDomains; preload cf-cache-status: DYNAMIC access-control-allow-headers: x-kpsdk-cd, x-kpsdk-ct x-content-type-options: nosniff x-download-options: noopen x-frame-options: SAMEORIGIN x-permitted-cross-domain-policies: none x-xss-protection: 1; mode=block vary: Accept-Encoding server: cloudflare X-Firefox-Spdy: h2

	geolocation.onetrust.com/cookieconsentpub/v1/geo/location	104.18.27.85	200 OK	0 B
URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location IP 104.18.27.85:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /cookieconsentpub/v1/geo/location HTTP/1.1 Host: geolocation.onetrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://squareup.com Connection: keep-alive Referer: https://squareup.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Tue, 24 Jan 2023 20:58:48 GMT content-type: application/json access-control-allow-origin: * access-control-allow-headers: Content-Type access-control-allow-methods: GET, OPTIONS vary: Accept-Encoding strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 78ebb076fd90b50c-OSL content-encoding: gzip X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

Observations

Hash

HTTP Transactions (52)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers