Report - yasser-elgharably.com/bricri.html

Report Overview

Submitted URL
yasser-elgharably.com/bricri.html
IP
34.228.120.180
ASN
#14618 AMAZON-AES
Submitted
2022-12-01 04:26:28
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
googleads.g.doubleclick.net	42	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	969 B	2.0 kB	172.217.21.162
id.rlcdn.com	618	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	344 B	192 B	35.244.174.68
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	64 kB	34.120.237.76
c.go-mpulse.net	568	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	775 B	2.1 kB	23.38.200.138
tags.tiqcdn.com	969	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	59 kB	23.38.200.249
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	700 B	2.0 kB	54.230.245.100
6451349.fls.doubleclick.net	12794	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	611 B	1.2 kB	142.250.74.70
www.googleadservices.com	107	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	392 B	18 kB	142.250.74.34
scripts.demandbase.com	6402	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	800 B	143.204.55.88
collect.tealiumiq.com	2872	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	488 B	1.0 kB	3.75.54.183
yasser-elgharably.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	462 B	424 B	34.228.120.180
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
149.56.134.246	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	346 B	231 B	149.56.134.246
www.ups.com	8098	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	77 kB	1.3 MB	23.38.201.152
dpm.demdex.net	204	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	3.4 kB	3.248.121.63
ups.inq.com	9860	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.3 kB	14 kB	52.189.67.17
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	346 B	45 kB	142.250.74.168
connect.facebook.net	139	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	29 kB	31.13.72.12
adservice.google.no	96969	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	642 B	1.2 kB	216.58.207.194
ups.tt.omtrdc.net	10344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	476 B	1.3 kB	54.154.170.90
0217991d.akstat.io	54023	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	419 B	329 B	23.38.200.138
ocsp.comodoca.com	1696	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	4.8 kB	104.18.32.68
ups.demdex.net	6537	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	447 B	3.5 kB	18.203.75.86
www.youtube.com	90	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	326 B	2.3 kB	142.250.74.110
adservice.google.com	76	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	650 B	942 B	216.58.207.226
match.prod.bidr.io	503	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	735 B	636 B	52.30.114.131
filexfer.ups.com	16696	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	860 B	153.2.224.71
js.adsrvr.org	1664	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	332 B	2.4 kB	143.204.45.46
p11.techlab-cdn.com	3539	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	62 kB	104.84.152.59
www.facebook.com	99	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	641 B	349 B	31.13.72.36
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	680 B	1.9 kB	104.18.32.68
siteintercept.qualtrics.com	1163	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	20 kB	104.17.209.240
ups.com	3343	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	423 B	704 B	153.2.228.50
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.161.148.163
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	8.4 kB	142.250.74.131
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	972 B	757 B	142.250.74.132
insight.adsrvr.org	631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	529 B	33 kB	52.223.40.198
zn1gqrxzvrld7vjwm-upscx.siteintercept.qualtrics.com	11884	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	455 B	219 kB	104.17.209.240
akamai.tiqcdn.com	28769	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	363 B	555 B	23.38.200.249
cm.everesttech.net	996	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	391 B	475 B	99.80.65.0
smetrics.ups.com	10330	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.2 kB	4.3 kB	13.36.218.177
visitor-service-eu-central-1.tealiumiq.com	41593	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	455 B	320 B	18.196.139.125
segments.company-target.com	1301	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	811 B	1.1 kB	54.230.111.34
api.company-target.com	3427	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	558 B	939 B	54.230.111.40
www.google.no	25607	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	971 B	757 B	142.250.74.67
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.7 kB	23.36.76.226
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	6.4 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
s.go-mpulse.net	1280	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	386 B	51 kB	23.38.200.138
media-us1.digital.nuance.com	8045	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	801 B	8.0 kB	13.107.213.53
ocsp.godaddy.com	698	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	2.2 kB	192.124.249.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-01	medium	yasser-elgharably.com/bricri.html	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-12-01	medium	149.56.134.246	Sinkholed

JavaScript (96)

	URL	Size	First Seen	Last Seen
	tags.tiqcdn.com/utag/ups/yoda/prod/utag.15.js?utv=ut4.48.202207181153	23 kB	2023-03-08	2023-03-11
Pretty URL tags.tiqcdn.com/utag/ups/yoda/prod/utag.15.js?utv=ut4.48.202207181153 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:33 Times Seen1 Hash 32c557b17e016ba9440dd0c054e52444 31087f3bc4430a804acd1ac033934cc30b2e4806 3dd41d76f67c0459292c307f211c7453020700498103389a45ba06ce05c4d3a7 Loading...

	scripts.demandbase.com/DZlgJRFL.min.js	68 kB	2023-03-08	2023-03-11
Pretty URL scripts.demandbase.com/DZlgJRFL.min.js IP 143.204.55.88 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:33 Times Seen1 Hash 78c2462539be981398ff47e7892a7651 beb6cf7ae1543786c4a0cb369507228b4e079de8 249bddc0317f0b020e9b7a39feace92bd2aa648c13ef26f5b25533e89597ae59 Loading...

	www.googleadservices.com/pagead/conversion.js	46 kB	2023-03-08	2023-11-03
Pretty URL www.googleadservices.com/pagead/conversion.js IP 142.250.74.34 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:58 Last Seen2023-11-03 22:15:30 Times Seen3 Hash d6c8b769f77ac1adb13dca78fe1ad0f6 e030a3b320db3d7b059af408d32a7a3d26c12859 3bd916949aeea3ea0d8c943ffe67060a38c2902c9533a94d36650bc176e322af Loading...

	zn1gqrxzvrld7vjwm-upscx.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_1GqrxzvRld7vjWm&Q_LOC=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page	7.3 kB	2023-03-08	2023-03-11
Pretty URL zn1gqrxzvrld7vjwm-upscx.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_1GqrxzvRld7vjWm&Q_LOC=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page IP 104.17.209.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:33 Times Seen1 Hash 0eb4683c9cdfc8ea4680b5476674e6dd 2a7599bff139c1178e0889a4f104110d8d60de52 2ee2941b0bc5ddaed1a91d9a0d5adf2419813c12489ad2ef864912f2da6a93de Loading...

	siteintercept.qualtrics.com/dxjsmodule/11.6d6c5ef8794769da04fd.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=www.ups.com	63 kB	2023-03-08	2023-05-10
Pretty URL siteintercept.qualtrics.com/dxjsmodule/11.6d6c5ef8794769da04fd.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=www.ups.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:52 Last Seen2023-05-10 22:14:08 Times Seen2 Hash 27441729c7b7c4aad5744a87cf9a9b07 e01e945cd61c0dd22169d9425a5323e792f4da00 8bbd322d5b22764f29e7ff91003f0a7a25af17af76cbee3ff46e95a3d4d80b4f Loading...

	www.ups.com/us/en/global.page	221 B	2023-03-08	2024-04-18
Pretty URL www.ups.com/us/en/global.page IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2024-04-18 01:37:40 Times Seen33 Hash 64fe06fd2fe53a5deb1b4f41d3ced85d 51e95ead24238ff39f4d5afeda0375cec07c5364 f385289a7040cf9d9f58bb08cb3ae5fde0fe7ae2e11e6c642cc06472bd00caee Loading...

	s.go-mpulse.net/boomerang/TADEN-6MDCS-UHH5M-YHPKQ-2GBH3	210 kB	2023-03-07	2024-04-16
Pretty URL s.go-mpulse.net/boomerang/TADEN-6MDCS-UHH5M-YHPKQ-2GBH3 IP 23.38.200.138 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-04-16 19:18:01 Times Seen1340 Hash fa4c76a7fde62b18054cf7eb8e946012 b20150066a879d2b78dd3d4908f4acd148ee66f8 09ebd7f407439990aac227e70da23e1a819e8e30282928e324370805f480bec4 Loading...

	tags.tiqcdn.com/utag/ups/yoda/prod/utag.22.js?utv=ut4.48.202210131118	2.0 kB	2023-03-08	2023-03-11
Pretty URL tags.tiqcdn.com/utag/ups/yoda/prod/utag.22.js?utv=ut4.48.202210131118 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:33 Times Seen1 Hash 63163f6e3183bf502e6287e25e8d02b9 fd18c5c7c5af64eac15a822e9c78de862ed04140 a49ddd5bc76c0ff731b505e0980fdd15852052df74ec8fc7c9f3d5c6f8f652db Loading...

	tags.tiqcdn.com/utag/ups/yoda/prod/utag.36.js?utv=ut4.48.202205261106	18 kB	2023-03-08	2023-03-11
Pretty URL tags.tiqcdn.com/utag/ups/yoda/prod/utag.36.js?utv=ut4.48.202205261106 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:33 Times Seen1 Hash fdb1f92a4dbe2c3c5b04c08a02ea6025 6b8cc788062b523e1609a929ad05016660fae964 be08aa9c8ba1c3e553f2c3171d1c8f9d788ac211e60a1f3aefbde1d1ee2475a1 Loading...

	www.youtube.com/iframe_api	992 B	2023-03-08	2023-03-11
Pretty URL www.youtube.com/iframe_api IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:44 Last Seen2023-03-11 23:52:15 Times Seen1 Hash bd57458f58d75bdc43ae1139483ab9f4 cb8cdda13b6bc7f21f07f048491b5a99bb72d79e 5b9fc37386561508e71a539d87f0c11495ca7d5fe00d3b6ab3d1f318248b8f6f Loading...

	siteintercept.qualtrics.com/dxjsmodule/CoreModule.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx	104 kB	2023-03-08	2023-06-10
Pretty URL siteintercept.qualtrics.com/dxjsmodule/CoreModule.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:52 Last Seen2023-06-10 10:45:44 Times Seen3 Hash 15b98ecdbcfe4fe64aad53ba268f1545 8fb53b04badce588a9ee890e07929e37d7406291 20ee45b17985faa6172dc3930d47bb56303e3e9f4452e72e2c0feb9d562a081d Loading...

	www.ups.com/us/en/global.page	26 B	2023-03-07	2024-04-18
Pretty URL www.ups.com/us/en/global.page IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-18 22:17:36 Times Seen19567 Hash 339aaaa033bd435bc3d3442976b21150 309497f761b4649d113688cb611242810ed2a8bc 47536a23eb95f0f1d8f00b6ef54ac4553cc05d06ddce49260dab7dc9f083296d Loading...

	ups.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.ups.com	6.7 kB	2023-03-07	2024-03-23
Pretty URL ups.demdex.net/dest5.html?d_nsid=0#https%3A%2F%2Fwww.ups.com IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-03-23 05:26:10 Times Seen1169 Hash bea2f42512935b636558e81988e2d51f 2c9772b62f6eb8a3cec9c3a6fb9c0b22c927e59d 0cc5ff21c24654308609656ebcfda2d792d15f6fda17c0a88b551fcf8e456fdb Loading...

	tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=ups/yoda/202211232237&cb=1669868779499	2 B	2023-03-07	2024-04-18
Pretty URL tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=ups/yoda/202211232237&cb=1669868779499 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-04-18 15:51:54 Times Seen21524 Hash 7bc0ee636b3b83484fc3b9348863bd22 ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610 a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb Loading...

	www.googletagmanager.com/gtag/js?id=DC-6451349	113 kB	2023-03-11	2023-03-11
Pretty URL www.googletagmanager.com/gtag/js?id=DC-6451349 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:19:31 Last Seen2023-03-11 23:19:34 Times Seen1 Hash 2fcee1e7fc58b40bd000ce690a4a16eb 5f96e76210ad0339ddfec282b7bc8723ca30f9b9 01adb6f9990441d2952e1054d46a8ae7184e64b503af0d5152cc5c1f424ddbda Loading...

	www.ups.com/assets/ce586f7a90ceb2cb6785ea730fd896f2d0453d5260d	148 kB	2023-03-08	2023-06-17
Pretty URL www.ups.com/assets/ce586f7a90ceb2cb6785ea730fd896f2d0453d5260d IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2023-06-17 02:54:46 Times Seen24 Hash 367b9cda959222efcf6923cfac2dbf91 028354d83fb9e18156cd19aa08372cf791926eef e3935ba9c0135f0c25c44148067dfe9639febdc5d0910c069393c0b95a813935 Loading...

	connect.facebook.net/signals/config/286726385262010?v=2.9.89&r=stable	300 kB	2023-03-08	2023-03-11
Pretty URL connect.facebook.net/signals/config/286726385262010?v=2.9.89&r=stable IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:34 Times Seen1 Hash ec0eb8ea546ec936ae2cf283e9c28e5c 90777308a5c4a02535007fc3bdd10e3bb89a3df5 bb15c7437005c470d5c8c7b3649557c55db284fc2dc934d8cb77e56ecb537635 Loading...

	www.ups.com/us/en/global.page	4.2 kB	2023-03-07	2024-04-18
Pretty URL www.ups.com/us/en/global.page IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:34 Last Seen2024-04-18 02:25:56 Times Seen1344 Hash f5f81e7c8e8056c7fed4d18850d4d9d3 6752d4270762725b9fd9a2372860d2ea63d2b8e2 d2012b1f689c821c42b5b42b218d139976a2f6047c292fde3572ace84ed0e833 Loading...

	www.ups.com/us/en/global.page	3.0 kB	2023-03-11	2023-03-11
Pretty URL www.ups.com/us/en/global.page IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:19:31 Last Seen2023-03-11 23:19:31 Times Seen1 Hash ccaf55280952dff3916c868677ec5010 2543d9e8729b77db6440d42e6071c0981e86953a 4858e8f94866f0f99dfc5d12545fc6fe9f0f2b7c9ab1f14be0ba15edc1fb4adc Loading...

	www.ups.com/bgm7/2XTR/oK/Jt_2/419A/a7DaSbDauSiY/d2pDGSk/fV9/sKApIfWkB	196 kB	2023-03-08	2023-04-11
Pretty URL www.ups.com/bgm7/2XTR/oK/Jt_2/419A/a7DaSbDauSiY/d2pDGSk/fV9/sKApIfWkB IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:36:00 Last Seen2023-04-11 09:08:30 Times Seen4 Hash 04a155af57d30ccddf08bd3cf302f078 dfbd480be1295fd57c4bd470c57c84ae76c3349e 6a9384bc8a102c2a5028d05506f54d1f56ebee75b1642fdf2e053dc8d8bc924d Loading...

	tags.tiqcdn.com/utag/ups/yoda/prod/utag.js	272 kB	2023-03-08	2023-03-11
Pretty URL tags.tiqcdn.com/utag/ups/yoda/prod/utag.js IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:33 Times Seen1 Hash 2d4f7816415e23e99f25acf9521883d9 22639d769176a2fd8b0bd43bfaf2a819c98f9dd3 0a50af60cce4d2de23475fcc4030a6428c31f2403d2b3d8a075071df4979c187 Loading...

	www.ups.com/us/en/global.page	26 B	2023-03-07	2024-04-18
Pretty URL www.ups.com/us/en/global.page IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-04-18 22:17:37 Times Seen19571 Hash 813f7afe12806d2df1c685b53ab49c0e 8ebc2ee97e18dd336b670b53dbccdfb8788a5825 ab008176ac77145e392d8392787e81c90c2592a54b1590d8779c74f956c0e46a Loading...

	tags.tiqcdn.com/utag/ups/yoda/prod/utag.21.js?utv=ut4.48.202108101731	2.5 kB	2023-03-08	2023-03-11
Pretty URL tags.tiqcdn.com/utag/ups/yoda/prod/utag.21.js?utv=ut4.48.202108101731 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:33 Times Seen1 Hash d6a4fe9ea3362c1aab10df41fa62ec69 48a947c667784b156ca83ec72ec2c41697af8f80 1938c235d13a02e153cfd249741c0e33f9a85e4e75fc732ee8596e0333044e03 Loading...

	smetrics.ups.com/b/ss/upsprod/10/JS-2.22.4/s7946014433002?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=1%2F11%2F2022%204%3A26%3A19%204%200&cid.&tealiumVisitorID.&id=0184cbef700600025207a31da69300050002500900918&as=1&.tealiumVisitorID&.cid&d.&nsid=0&jsonv=1&.d&sdid=1827FF4C9A78338B-09773C1CA3960D66&mid=38716240327731045150219515596249720677&aamlh=6&ce=UTF-8&ns=unitedparcelservice&cdp=2&g=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c.&business_user_company_size=4&business_user_revenue=1384000&.c&ch=home&events=event155%3D26%2Cevent157%3D2364%2Cevent156%3D20&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=global.page&c2=global&v2=b2b&c5=en&c6=US&v6=4&c13=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&v14=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c17=ups%7Cyoda%7Cprod%7Cut4.48.202211232237%7C-%7C-&c18=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c19=4&v19=guest&c22=guest&c23=New&c24=38716240327731045150219515596249720677&c27=26&c29=SiteB&c30=541512&c31=7379&c33=global&v37=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&v39=New&v49=www.ups.com&v50=1669868777479&c51=www.ups.com&v51=0184cbef700600025207a31da69300050002500900918&v55=ups.com&v77=38716240327731045150219515596249720677&v78=1&v83=First%20Visit&v88=-%7C4%7CSoftware%20and%20Technology%7CData%20and%20Technical%20Services%7C1384000%7C-&v93=1669868777479_1669868777489&v171=en&v172=US&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=036784BD57A8BB277F000101%40AdobeOrg&AQE=1	3.7 kB	2023-03-11	2023-03-11
Pretty URL smetrics.ups.com/b/ss/upsprod/10/JS-2.22.4/s7946014433002?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=1%2F11%2F2022%204%3A26%3A19%204%200&cid.&tealiumVisitorID.&id=0184cbef700600025207a31da69300050002500900918&as=1&.tealiumVisitorID&.cid&d.&nsid=0&jsonv=1&.d&sdid=1827FF4C9A78338B-09773C1CA3960D66&mid=38716240327731045150219515596249720677&aamlh=6&ce=UTF-8&ns=unitedparcelservice&cdp=2&g=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c.&business_user_company_size=4&business_user_revenue=1384000&.c&ch=home&events=event155%3D26%2Cevent157%3D2364%2Cevent156%3D20&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=global.page&c2=global&v2=b2b&c5=en&c6=US&v6=4&c13=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&v14=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c17=ups%7Cyoda%7Cprod%7Cut4.48.202211232237%7C-%7C-&c18=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c19=4&v19=guest&c22=guest&c23=New&c24=38716240327731045150219515596249720677&c27=26&c29=SiteB&c30=541512&c31=7379&c33=global&v37=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&v39=New&v49=www.ups.com&v50=1669868777479&c51=www.ups.com&v51=0184cbef700600025207a31da69300050002500900918&v55=ups.com&v77=38716240327731045150219515596249720677&v78=1&v83=First%20Visit&v88=-%7C4%7CSoftware%20and%20Technology%7CData%20and%20Technical%20Services%7C1384000%7C-&v93=1669868777479_1669868777489&v171=en&v172=US&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=036784BD57A8BB277F000101%40AdobeOrg&AQE=1 IP 13.36.218.177 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:19:31 Last Seen2023-03-11 23:19:31 Times Seen1 Hash 9a6eb804aa228cea9fbfcc46ba61db05 c65151cbaae135409a879420db591592d1ffe8ef 6812a9e89546a0ca90623e620bb0a049a885595f1830e788c57b1ded3f8325c8 Loading...

	www.youtube.com/s/player/d75422b4/www-widgetapi.vflset/www-widgetapi.js	165 kB	2023-03-08	2023-03-11
Pretty URL www.youtube.com/s/player/d75422b4/www-widgetapi.vflset/www-widgetapi.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:16 Last Seen2023-03-11 23:52:14 Times Seen1 Hash 466e9a244d45aaa357cd97736b8a739d 9a69dacd2b5abed598df8b461114b49582381525 cc41640dd72382f686ce37ae82b916bcb605c9deb6762bb179a3d57f318d02b2 Loading...

	visitor-service-eu-central-1.tealiumiq.com/ups/yoda/0184cbef700600025207a31da69300050002500900918?callback=utag.ut%5B%22writevayoda%22%5D&rnd=1669868779923	2 B	2023-03-07	2024-04-18
Pretty URL visitor-service-eu-central-1.tealiumiq.com/ups/yoda/0184cbef700600025207a31da69300050002500900918?callback=utag.ut%5B%22writevayoda%22%5D&rnd=1669868779923 IP 18.196.139.125 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:26 Last Seen2024-04-18 22:17:38 Times Seen179659 Hash 99914b932bd37a50b983c5e7c90ae93b bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a Loading...

	media-us1.digital.nuance.com/media/launch/pr.min.js?codeVersion=1668611184077	77 kB	2023-03-07	2024-04-01
Pretty URL media-us1.digital.nuance.com/media/launch/pr.min.js?codeVersion=1668611184077 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:21:33 Last Seen2024-04-01 21:28:18 Times Seen122 Hash be54be4427cf18be4fa762b6edcefc2c 9f8c0c08fff89b773ea18e8703add78155cc08fc 5537e7ccff2e1c6b366839ef3a5c21d2889efdced24e0cf8d3a2e53c17fe08bf Loading...

	siteintercept.qualtrics.com/dxjsmodule/1.8ce69394dfc154e65174.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx	29 kB	2023-03-08	2023-03-11
Pretty URL siteintercept.qualtrics.com/dxjsmodule/1.8ce69394dfc154e65174.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx IP 104.17.209.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:52 Last Seen2023-03-11 23:44:36 Times Seen1 Hash a4802228fa2ddf3964ab98d0b0b73cbe 05be982516b28adc48c56b3f2bb017a2f7f3f47e 90ca1ec69de35eb28fcd7f3dfe0215a56127cacf6b15b24780bb8b2478578d33 Loading...

	ups.inq.com/tagserver/postToServer.min.htm?siteID=10005649&codeVersion=1668611184077	21 kB	2023-03-07	2023-07-06
Pretty URL ups.inq.com/tagserver/postToServer.min.htm?siteID=10005649&codeVersion=1668611184077 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:04 Last Seen2023-07-06 01:44:31 Times Seen101 Hash ceff19d6f6c2b1a641348fe75922e31d 0f49f9408d2499018f89a9c651dbeb869120ae64 7455230adb5d30b14d3ce23c11e2937451ce1eecb55a592703bbcd2044711cea Loading...

	www.ups.com/us/en/global.page	1.3 kB	2023-03-08	2023-03-11
Pretty URL www.ups.com/us/en/global.page IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:33 Times Seen1 Hash ee164ee66ddeb417749e181862ca28f2 f083dd082d2902c25681ab727702648abd818fa4 7a3bdeb1a9fb417ae521039383889cf54d5f22da5962a59138b2c27589df1c98 Loading...

	www.ups.com/us/en/global.page	26 B	2023-03-07	2024-04-18
Pretty URL www.ups.com/us/en/global.page IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-18 22:17:36 Times Seen19569 Hash 8cf91652fc7787b535b26f390f9ed9af d39e49793059ab3b8a97b61bac69ad2a451c8ff2 f876a7b1e6234843f5d8487af055addd42fe6018d4f4e2f29ab08c0f08a85d94 Loading...

	tags.tiqcdn.com/utag/ups/yoda/prod/utag.19.js?utv=ut4.48.202108101731	3.1 kB	2023-03-08	2023-03-11
Pretty URL tags.tiqcdn.com/utag/ups/yoda/prod/utag.19.js?utv=ut4.48.202108101731 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:26:57 Last Seen2023-03-11 23:19:34 Times Seen1 Hash 509a2aa997e93b6ebe60cdf7a9ae73b6 5c0f91e15a14b1df85b0590ef9e45060a71bae24 6cfabea7263d14eb48f8215f06bd146917ff3f9f8117456ddff9c34b034ee3bc Loading...

	tags.tiqcdn.com/utag/ups/yoda/prod/utag.11.js?utv=ut4.48.202205201120	109 kB	2023-03-08	2023-03-11
Pretty URL tags.tiqcdn.com/utag/ups/yoda/prod/utag.11.js?utv=ut4.48.202205201120 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:34 Times Seen1 Hash 18d704181f505f3d4d9033ad3542b4b3 f62b61676ee053d12ebef9008a6121ed6d8d98bb 87343fe8dbecb481309418b07d0829a89807a3a64725cc5f28145d8b2a5bf57a Loading...

	6451349.fls.doubleclick.net/ddm/fls/r/src=6451349;type=sitev;cat=upsal0;ord=4500343383660;gtm=2odbs0;auiddc=943829796.1669868780;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page	154 B	2023-03-08	2023-04-01
Pretty URL 6451349.fls.doubleclick.net/ddm/fls/r/src=6451349;type=sitev;cat=upsal0;ord=4500343383660;gtm=2odbs0;auiddc=943829796.1669868780;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:59:35 Last Seen2023-04-01 10:34:51 Times Seen10 Hash f17f1d66e1a77eb84604452e45258904 025ac55a15d8c587967848702b97029e398eb8f4 666fbc3224ab65dd18561d4526901969d1e991b246ef039ae8f505f1c89be28b Loading...

	media-us1.digital.nuance.com/media/launch/tcFramework.min.js?codeVersion=1668611184077	533 kB	2023-03-08	2023-03-11
Pretty URL media-us1.digital.nuance.com/media/launch/tcFramework.min.js?codeVersion=1668611184077 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:33 Times Seen1 Hash b57b4d6c2f2ffb695bcc3304041c789e d1d4405c5aae15d936411b5292191a883b4c6120 5d0c49c454c44a702c4125f3cd32d16203c0ff28b39d503f3d7777411fc1d17a Loading...

	ups.inq.com/tagserver/js/ads-blocking-detector.min.js	4.9 kB	2023-03-07	2024-04-15
Pretty URL ups.inq.com/tagserver/js/ads-blocking-detector.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:53:48 Last Seen2024-04-15 09:47:35 Times Seen138 Hash 414f1e375bd927d6166c9eaa6e38dd13 b2c1eb77c9c79bcab27e5892e11acbd74898e50e 78a37757c165e672eda69f69d745ab86d78fd6d9b66b157cb9b032e479faab11 Loading...

	www.ups.com/akam/13/429ccb6b	27 kB	2023-03-07	2024-01-21
Pretty URL www.ups.com/akam/13/429ccb6b IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:12:25 Last Seen2024-01-21 05:58:15 Times Seen45 Hash 655b0df11b10654a2dbfbb5e9b299e42 64f3c1540b3ca963b244b3e70239d4b61546fadb 494df5c7d69448fc41cd85cca686bfff59703973dc8785238c35883569cee2d2 Loading...

	www.ups.com/us/en/global.page	26 B	2023-03-07	2024-04-18
Pretty URL www.ups.com/us/en/global.page IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:36 Last Seen2024-04-18 22:17:36 Times Seen19567 Hash 0096b3a75c132c10f6a90df56192e4d7 07cfa420d654e1531d97a9dccd23f4bede5edde7 7e519b79026424c478dc1b72f347eb1327c9d01dc2458973bafe2690ca7d016d Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/863311277/?random=1669868780185&cv=9&fst=1669868780185&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6451349.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6451349%3Btype%3Dsitev%3Bcat%3Dupsal0%3Bord%3D4500343383660%3Bgtm%3D2odbs0%3Bauiddc%3D943829796.1669868780%3Bgdid%3DdYmQxMT%3B~oref%3Dhttps%253A%252F%252Fwww.ups.com%252Fus%252Fen%252Fglobal.page&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4	2.6 kB	2023-03-11	2023-03-11
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/863311277/?random=1669868780185&cv=9&fst=1669868780185&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6451349.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6451349%3Btype%3Dsitev%3Bcat%3Dupsal0%3Bord%3D4500343383660%3Bgtm%3D2odbs0%3Bauiddc%3D943829796.1669868780%3Bgdid%3DdYmQxMT%3B~oref%3Dhttps%253A%252F%252Fwww.ups.com%252Fus%252Fen%252Fglobal.page&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 IP 172.217.21.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:19:31 Last Seen2023-03-11 23:19:31 Times Seen1 Hash 58ff1b641c63c85bca8ddfb6fcce188e 52ed3c3f33873fb0c2f32fe33ed40a939d4aa778 c3944f929840d8ed33014cfa40d5621daca34354ccca6c7a2801d7ba3b470a5e Loading...

	tags.tiqcdn.com/utag/ups/yoda/prod/utag.14.js?utv=ut4.48.202211232237	8.2 kB	2023-03-08	2023-03-11
Pretty URL tags.tiqcdn.com/utag/ups/yoda/prod/utag.14.js?utv=ut4.48.202211232237 IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:33 Times Seen1 Hash 8367c4b25f0695bf73bd5ed060c8a809 f2c2b855146f51d47705007f484a766422512479 8d66a263b890ba213d5f92e53f21662c794ca953378a324c001ea412f577edc1 Loading...

	media-us1.digital.nuance.com/media/launch/chatLoader.min.js?codeVersion=1668611184077	22 kB	2023-03-11	2023-03-11
Pretty URL media-us1.digital.nuance.com/media/launch/chatLoader.min.js?codeVersion=1668611184077 IP 13.107.213.53 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 10:52:55 Last Seen2023-03-11 23:19:34 Times Seen1 Hash 10a6234b9b481c8840bfc4e539671711 7eb470c8a5aa622fbbd7ea02db34885dab0b98f4 205a5af94af7aa7023c653103994035219a637676d60255a90856dca5ba22d6d Loading...

	tags.tiqcdn.com/utag/ups/yoda/prod/utag.sync.js	173 kB	2023-03-08	2023-03-11
Pretty URL tags.tiqcdn.com/utag/ups/yoda/prod/utag.sync.js IP 23.38.200.249 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:26:56 Last Seen2023-03-11 23:19:31 Times Seen1 Hash 2bba4b1c55b54fc9881db7353d300ab6 e2aaa48a6d95d002f30dfa55728ab31b502b13a5 0ff3d3c8daaac73bbe290861d3685dbe3f1d2f8509d6cca9d2671091ea6649da Loading...

	www.ups.com/us/en/global.page	364 B	2023-03-11	2023-03-11
Pretty URL www.ups.com/us/en/global.page IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 23:19:31 Last Seen2023-03-11 23:19:34 Times Seen1 Hash 8b3e86de06c745a787b80ca4e2422259 5d492dc3699e8cf8d63829ad0473594da2ede4fe 4ec7bd96863267df69e8aec77c0a47ce53aaef4cf30200fdd81bec9e0227ac05 Loading...

	www.ups.com/us/en/global.page	33 B	2023-03-08	2024-04-18
Pretty URL www.ups.com/us/en/global.page IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:59:35 Last Seen2024-04-18 01:37:40 Times Seen66 Hash 6ded8def0e0e49e15393abbc6cf712fa fd1b5a7826f9687c41b64085bf2ea729059e873d be28426e8a247f173d05ea2d7b9c5026bc005f7756c2640f5887d69acaef29aa Loading...

	unknown	0 B	2023-03-07	2024-04-18
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-18 22:43:36 Times Seen36948222 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.ups.com/us/en/global.page	26 B	2023-03-07	2024-04-18
Pretty URL www.ups.com/us/en/global.page IP 23.38.201.152 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:35 Last Seen2024-04-18 22:17:36 Times Seen19565 Hash 91e37f24be76111b93a0ff728b96cddb e1740ea479e156d424cb918060d779528ecc8fae 49ef43da1c84ec34b398aaab43e8debad168559596297c7586e9c9e8239c79bf Loading...

	ups.inq.com/chatskins/launch/inqChatLaunch10005649.js	5.1 kB	2023-03-11	2023-03-11
Pretty URL ups.inq.com/chatskins/launch/inqChatLaunch10005649.js IP 52.189.67.17 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 14:11:02 Last Seen2023-03-11 23:19:33 Times Seen1 Hash 5c5d59c380b6fec0b21bd37b8f725b23 ea2d4e49133c42a4c98dda160e25870895d7cb4b c15060c63764bad39d6eef1e5bd59e0cc5e9f62f1f54c3bffb320c8f7d9e2ac2 Loading...

	js.adsrvr.org/up_loader.1.1.0.js	4.6 kB	2023-03-07	2023-11-04
Pretty URL js.adsrvr.org/up_loader.1.1.0.js IP 143.204.45.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:29 Last Seen2023-11-04 15:38:59 Times Seen1096 Hash 98d98b3499058b76d58073cf8ede2f10 2ec5bc839a187c2a4d93499567e8fff091a6bcc4 ee3a7301fe1e0c0f6bf6acff0d7a8d107f5cb3f62a2566740c0416d8e61f00b9 Loading...

	siteintercept.qualtrics.com/dxjsmodule/4.a5c0de52a5fc4b1cbc4b.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx	1.8 kB	2023-03-08	2023-03-11
Pretty URL siteintercept.qualtrics.com/dxjsmodule/4.a5c0de52a5fc4b1cbc4b.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx IP 104.17.209.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:52 Last Seen2023-03-11 23:44:36 Times Seen1 Hash 47d288910bddf2bf2c544552b10e7ef9 6c8a83bc840d2c2cda2d4bbcb64b50c383fc4059 656b507a55c361579615069ae025d160099bac360642eaba44bd2331f7fad4c3 Loading...

	siteintercept.qualtrics.com/dxjsmodule/FeedbackButtonModule.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx	66 kB	2023-03-07	2023-06-10
Pretty URL siteintercept.qualtrics.com/dxjsmodule/FeedbackButtonModule.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx IP 104.17.209.240 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:02 Last Seen2023-06-10 10:45:44 Times Seen4 Hash 49a4d26fda8598291979bf28ede2b3e2 28b70837b5e9d6ad38bc83b5fe3ff16da6530005 2b5aceeabb3acd528746d88da082a178e77658bbeea164b0f382469c6e23b8de Loading...

	ups.inq.com/tagserver/postToServer.min.js?siteID=10005649&codeVersion=1668611184077	21 kB	2023-03-07	2023-07-06
Pretty URL ups.inq.com/tagserver/postToServer.min.js?siteID=10005649&codeVersion=1668611184077 IP 52.189.67.17 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:53:48 Last Seen2023-07-06 01:44:31 Times Seen35 Hash 2fd62a0039ba1b7b8f14f02de4b97fc1 37a12b8147efb635072229c54346dcf82153b71f 353d4336e6e76580a9eaa282cb1e83ce9259729553ad74c006f2ef9aef535650 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 8ceff9ce4a1b4b803a95f07b3e462b98	1.1 kB	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-13 03:06:13 Times Seen1 Hash 8ceff9ce4a1b4b803a95f07b3e462b98 039ca63fdb50759b91b36b4acd1bf1b7854b9e16 21c24dbe4c7597bdb672df4d7cdd25d51d32185e17b7a197ed1aae8aadad41ba Loading...

	#2 Eval - 45129e95e19f9bfbf44ec4bcbe04749b	16 B	2023-03-07	2024-04-01
Pretty Observations First Seen2023-03-07 14:53:48 Last Seen2024-04-01 21:28:21 Times Seen28 Hash 45129e95e19f9bfbf44ec4bcbe04749b bb125cf03a5862e576f5ada8642fd70475ff71da 578eed3138c8952acfeb6021f8b0af8ff132ad7b53dd3ba0fe9459ac0abb2fff Loading...

	#3 Eval - b7ebca4d3d347478c077b6a0e5b6fdb5	29 B	2023-03-07	2024-01-11
Pretty Observations First Seen2023-03-07 13:55:41 Last Seen2024-01-11 04:21:56 Times Seen40 Hash b7ebca4d3d347478c077b6a0e5b6fdb5 55733cc95989f1392ddebb78aeeb17009a4dbc3d 1a0c3a6a89d123fbbc7d4d4f015e2f92b166a9d95b555ef8803518899d974905 Loading...

	#4 Eval - a68137803ad3fb61f6ddeb13605a7bbc	20 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash a68137803ad3fb61f6ddeb13605a7bbc 8ea77f89a2f61b11cf7d8061a7d9aaa55e200173 519290f5b49eb1ec1590bb2527d053b12f6893a2d885b5d3427efd87674a0c84 Loading...

	#5 Eval - 79a33467e6c7706ea4dcdf4bd49838f5	207 B	2023-03-08	2024-02-13
Pretty Observations First Seen2023-03-08 20:00:29 Last Seen2024-02-13 17:43:03 Times Seen31 Hash 79a33467e6c7706ea4dcdf4bd49838f5 e053b4a4f40e10715d614c3579e934059777f827 5813e10d5e4c3064ae503cdeb5f45343d6c08e47c4f6e0c1324a84de8323fac6 Loading...

	#6 Eval - f39174847a2a6afc91945f9403670357	42 B	2023-03-07	2024-04-01
Pretty Observations First Seen2023-03-07 14:53:48 Last Seen2024-04-01 21:28:21 Times Seen28 Hash f39174847a2a6afc91945f9403670357 db34aa01ed4ccee84f15ce71123ecc1255044ec1 8b131429081207f3d73fc759bd23c0020748b51f66ea2e4cc6043be42c219c23 Loading...

	#7 Eval - b827798ab61a41b144bb034a279f5418	14 kB	2023-03-07	2024-04-01
Pretty Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-01 04:10:19 Times Seen1788 Hash b827798ab61a41b144bb034a279f5418 8feb0bd589f9df8fbd1b0bf8ca6f0cb2511cef93 db0d5936366b6c9ab3339e27d8dcafdefb33c1fc35ba75f266318efeba95b2e6 Loading...

	#8 Eval - 9edf440886a224b398871a12a9efbe89	49 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-03-13 03:06:13 Times Seen1 Hash 9edf440886a224b398871a12a9efbe89 8918248e10ad616636000e1239e7897b04091a73 b24b5879fd42630ce91895179fbf2cf76a25a246260af531913c1b153838993c Loading...

	#9 Eval - e0e234445a456b31e118795465f0fb99	31 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash e0e234445a456b31e118795465f0fb99 fed7d76a247d5f8af46d97b61c3dfcd59184ff00 0f8fcf15a1b39039ae0cbbbcc350787fe9df2bab540424de9427e87d5412812e Loading...

	#10 Eval - f083a2d39d24bef639da7d144936bdf6	255 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash f083a2d39d24bef639da7d144936bdf6 638c9da25e0b138d64072dc6238c8a5259620184 6dfd6e10743e41e8924500b4408171dd9e74b8833af4a9e20d7b0ad6d6aacbc8 Loading...

	#11 Eval - 8615ad90a333ae4f68bce0d6b5d79f23	27 B	2023-03-08	2024-01-11
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2024-01-11 04:21:56 Times Seen31 Hash 8615ad90a333ae4f68bce0d6b5d79f23 7387cfa25c5d21da25a52dcc636dfc5595803afe 22c430844f9814e50991924fce361822946491c1a547a93ce866192b071e0286 Loading...

	#12 Eval - 73ebf983579e00c4ce55d9fca7efd72f	255 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash 73ebf983579e00c4ce55d9fca7efd72f 1d5d06f3e84c3b0af28f0cf8cdf21ab0932e6102 69f6e86f458441881124ec8f5790175e409be43219d6690a6d2610cf321adae7 Loading...

	#13 Eval - 98b48eddc48870c2ce306b6d99622a69	26 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash 98b48eddc48870c2ce306b6d99622a69 bd215b1d3cb9d55ea54c54bd0d269c5207b1f988 c7d1074ad25487a1732840858d1e466db5061bd922c19487df434aa698aa3917 Loading...

	#14 Eval - ecd123f731f46c1296fc21a973fb822f	255 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash ecd123f731f46c1296fc21a973fb822f 987759fa9f6ab0565ce552d6b1590d641b8810c3 7213e2ab7b6a54c55812ca4fe9a3c801e6036d6725ca753707d4daee4086e94f Loading...

	#15 Eval - 0f1da7f8ab3c55e421a7b325b06b9f2f	24 B	2023-03-07	2024-01-30
Pretty Observations First Seen2023-03-07 14:53:48 Last Seen2024-01-30 10:59:41 Times Seen20 Hash 0f1da7f8ab3c55e421a7b325b06b9f2f af54e82242dddfabbea7c1d5748ca779bece8ea1 a172e304b17a0b5384e2c82283d1fae4a7ac5dd25dabe546c296fce231c76d06 Loading...

	#16 Eval - fcadb0d44e3f9dac54aeddc34c7cd9aa	61 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen9 Hash fcadb0d44e3f9dac54aeddc34c7cd9aa 5247451aae836364982558ba9270b092035af789 fe4bb837143a9dc50eda71a357e899f9e3f464a604b07898231ad6b977cda3e2 Loading...

	#17 Eval - 497c60aa0cac8e10fe768874d607d306	71 kB	2023-03-07	2024-04-01
Pretty Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-01 04:10:19 Times Seen16596 Hash 497c60aa0cac8e10fe768874d607d306 353371ed148d7adc915352f1237edf7beb0e588e f15d0efbde8255667f5a72b6d15514a07af8ed26fc0123dbecd7a57b8571f5f6 Loading...

	#18 Eval - 9188c835e9df803d409aa484c86419bc	3.7 kB	2023-03-07	2024-04-07
Pretty Observations First Seen2023-03-07 01:26:49 Last Seen2024-04-07 16:50:01 Times Seen443 Hash 9188c835e9df803d409aa484c86419bc 5956dd7bea13af103b46eef444d0f26ead9244b7 2281bceeaf3c81dc26731248960c8d210a0d461a02759c39b7a7b6c5ee1e06a0 Loading...

	#19 Eval - edc39ae06788d5f04e61c3957ec6e46a	824 kB	2023-03-08	2023-03-11
Pretty Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:34 Times Seen1 Hash edc39ae06788d5f04e61c3957ec6e46a 989770c4eadbdd72dc0f790e661910b9a328623f e01461efa1a529cd09e1ffbabc1b67ebd632b2f98ab026e736aff68a6d8354cd Loading...

	#20 Eval - 0da5c519f4ffac4a92423a0686ec0348	255 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash 0da5c519f4ffac4a92423a0686ec0348 0b93b578f1e9c9bdd9b8cc879369b531eea79059 582ab739df6aa0baa93d9bdf326e92aebd7f7985756f54e66af9c1e53e95c138 Loading...

	#21 Eval - 783a7bba8e8bc10308e50f3d8ee20f0e	29 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash 783a7bba8e8bc10308e50f3d8ee20f0e 4b53063d10e8ca509d2171d7c207acd981b0dc56 9d76369e4b6151959a86bd3f1f52a2102ab9beb4b9326b9eda1619a691dd8be2 Loading...

	#22 Eval - f391a5f848ad0596a0d46e73b3de47e4	149 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen9 Hash f391a5f848ad0596a0d46e73b3de47e4 fe60d1aaf5b046c762893a3b42e01e2d57b6f264 e3c10d969e6a5eb59779cdbec6864fb8ab3c616f381b44f49f3bf99b9182402d Loading...

	#23 Eval - ae7008c7f844720a33717d18729267cb	207 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-03-13 03:06:13 Times Seen1 Hash ae7008c7f844720a33717d18729267cb 268091cbaeac396641ee2b48f8cec69d2319a3d8 68e1337e64bb2387d8a9467ea5a3242d212b6951efaab9a24a5daf1a6d9fbf83 Loading...

	#24 Eval - f9f838ed9e7202ac3528c25eb85f562a	49 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-03-13 03:06:13 Times Seen1 Hash f9f838ed9e7202ac3528c25eb85f562a f03272c7dc4c6636644065e32c4aef0d1c0d2c2a acec6e3b8e37c6425049654e48332fca8c6af5c1727c7e3119d88c864392a65b Loading...

	#25 Eval - 9e30694ab1e8adffcb985f8a851ee79c	49 B	2023-03-08	2023-04-17
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-04-17 02:28:53 Times Seen5 Hash 9e30694ab1e8adffcb985f8a851ee79c 85363ea9db05b0da1c18613d41cd07621cd2507c f5dc58eb235e0fe5ad3d5763a6832a64afbf9e816bca021b16045be0c1c06018 Loading...

	#26 Eval - a1932d81708a0f622c3313dacadea6be	23 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash a1932d81708a0f622c3313dacadea6be b0ab88ffc2719dcde6ef249c8ffe9c17b4e01edf 518e5da3a05f274e87e5947e4170d15352fc9027d906e901a9aedae47bee3736 Loading...

	#27 Eval - 50794f431fc9f108cdc8b23c589cd7f6	32 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash 50794f431fc9f108cdc8b23c589cd7f6 a58b1f8806393ba38bfb23a815de2ca31b921ba9 461f7faa6894322f81e16fbb9aac970258bca02dd1c83536ddfd82ec058ede79 Loading...

	#28 Eval - a539b972798ece55be93aaef79bbc259	1.1 kB	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-13 03:06:13 Times Seen1 Hash a539b972798ece55be93aaef79bbc259 f6d8bf063371e39b0fa31c8e62237dc40758dbf9 24ec47901000db69c1633ab3cb11ac514611b42464ac169e28ad8c42e1133e19 Loading...

	#29 Eval - f154488e0fee0099056d8cffc28f9b46	23 B	2023-03-08	2024-01-11
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2024-01-11 04:21:56 Times Seen30 Hash f154488e0fee0099056d8cffc28f9b46 5a0cd81e30b456a16e3b86d93ed4a55fce5d2559 b52913e8d7c402bf84ba51bfb1df648f24d5bb566d3a44c38459dfafa8248917 Loading...

	#30 Eval - ba8666f64ab1135fbb77dc8db97e1bb2	255 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash ba8666f64ab1135fbb77dc8db97e1bb2 6a7b5a4aa1a39cc83ae69143dc0901feb6907320 34c63a1f20d74ba706d2dfc06c7dbc1c027eec3f3c9d9994266875abb9050d8e Loading...

	#31 Eval - e2e372531b919a9d271254747edaa4f9	29 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash e2e372531b919a9d271254747edaa4f9 934ec5a84673053c5c2f3cef387ae138c63e1e7e 6f689f18a83902c99f96e0d29d63b06939ddb5306cd88cab7bce97d125a313b4 Loading...

	#32 Eval - 6fcba5a515372171c1177fbefbb04a26	24 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash 6fcba5a515372171c1177fbefbb04a26 fb19e4fd84f503b1e4664a3c7209fac134d6463e 0bfda0b925f956c4cb349f1c53f3a069deb5709ac9ee08ccd624535419b689a9 Loading...

	#33 Eval - 7a9a914ea764dc36a8859741db2ecc9a	48 B	2023-03-08	2023-03-13
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-03-13 03:06:13 Times Seen1 Hash 7a9a914ea764dc36a8859741db2ecc9a ec28576faeff27741b79dd7fa81e73f9d135f852 19cda3f5edaaae5257a19d69ce0113512215c4e06fb4c61599cd535bdcd52df1 Loading...

	#34 Eval - 25812009676b5812f0c52e39b38675c0	55 kB	2023-03-07	2024-04-01
Pretty Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-01 04:10:19 Times Seen1657 Hash 25812009676b5812f0c52e39b38675c0 296a1a0cc9d15612c9d0041aa2a33874d3738ba0 25de0c657704765d93168cf628769f394cc08ca308cbf5568340e5938e07c52e Loading...

	#35 Eval - 2e7d05187de88bf3abd2556f037b8253	94 kB	2023-03-08	2023-03-11
Pretty Observations First Seen2023-03-08 20:00:29 Last Seen2023-03-11 23:19:34 Times Seen1 Hash 2e7d05187de88bf3abd2556f037b8253 b945d4c7109f7cbc13600a22063a38e7fe5568a8 5acc8ce044272d3094ac582a3a818513c47c96e83a94b1b81932c4d06e25f055 Loading...

	#36 Eval - f02d0fa31a3f9d1b05529263bce10048	17 B	2023-03-08	2024-01-11
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2024-01-11 04:21:56 Times Seen31 Hash f02d0fa31a3f9d1b05529263bce10048 f36fc528dc549315cd0f299849daf78dc3e3ba7d a5f677bb4c40529588b3a15c2a78b7e645b68aee3e7e7b35b39c08d3ce09fa26 Loading...

	#37 Eval - 6d996937d79629eeffa80fccb1d0941a	23 B	2023-03-08	2024-01-11
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2024-01-11 04:21:56 Times Seen30 Hash 6d996937d79629eeffa80fccb1d0941a 3dc3719f5a450fbf467e29543fb241018d8a05bd d195ef0a82ce474b075a924c5fbe792b70c441d017cef3ab3debc2ebed253c9f Loading...

	#38 Eval - 24d12dfc8303d61c9dfe2da94669d3dc	170 B	2023-03-08	2024-04-04
Pretty Observations First Seen2023-03-08 20:00:29 Last Seen2024-04-04 16:10:47 Times Seen45 Hash 24d12dfc8303d61c9dfe2da94669d3dc 60dd7ee16b6bd2b70bd15c0edeca13cd8bf5726d 6e7868be4b3715059d9beca5e0a12b569ff01ecd528df8f97283f44e5950e0a7 Loading...

	#39 Eval - e0d3daeea9718d37f483122d4d8b2b95	77 kB	2023-03-07	2024-04-01
Pretty Observations First Seen2023-03-07 23:21:34 Last Seen2024-04-01 21:28:21 Times Seen52 Hash e0d3daeea9718d37f483122d4d8b2b95 81826fba37a92b7e9d098704efcf8f678c1f5304 9fb9f34eca29ed1491e964ec46992ff7130beb3364a01f00cf0f1628cc4a2cbc Loading...

	#40 Eval - ba897a7ea39aaa70859aeacb8bbcbf98	27 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash ba897a7ea39aaa70859aeacb8bbcbf98 d31d4a7303c27752be885d9cf9499cf5657a40ef e9fb0657c28af091d4237642a0ec9c3ea0544fd942d274b221293cebc2e96650 Loading...

	#41 Eval - 76f984e91dd388f4ea7cd32ffc8224d3	28 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash 76f984e91dd388f4ea7cd32ffc8224d3 f5963513e979bf18d2cf2ab947f2c4bd9985bed0 0ab0d1343f676fe023577e0e9d757f7afa9174422634bad472eae3d175654dc8 Loading...

	#42 Eval - 8c68093d9f8ac6b1f819fa4904eef215	30 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen13 Hash 8c68093d9f8ac6b1f819fa4904eef215 67446e32ee70c43157f721ec4bb992250968c269 733cf7989f900ed1602cf9e611af90c9f2eea7a111b27b63c4e2070fa5f95926 Loading...

	#43 Eval - 3da48aa59b8b0ecbf9b0aef5979d3401	39 B	2023-03-08	2023-05-02
Pretty Observations First Seen2023-03-08 05:59:36 Last Seen2023-05-02 21:55:15 Times Seen9 Hash 3da48aa59b8b0ecbf9b0aef5979d3401 0f8ac4944864e9f705a276104d41a6e126e2f303 58e20e00c2b22113907e4cb496f4d6a883ea3dfb22c483bd2b4752d7f0d1736d Loading...

		Size	First Seen	Last Seen
	#1 Write - 307a647aed7ff64fc52f7e430c9882ee	30 B	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 01:06:27 Last Seen2024-04-18 22:17:37 Times Seen5081 Hash 307a647aed7ff64fc52f7e430c9882ee 061cb2a0b893008a8c66563d96199a58b149141c 807a15fef8a2e854bd4657ca750efc8effd5f91349736064e0ef649819a7a296 Loading...

	#2 Write - d41d8cd98f00b204e9800998ecf8427e	0 B	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-18 22:43:36 Times Seen36948222 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

HTTP Transactions (145)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3459
Expires: Thu, 01 Dec 2022 05:23:55 GMT
Date: Thu, 01 Dec 2022 04:26:16 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 853
Cache-Control: max-age=109156
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:16 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 10:45:32 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8624
Expires: Thu, 01 Dec 2022 06:50:00 GMT
Date: Thu, 01 Dec 2022 04:26:16 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 04:18:07 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 489
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: tNUyIWdgFxw9D1NUsS2SzOngnEQqgY8QOVLlIQbUcvC7YoyhEJPd3rMQnAzEBuQ5hn7gJzkRw+o=
x-amz-request-id: A21SE5YK3KBC2Z6Z
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 03:45:30 GMT
age: 2446
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 04:26:16 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

149.56.134.246/

149.56.134.246

302 Found

0 B

URL HTTP/1.1
149.56.134.246/
IP
149.56.134.246:0
ASN
#16276 OVH SAS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: 149.56.134.246
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Date: Thu, 01 Dec 2022 04:26:16 GMT
Server: Apache/2.4.41 (Ubuntu)
Location: https://ups.com
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 04:08:56 GMT
cache-control: public,max-age=3600
age: 1041
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.comodoca.com/

104.18.32.68

200 OK

2.2 kB

URL HTTP/1.1
ocsp.comodoca.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
2.2 kB (2232 bytes)
Hash
87e5ca89181b426ea9be7389680bbf76
19bd6fb9be208d3d3ae8c15637df44ad73f919f0
9939618dee2f04278bd21cbfdaad32a7c36f43fd4886f49a63756eabf083eea4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 04:26:17 GMT
Content-Type: application/ocsp-response
Content-Length: 2232
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 01:57:53 GMT
Expires: Mon, 05 Dec 2022 01:57:52 GMT
Etag: "19bd6fb9be208d3d3ae8c15637df44ad73f919f0"
Cache-Control: max-age=603302,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77291050bab3b4f9-OSL

ocsp.comodoca.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.comodoca.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
17ffc76cc164a2cef941543ec4dc0550
26f8b0b4948fa9f94b609d2da13981b69570a5bd
2c44c3267b2a604c46f2ec48117a17e81501cd63fcf3055a32028f627aeea374

HTTP Headers

POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 04:26:17 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 05:28:46 GMT
Expires: Wed, 07 Dec 2022 05:28:45 GMT
Etag: "26f8b0b4948fa9f94b609d2da13981b69570a5bd"
Cache-Control: max-age=600822,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 772910511acfb4f9-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 856
Cache-Control: max-age=104090
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:17 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 09:21:07 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

ups.com/

153.2.228.50

301 Moved Permanently

228 B

URL HTTP/1.1
ups.com/
IP
153.2.228.50:0
ASN
#12217 UPS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
228 B (228 bytes)
Hash
4b1e937b2ed365e15da42b9e7f6132a8
c5df90e0a70289fe9e2d053656c1e73ad8a2e735
87aedc807068fbd1fb3b929a7cb8956036d753df3d6658bcf30105e251e18eb3

HTTP Headers

GET / HTTP/1.1
Host: ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 301 Moved Permanently
Date: Thu, 01 Dec 2022 04:26:17 GMT
Server: Apache
Referrer-Policy: same-origin
X-Frame-Options: DENY
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Cache-Control: no-store, no-cache
Pragma: no-cache
Location: https://www.ups.com/
Content-Length: 228
Keep-Alive: timeout=65
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

push.services.mozilla.com/

35.161.148.163

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.148.163:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QZvZScx+Bq1nbt7ZQH3i6g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: d/fNdkyD/9eId7upBdlkdW55bA4=

www.ups.com/

23.38.201.152

302 Found

221 B

URL HTTP/2
www.ups.com/
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
221 B (221 bytes)
Hash
8d651070c183eb6efe0fad89f584f536
68281ad53e3b6b21496fe91a33bb7d92b616e19e
25294720eeb20dadce17a5c79b22c286cc82b504d2a1a99026b491174ca66c1a

HTTP Headers

GET / HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 302 Found
server: Apache
referrer-policy: same-origin
cache-control: no-store, no-cache
pragma: no-cache
location: https://www.ups.com/us/en/global.page
content-length: 221
content-type: text/html; charset=iso-8859-1
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=MISS, edge; dur=116, origin; dur=23
x-akam-sw-version: 0.5.0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
set-cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; Domain=.ups.com; Path=/; Expires=Fri, 01 Dec 2023 04:26:18 GMT; Max-Age=31536000; Secure
ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; Domain=.ups.com; Path=/; Expires=Thu, 01 Dec 2022 06:26:18 GMT; Max-Age=7200; HttpOnly
bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; Domain=.ups.com; Path=/; Expires=Thu, 01 Dec 2022 08:26:18 GMT; Max-Age=14400
X-Firefox-Spdy: h2

www.ups.com/akam-sw.js

23.38.201.152

200 OK

8.5 kB

URL HTTP/2
www.ups.com/akam-sw.js
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (27123), with no line terminators
Size
8.5 kB (8467 bytes)
Hash
c89bd8dd5bbc1253e351e9181b68c662
dc0ec44b970fec3d0dac6fe35abc706f9c859003
61b76da6d4d1903199963ec2836405078debc19a22e28da823dfbd9ff06ab8f7

HTTP Headers

GET /akam-sw.js HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 22 Sep 2021 12:41:17 GMT
etag: "0bd9e9e6c2e9ce340e6e1c7754b228ce5bb931351fb503a6d95b245f121c9540"
server: dbattery/2.53
support-id: V1GT1651234148332000432165-23.195.69.191
stored-attribute-sw-version: 1.3.6
content-type: application/javascript; charset=UTF-8
content-encoding: gzip
content-length: 8467
expires: Thu, 01 Dec 2022 04:31:18 GMT
date: Thu, 01 Dec 2022 04:26:18 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=65
x-akam-sw-version: 0.5.0, 0.5.0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/styles/ups.vendor.161a0d161a0d.css

23.38.201.152

200 OK

13 kB

URL HTTP/2
www.ups.com/assets/resources/webcontent/styles/ups.vendor.161a0d161a0d.css
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (65469)
Size
13 kB (12686 bytes)
Hash
cf4d4f234d9bf88614c72bd901274aa6
86f00aaeef679a18947699fa2f02952fc9e0bbac
b368e9965cae976dc9466c0cfb0ce844f39c9da7fcc30dc0ca2900841822861f

HTTP Headers

GET /assets/resources/webcontent/styles/ups.vendor.161a0d161a0d.css HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
accept-ranges: bytes
content-encoding: br
last-modified: Sat, 05 Nov 2022 11:44:25 GMT
referrer-policy: same-origin
server: Akamai Resource Optimizer
content-length: 12686
expires: Thu, 01 Dec 2022 04:26:18 GMT
pragma: no-cache
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
x-akamai-http2-push: 1
X-Firefox-Spdy: h2

www.ups.com/assets/resources/styles/fonts/Roboto-Regular.woff

23.38.201.152

200 OK

94 kB

URL HTTP/2
www.ups.com/assets/resources/styles/fonts/Roboto-Regular.woff
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 93784, version 2.137\012- data
Size
94 kB (93784 bytes)
Hash
1cfd1aa3b4fe4bba10c132acea9985af
4edccc73318b8d3f6dee84f934063ea52644ed0f
c511a38838f14cd23a3e2a7c7c9b7f2864a2a6b9e548053bb71b432a677966e2

HTTP Headers

GET /assets/resources/styles/fonts/Roboto-Regular.woff HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
last-modified: Fri, 01 Oct 2021 01:45:08 GMT
accept-ranges: bytes
content-length: 93784
content-type: application/font-woff
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/styles/ups.styles.546e727abfb6.css

23.38.201.152

200 OK

31 kB

URL HTTP/2
www.ups.com/assets/resources/webcontent/styles/ups.styles.546e727abfb6.css
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (65431)
Size
31 kB (31350 bytes)
Hash
f22e52252c552810df0a5324786d90a4
127d52aa9bcbf329738606628fbde17f31a870fc
270ae8e3ab0d3f9641c8a51a5b8c16cfba2c2c0868c84887f91cbe0b347b2294

HTTP Headers

GET /assets/resources/webcontent/styles/ups.styles.546e727abfb6.css HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/css
accept-ranges: bytes
content-encoding: br
last-modified: Fri, 04 Nov 2022 04:27:35 GMT
referrer-policy: same-origin
server: Akamai Resource Optimizer
content-length: 31350
expires: Thu, 01 Dec 2022 04:26:18 GMT
pragma: no-cache
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
x-akamai-http2-push: 1
X-Firefox-Spdy: h2

www.ups.com/assets/resources/styles/fonts/Roboto-Medium.woff

23.38.201.152

200 OK

94 kB

URL HTTP/2
www.ups.com/assets/resources/styles/fonts/Roboto-Medium.woff
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 94364, version 2.137\012- data
Size
94 kB (94364 bytes)
Hash
7350337b673e86f2d62ee0eb5761e1e2
eb11f6c75c34069217cc1692d00e8ac3945c8a3d
4f543ad26c42709ef00a1921f7dd1aa27a1930a354ecb353196665e43dac3706

HTTP Headers

GET /assets/resources/styles/fonts/Roboto-Medium.woff HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
last-modified: Fri, 01 Oct 2021 01:45:08 GMT
accept-ranges: bytes
content-length: 94364
content-type: application/font-woff
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Light.ttf

23.38.201.152

200 OK

167 kB

URL HTTP/2
www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Light.ttf
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
TrueType Font data, 18 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto LightRegularVersion 2.137; 2017Roboto-Ligh\012- data
Size
167 kB (167000 bytes)
Hash
6090d256d88dcd7f0244eaa4a3eafbba
51dbae4543aaa10096e344e48fcffe468bd314a9
2835b358aaaa329f9a4bb47936c96687202ca24774a2e1c78251a596f2b01fa5

HTTP Headers

GET /assets/resources/webcontent/styles/fonts/Roboto-Light.ttf HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
last-modified: Thu, 19 Aug 2021 19:26:37 GMT
accept-ranges: bytes
content-length: 167000
content-type: application/font-sfnt
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Regular.woff

23.38.201.152

200 OK

26 kB

URL HTTP/2
www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Regular.woff
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 26152, version 1.0\012- data
Size
26 kB (26152 bytes)
Hash
c1de44acf1411a188b1efb3e415e66b8
2a9601e8dd8dd62422139ab415101d13542c31bf
444b94c2f00b433b4297bc32a247be7d30db791abb13d9d77bbec032c141eb46

HTTP Headers

GET /assets/resources/webcontent/styles/fonts/Roboto-Regular.woff HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
last-modified: Thu, 19 Aug 2021 19:26:39 GMT
accept-ranges: bytes
content-length: 26152
content-type: application/font-woff
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Regular.woff2

23.38.201.152

200 OK

19 kB

URL HTTP/2
www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Regular.woff2
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 19392, version 1.0\012- data
Size
19 kB (19392 bytes)
Hash
0129881c0437c48433591878596ba145
c7311ad3ebaccbb9b33e6703df09c265b7d10ff5
c54a730394f47a040134beab422547426e7c7cd516a4d8865d2abc4871f6cbca

HTTP Headers

GET /assets/resources/webcontent/styles/fonts/Roboto-Regular.woff2 HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
last-modified: Thu, 19 Aug 2021 19:26:41 GMT
accept-ranges: bytes
content-length: 19392
content-type: font/woff2
expires: Thu, 01 Dec 2022 04:26:18 GMT
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Medium.woff2

23.38.201.152

200 OK

20 kB

URL HTTP/2
www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Medium.woff2
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 19488, version 1.0\012- data
Size
20 kB (19488 bytes)
Hash
0144478d6b5350e77084c9b5673719be
a7f0512c295c2dd279914b6f8a0de3085b84a91c
a9be050cd531fa9a5f06f2e209829ea95edae28a8425908462ef55fd82979a89

HTTP Headers

GET /assets/resources/webcontent/styles/fonts/Roboto-Medium.woff2 HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
last-modified: Thu, 19 Aug 2021 19:26:37 GMT
accept-ranges: bytes
content-length: 19488
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Bold.woff

23.38.201.152

200 OK

27 kB

URL HTTP/2
www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Bold.woff
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 26564, version 1.0\012- data
Size
27 kB (26564 bytes)
Hash
849fd0ec4277f2e8ee9ebe2753a30edd
ebcff6b5216b7cfdacc058ab35023c6f9bd6f286
5fce1e38ce56a7e63a78d5811e54679dba8cd15d6455cf312f4d2bd886e42d36

HTTP Headers

GET /assets/resources/webcontent/styles/fonts/Roboto-Bold.woff HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
last-modified: Thu, 19 Aug 2021 19:26:34 GMT
accept-ranges: bytes
content-length: 26564
content-type: application/font-woff
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Bold.woff2

23.38.201.152

200 OK

20 kB

URL HTTP/2
www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Bold.woff2
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format (Version 2), TrueType, length 19660, version 1.0\012- data
Size
20 kB (19660 bytes)
Hash
54ecb5ea0ec7edfcec9c5b2a15508cad
3b6c8aaceb8c1751b1aeda7c63c690fc36cdd945
b54b79ee86c7b666f57df9ff19d0f3483ae330b18d0aebc3dcc053d0ee8e0e02

HTTP Headers

GET /assets/resources/webcontent/styles/fonts/Roboto-Bold.woff2 HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
last-modified: Thu, 19 Aug 2021 19:26:35 GMT
accept-ranges: bytes
content-length: 19660
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Regular.ttf

23.38.201.152

200 OK

171 kB

URL HTTP/2
www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Regular.ttf
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
TrueType Font data, 18 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-RegularRob\012- data
Size
171 kB (171272 bytes)
Hash
11eabca2251325cfc5589c9c6fb57b46
096c9245b6a192d1403a82848e104a65f578a8ec
017c0be9aaa6d0359737e1fa762ad304c0e0107927faff5a6c1f415c7f5244ed

HTTP Headers

GET /assets/resources/webcontent/styles/fonts/Roboto-Regular.ttf HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
last-modified: Thu, 19 Aug 2021 19:26:41 GMT
accept-ranges: bytes
content-length: 171272
content-type: application/font-sfnt
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/images/ups-logo.svg

23.38.201.152

200 OK

997 B

URL HTTP/2
www.ups.com/assets/resources/webcontent/images/ups-logo.svg
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1964), with no line terminators
Size
997 B (997 bytes)
Hash
0967c6b6ea4437e373d7eccccdcbeab5
6ab242895fa2ccf8e2d332e8250ce285d868060c
9396f0319c37c5c1fa6ba6aafbc7d76eff385f9f551a1a83767b948c3f0efc4b

HTTP Headers

GET /assets/resources/webcontent/images/ups-logo.svg HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/svg+xml
accept-ranges: bytes
content-encoding: gzip
last-modified: Sun, 02 Oct 2022 00:07:12 GMT
referrer-policy: same-origin
server: Akamai Resource Optimizer
content-length: 997
expires: Thu, 01 Dec 2022 04:26:18 GMT
pragma: no-cache
date: Thu, 01 Dec 2022 04:26:18 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/akam/13/429ccb6b

23.38.201.152

200 OK

8.7 kB

URL HTTP/2
www.ups.com/akam/13/429ccb6b
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (14360)
Size
8.7 kB (8718 bytes)
Hash
c58d2430e4771328a2a0aef6e960e7ea
cccae80bae5adba4c1efa1c77e8cfd95a4a3145e
c504ac3adcba6ae64b963e6ce4d5378cfbf696d0ea7535e9fd20c7090e45b5d7

HTTP Headers

GET /akam/13/429ccb6b HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Feb 2022 15:08:59 GMT
etag: "d86abe733d7a8cd677d903a94eb9d279a652671fda926090907e8b24839d5061"
content-type: application/javascript
content-encoding: gzip
content-length: 8718
expires: Thu, 01 Dec 2022 04:26:18 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 01 Dec 2022 04:26:18 GMT
vary: Accept-Encoding
server-timing: cdn-cache; desc=HIT, edge; dur=7
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
set-cookie: ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF8JuqLCEAQAAZ3TvyxHnhstFZZE4reFhRibcgx4sMd/mpalGGtFi7yXzUpcMZ77gmU7CbxTjSc3otgtmM6ibisC6VXH6E4MDwEOCNnVPkV0o2GtqTVJwQxRMzBIUJHu1KURVoWr5/wBMmp4fB0IJ2qZqgvsKk5idOTuPq3I2kh3Q5ZNBL5Q4f3AskBkqZLCCCFXQiO77B/rSx467+x3SGGdGNWYeaYtBEWLv5H3ur7YxYhPNLcGhKqsCnqAy3IZ8lWtkxHdOoib+bf24J0ZJonDkM7Sq5WaS1CP7ZV6+y67C2DNOfbNJ7GflfKVI1i/oevNo/5Ju1hhW06qKlggn72mRFUa/WZYJJIGrVNNB1E9Wvm219G6w6x6WtfaeYrPggKx96GZaj56hadOk74XLRR/yjDu5v9oKYDVx3oN6D3qhGjlPLYkXHHfb3RFSne4f8vmt5agOpb0i0wWRwvAYPqLzmn4N; Domain=.ups.com; Path=/; Expires=Thu, 01 Dec 2022 06:26:18 GMT; Max-Age=7200; HttpOnly
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Medium.woff

23.38.201.152

200 OK

94 kB

URL HTTP/2
www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Medium.woff
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
Web Open Font Format, TrueType, length 94364, version 2.137\012- data
Size
94 kB (94364 bytes)
Hash
7350337b673e86f2d62ee0eb5761e1e2
eb11f6c75c34069217cc1692d00e8ac3945c8a3d
4f543ad26c42709ef00a1921f7dd1aa27a1930a354ecb353196665e43dac3706

HTTP Headers

GET /assets/resources/webcontent/styles/fonts/Roboto-Medium.woff HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
last-modified: Tue, 21 Jun 2022 17:17:41 GMT
accept-ranges: bytes
content-length: 94364
content-type: application/font-woff
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Medium.ttf

23.38.201.152

200 OK

172 kB

URL HTTP/2
www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Medium.ttf
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
TrueType Font data, 18 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto MediumRegularVersion 2.137; 2017Roboto-Med\012- data
Size
172 kB (171656 bytes)
Hash
58aef543c97bbaf6a9896e8484456d98
f6783010d5def128c4a1539333324f75701d9bab
e35252aa3dc2e84e9d7211586fee9aede2a426d3230c8b131881d985f16ff836

HTTP Headers

GET /assets/resources/webcontent/styles/fonts/Roboto-Medium.ttf HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
last-modified: Thu, 19 Aug 2021 19:26:41 GMT
accept-ranges: bytes
content-length: 171656
content-type: font/ttf
expires: Thu, 01 Dec 2022 04:26:18 GMT
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Bold.ttf

23.38.201.152

200 OK

170 kB

URL HTTP/2
www.ups.com/assets/resources/webcontent/styles/fonts/Roboto-Bold.ttf
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
TrueType Font data, 18 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoBoldRoboto BoldVersion 2.137; 2017Roboto-Bo\012- data
Size
170 kB (170348 bytes)
Hash
e07df86cef2e721115583d61d1fb68a6
3dd713113ff2d79b94d2df343e2e28fa8e7279cf
c9cc991deb5d27f267830a19f2301eb164d9e61ec08669c1a1a291c5620ff40a

HTTP Headers

GET /assets/resources/webcontent/styles/fonts/Roboto-Bold.ttf HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
last-modified: Thu, 19 Aug 2021 19:26:36 GMT
accept-ranges: bytes
content-length: 170348
content-type: application/font-sfnt
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/scripts/vendor/ups.vendor.cf1e21.js

23.38.201.152

200 OK

46 kB

URL HTTP/2
www.ups.com/assets/resources/webcontent/scripts/vendor/ups.vendor.cf1e21.js
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
Unicode text, UTF-8 text, with very long lines (65470)
Size
46 kB (46029 bytes)
Hash
c4cb96a9b909c7f45874fd4e1bcf3182
d3e464fc70d09f0687fafef4e71c83205a910f30
db3dcc1a60465ed201452ab27e7c0fb503a1a96dcb1c03b9d27e04e6e3045d57

HTTP Headers

GET /assets/resources/webcontent/scripts/vendor/ups.vendor.cf1e21.js HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF8JuqLCEAQAAZ3TvyxHnhstFZZE4reFhRibcgx4sMd/mpalGGtFi7yXzUpcMZ77gmU7CbxTjSc3otgtmM6ibisC6VXH6E4MDwEOCNnVPkV0o2GtqTVJwQxRMzBIUJHu1KURVoWr5/wBMmp4fB0IJ2qZqgvsKk5idOTuPq3I2kh3Q5ZNBL5Q4f3AskBkqZLCCCFXQiO77B/rSx467+x3SGGdGNWYeaYtBEWLv5H3ur7YxYhPNLcGhKqsCnqAy3IZ8lWtkxHdOoib+bf24J0ZJonDkM7Sq5WaS1CP7ZV6+y67C2DNOfbNJ7GflfKVI1i/oevNo/5Ju1hhW06qKlggn72mRFUa/WZYJJIGrVNNB1E9Wvm219G6w6x6WtfaeYrPggKx96GZaj56hadOk74XLRR/yjDu5v9oKYDVx3oN6D3qhGjlPLYkXHHfb3RFSne4f8vmt5agOpb0i0wWRwvAYPqLzmn4N; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870638
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
last-modified: Fri, 14 Oct 2022 16:03:14 GMT
referrer-policy: same-origin
server: Akamai Resource Optimizer
content-length: 46029
expires: Thu, 01 Dec 2022 04:26:18 GMT
pragma: no-cache
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
x-akamai-http2-push: 1
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/scripts/ups.scripts.171740.js

23.38.201.152

200 OK

503 B

URL HTTP/2
www.ups.com/assets/resources/webcontent/scripts/ups.scripts.171740.js
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

GET /assets/resources/webcontent/scripts/ups.scripts.171740.js HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF8JuqLCEAQAAZ3TvyxHnhstFZZE4reFhRibcgx4sMd/mpalGGtFi7yXzUpcMZ77gmU7CbxTjSc3otgtmM6ibisC6VXH6E4MDwEOCNnVPkV0o2GtqTVJwQxRMzBIUJHu1KURVoWr5/wBMmp4fB0IJ2qZqgvsKk5idOTuPq3I2kh3Q5ZNBL5Q4f3AskBkqZLCCCFXQiO77B/rSx467+x3SGGdGNWYeaYtBEWLv5H3ur7YxYhPNLcGhKqsCnqAy3IZ8lWtkxHdOoib+bf24J0ZJonDkM7Sq5WaS1CP7ZV6+y67C2DNOfbNJ7GflfKVI1i/oevNo/5Ju1hhW06qKlggn72mRFUa/WZYJJIGrVNNB1E9Wvm219G6w6x6WtfaeYrPggKx96GZaj56hadOk74XLRR/yjDu5v9oKYDVx3oN6D3qhGjlPLYkXHHfb3RFSne4f8vmt5agOpb0i0wWRwvAYPqLzmn4N; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870638
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
accept-ranges: bytes
content-encoding: br
last-modified: Mon, 31 Oct 2022 04:17:11 GMT
referrer-policy: same-origin
server: Akamai Resource Optimizer
content-length: 19010
expires: Thu, 01 Dec 2022 04:26:18 GMT
pragma: no-cache
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
x-akamai-http2-push: 1
X-Firefox-Spdy: h2

www.ups.com/assets/resources/webcontent/images/ups-logo.svg

23.38.201.152

304 Not Modified

0 B

URL HTTP/2
www.ups.com/assets/resources/webcontent/images/ups-logo.svg
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/resources/webcontent/images/ups-logo.svg HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF8JuqLCEAQAAZ3TvyxHnhstFZZE4reFhRibcgx4sMd/mpalGGtFi7yXzUpcMZ77gmU7CbxTjSc3otgtmM6ibisC6VXH6E4MDwEOCNnVPkV0o2GtqTVJwQxRMzBIUJHu1KURVoWr5/wBMmp4fB0IJ2qZqgvsKk5idOTuPq3I2kh3Q5ZNBL5Q4f3AskBkqZLCCCFXQiO77B/rSx467+x3SGGdGNWYeaYtBEWLv5H3ur7YxYhPNLcGhKqsCnqAy3IZ8lWtkxHdOoib+bf24J0ZJonDkM7Sq5WaS1CP7ZV6+y67C2DNOfbNJ7GflfKVI1i/oevNo/5Ju1hhW06qKlggn72mRFUa/WZYJJIGrVNNB1E9Wvm219G6w6x6WtfaeYrPggKx96GZaj56hadOk74XLRR/yjDu5v9oKYDVx3oN6D3qhGjlPLYkXHHfb3RFSne4f8vmt5agOpb0i0wWRwvAYPqLzmn4N; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870638
If-Modified-Since: Sun, 02 Oct 2022 00:07:12 GMT
TE: trailers

HTTP/2 304 Not Modified
content-type: image/svg+xml
last-modified: Sun, 02 Oct 2022 00:07:12 GMT
expires: Thu, 01 Dec 2022 04:26:18 GMT
pragma: no-cache
date: Thu, 01 Dec 2022 04:26:18 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/bgm7/2XTR/oK/Jt_2/419A/a7DaSbDauSiY/d2pDGSk/fV9/sKApIfWkB

23.38.201.152

200 OK

503 B

URL HTTP/2
www.ups.com/bgm7/2XTR/oK/Jt_2/419A/a7DaSbDauSiY/d2pDGSk/fV9/sKApIfWkB
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

GET /bgm7/2XTR/oK/Jt_2/419A/a7DaSbDauSiY/d2pDGSk/fV9/sKApIfWkB HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF8JuqLCEAQAAZ3TvyxHnhstFZZE4reFhRibcgx4sMd/mpalGGtFi7yXzUpcMZ77gmU7CbxTjSc3otgtmM6ibisC6VXH6E4MDwEOCNnVPkV0o2GtqTVJwQxRMzBIUJHu1KURVoWr5/wBMmp4fB0IJ2qZqgvsKk5idOTuPq3I2kh3Q5ZNBL5Q4f3AskBkqZLCCCFXQiO77B/rSx467+x3SGGdGNWYeaYtBEWLv5H3ur7YxYhPNLcGhKqsCnqAy3IZ8lWtkxHdOoib+bf24J0ZJonDkM7Sq5WaS1CP7ZV6+y67C2DNOfbNJ7GflfKVI1i/oevNo/5Ju1hhW06qKlggn72mRFUa/WZYJJIGrVNNB1E9Wvm219G6w6x6WtfaeYrPggKx96GZaj56hadOk74XLRR/yjDu5v9oKYDVx3oN6D3qhGjlPLYkXHHfb3RFSne4f8vmt5agOpb0i0wWRwvAYPqLzmn4N; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870638
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 15:58:54 GMT
etag: "37a4b009e7ae076e7f3325379f971e6bf5df836d1f31841d88898cd782d66a2a"
content-type: application/javascript
content-encoding: gzip
date: Thu, 01 Dec 2022 04:26:18 GMT
content-length: 74731
vary: Accept-Encoding
cache-control: max-age=21600
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
set-cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF8VuqLCEAQAACHXvywiPr+LL38Ls9XUD9XMZyYD4yiFJuoY9vSsTtdNSi5ncw+wCj7Ds2kM+iMmpIcutRhcqIPXGhXZ6vILx2iQeTarBdU9DMjtjZOoNIiU+jr5CI+QP56BOmNNvMGVcg+hl2A/JjEUVcqse1VYkmBL3nosJxg0qcYobFb7TsSXivTC93svqvKgu7y8ooDAffuqTeR2iw6/7yXY7vJJjmWfxkVIM5YGPigrxlpfbBMrm652+GY02CqzQSwBtQB3iTT7lG3r+lWrZHkxijVj7URheUqxQeJoqADA4L0nNDEbtrwyq82Vrk7ig5h5tmJQYOsBBHLOsUfjxgG7LZ2SS8z9fLue9FqBxxI901d6zjBEaQ/FOh9sms44=~-1~-1~1669872345; Domain=.ups.com; Path=/; Expires=Fri, 01 Dec 2023 04:26:18 GMT; Max-Age=31536000; Secure
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9613 bytes)
Hash
b92721cbe24623f1713a5248d6a7c1b2
3628390c62642dcc375b28f58c9b48180c4abd73
37d0451c03bc7cf0253aba6d3204cbf38502692a0fbc751a3ead01b07e9a65d6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc501a87-1b50-43f3-8031-2c93f724dc91.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9613
x-amzn-requestid: a46cc458-2e28-4ca7-b223-ba66256caef1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cTPfmEmKoAMFZvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63845f96-7ecee5764c4a40e50e5b1f98;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 07:13:26 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6p5kV3OCTlaiLWEa9wyeRJOYoxPNZwLhXGIbEnymaufjKL246zfrhw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 06:20:48 GMT
age: 79530
etag: "3628390c62642dcc375b28f58c9b48180c4abd73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5806
Expires: Thu, 01 Dec 2022 06:03:04 GMT
Date: Thu, 01 Dec 2022 04:26:18 GMT
Connection: keep-alive

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10985 bytes)
Hash
f07f254d44ff2fb86ee22cee39ef3eb0
0660a548a491d4a58ca2246f094f0553437c3f61
859b2416d638b1dc91ff563800517124b38d45b4c5db99e21539c1700829dbe4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10985
x-amzn-requestid: ef9e5eb9-b7b3-41e9-9837-a5979ab35d94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91OFzsoAMFcew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-53b152c0027d26e52383e27e;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: F_ZBWwAOPbEjvMD1ChrgN9QYUyyFYdtRT6CcX6gviowmeinPRgVtnA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 04:19:21 GMT
age: 417
etag: "0660a548a491d4a58ca2246f094f0553437c3f61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (16038 bytes)
Hash
ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80EHboAMFtmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
age: 23658
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4409 bytes)
Hash
b8802d5080eb35e4052ef31cf7658650
1e78566f2e69268c5f753fb49112ab07aae3eccf
9c96906ee1dea353198c9069fa7e42b100e4fa766e5be8e4d8db036033961086

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4409
x-amzn-requestid: cb422842-e955-4749-8b2a-3c028a09c20f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz7XEE2IAMFY3A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd15-3c4d1a6d4d542e81179ea8ba;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: zYLCQ4DUQtMklG-T-ATot22PDIUMjnN1wpVkoHBh4Oa3TAyNzTv86g==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:45 GMT
age: 23793
etag: "1e78566f2e69268c5f753fb49112ab07aae3eccf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10437 bytes)
Hash
291127b670135b42b6e9687aa2a13237
99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1
49b082a738bcd15a0bb4e9f96a180797ffcfa368977ac1927df882a0343664d3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10437
x-amzn-requestid: 2a8183c4-47ec-42bb-8e67-3e742dc3750c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0YpEeooAMFfvg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdd0-2014fd4d49dcd4087bf1db4d;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Q9y5-OF59ODaZRd9YFFdM2rIH0bYYyIT40rCwr8cBwBQd0GOqtNobg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:08:51 GMT
age: 22647
etag: "99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb560dfdf-cffc-469d-bc98-e6eed575f5ab.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6509 bytes)
Hash
c2f2f7c9706a549fd41ba29135ce83e1
838faca0991563ccc5756f65d5bfd6c3d4d88372
f35f6a43751ff81f220789a2aa352c6abbd2f52b3beabff738cd11761b1923da

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb560dfdf-cffc-469d-bc98-e6eed575f5ab.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6509
x-amzn-requestid: a86cb68e-5c74-4945-acbc-79d10f7c6c7a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzMPFOEIAMFYnA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbe7-006677c06331c3e014ab143e;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:23 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tlB6fhdDRjY_6gEC8QWNa8BLapBlyNLrx2I2fyE0M36oIS4cpEXDQw==
via: 1.1 7514e5e25722778fd4b1744d4ecc67e0.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:58 GMT
age: 23780
etag: "838faca0991563ccc5756f65d5bfd6c3d4d88372"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

s.go-mpulse.net/boomerang/TADEN-6MDCS-UHH5M-YHPKQ-2GBH3

23.38.200.138

200 OK

50 kB

URL HTTP/2
s.go-mpulse.net/boomerang/TADEN-6MDCS-UHH5M-YHPKQ-2GBH3
IP
23.38.200.138:0
ASN
#16625 AKAMAI-AS

File type
C source, ASCII text, with very long lines (65103)
Size
50 kB (50393 bytes)
Hash
8991c3ec80ec8fbc41382a55679e3911
8cc8cee91d671038acd9e3ae611517d6801b0909
f55bacd4a20fef96f5c736a912d1947be85c268df18003395e511c1e860e8800

HTTP Headers

GET /boomerang/TADEN-6MDCS-UHH5M-YHPKQ-2GBH3 HTTP/1.1
Host: s.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.ups.com/
Connection: keep-alive

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
cache-control: max-age=604800
content-encoding: br
last-modified: Thu, 03 Nov 2022 23:31:01 GMT
timing-allow-origin: *
vary: Accept-Encoding
x-n: S
content-length: 50393
date: Thu, 01 Dec 2022 04:26:18 GMT
X-Firefox-Spdy: h2

akamai.tiqcdn.com/location/location.js

23.38.200.249

200 OK

18 B

URL HTTP/1.1
akamai.tiqcdn.com/location/location.js
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text
Size
18 B (18 bytes)
Hash
6c98be5fda77913799e8ef24b86a7abd
2c9a2a706436c6c8d7c0b7eeaf9c02ce47eeab4d
d753f8ee126736431a1cd8170dbfcf94f553eeb1d24f2baa7c66474a80d0e559

HTTP Headers

GET /location/location.js HTTP/1.1
Host: akamai.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "6c98be5fda77913799e8ef24b86a7abd:1525129759"
Last-Modified: Mon, 30 Apr 2018 23:09:19 GMT
Server: AkamaiNetStorage
Content-Length: 18
Cache-Control: max-age=1296000
Expires: Fri, 16 Dec 2022 04:26:18 GMT
Date: Thu, 01 Dec 2022 04:26:18 GMT
Connection: keep-alive
Access-Control-Expose-Headers: X-EdgeScape-Location
Access-Control-Allow-Origin: *
X-EdgeScape-Location: country_code=NO,region_code=0,city=OSLO,areacode=0,zip=0,bandwidth=5000

www.ups.com/bgm7/2XTR/oK/Jt_2/419A/a7DaSbDauSiY/d2pDGSk/fV9/sKApIfWkB

23.38.201.152

201 Created

18 B

URL HTTP/2
www.ups.com/bgm7/2XTR/oK/Jt_2/419A/a7DaSbDauSiY/d2pDGSk/fV9/sKApIfWkB
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
JSON data\012- , ASCII text
Size
18 B (18 bytes)
Hash
78b25f4f8b72d4f5826b1d665a46de1d
2703ab1d8a2b3ff3c63a72c2ef50ff1b49ca45c8
bef9393fcdfc7a7299c058ba2a69253c32e0964dd3e97834e17a8cdb5dce7cf6

HTTP Headers

POST /bgm7/2XTR/oK/Jt_2/419A/a7DaSbDauSiY/d2pDGSk/fV9/sKApIfWkB HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2617
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF8VuqLCEAQAACHXvywiPr+LL38Ls9XUD9XMZyYD4yiFJuoY9vSsTtdNSi5ncw+wCj7Ds2kM+iMmpIcutRhcqIPXGhXZ6vILx2iQeTarBdU9DMjtjZOoNIiU+jr5CI+QP56BOmNNvMGVcg+hl2A/JjEUVcqse1VYkmBL3nosJxg0qcYobFb7TsSXivTC93svqvKgu7y8ooDAffuqTeR2iw6/7yXY7vJJjmWfxkVIM5YGPigrxlpfbBMrm652+GY02CqzQSwBtQB3iTT7lG3r+lWrZHkxijVj7URheUqxQeJoqADA4L0nNDEbtrwyq82Vrk7ig5h5tmJQYOsBBHLOsUfjxgG7LZ2SS8z9fLue9FqBxxI901d6zjBEaQ/FOh9sms44=~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF8JuqLCEAQAAZ3TvyxHnhstFZZE4reFhRibcgx4sMd/mpalGGtFi7yXzUpcMZ77gmU7CbxTjSc3otgtmM6ibisC6VXH6E4MDwEOCNnVPkV0o2GtqTVJwQxRMzBIUJHu1KURVoWr5/wBMmp4fB0IJ2qZqgvsKk5idOTuPq3I2kh3Q5ZNBL5Q4f3AskBkqZLCCCFXQiO77B/rSx467+x3SGGdGNWYeaYtBEWLv5H3ur7YxYhPNLcGhKqsCnqAy3IZ8lWtkxHdOoib+bf24J0ZJonDkM7Sq5WaS1CP7ZV6+y67C2DNOfbNJ7GflfKVI1i/oevNo/5Ju1hhW06qKlggn72mRFUa/WZYJJIGrVNNB1E9Wvm219G6w6x6WtfaeYrPggKx96GZaj56hadOk74XLRR/yjDu5v9oKYDVx3oN6D3qhGjlPLYkXHHfb3RFSne4f8vmt5agOpb0i0wWRwvAYPqLzmn4N; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870638; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session
TE: trailers

HTTP/2 201 Created
content-length: 18
x_req_id: 70deb792-253f-4a9d-9eff-e48e68b555b1
date: Thu, 01 Dec 2022 04:26:19 GMT
content-type: application/json
vary: Origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.ups.com
access-control-allow-headers: Content-Type
server-timing: edge; dur=3, origin; dur=177, cdn-cache; desc=MISS
x-akam-sw-version: 0.5.0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
set-cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; Domain=.ups.com; Path=/; Expires=Fri, 01 Dec 2023 04:26:19 GMT; Max-Age=31536000; Secure
X-Firefox-Spdy: h2

c.go-mpulse.net/api/config.json?key=TADEN-6MDCS-UHH5M-YHPKQ-2GBH3&d=www.ups.com&t=5566229&v=1.720.0&if=&sl=0&si=e23bf5aa-024b-45ef-b2a0-dc5c7ad137d4-rm72zr&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=265833

23.38.200.138

200 OK

1.8 kB

URL HTTP/1.1
c.go-mpulse.net/api/config.json?key=TADEN-6MDCS-UHH5M-YHPKQ-2GBH3&d=www.ups.com&t=5566229&v=1.720.0&if=&sl=0&si=e23bf5aa-024b-45ef-b2a0-dc5c7ad137d4-rm72zr&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=265833
IP
23.38.200.138:0
ASN
#16625 AKAMAI-AS

File type
JSON data\012- , ASCII text, with very long lines (7350), with no line terminators
Size
1.8 kB (1760 bytes)
Hash
6170cec962e7f74cf680865ca69c6625
397110d6a20c421b87a32e479c16e881bff38039
05050bc3306187812567e5b205a42916ce3c9f789a0c5b5d7cad11a4d0394c45

HTTP Headers

GET /api/config.json?key=TADEN-6MDCS-UHH5M-YHPKQ-2GBH3&d=www.ups.com&t=5566229&v=1.720.0&if=&sl=0&si=e23bf5aa-024b-45ef-b2a0-dc5c7ad137d4-rm72zr&plugins=AK,ConfigOverride,Continuity,PageParams,IFrameDelay,AutoXHR,SPA,History,Angular,Backbone,Ember,RT,CrossDomain,BW,PaintTiming,NavigationTiming,ResourceTiming,Memory,CACHE_RELOAD,Errors,TPAnalytics,UserTiming,Akamai,Early,EventTiming,LOGN&acao=&ak.ai=265833 HTTP/1.1
Host: c.go-mpulse.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.ups.com/
Connection: keep-alive

HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: private, max-age=300, stale-while-revalidate=60, stale-if-error=120
Timing-Allow-Origin: *
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 01 Dec 2022 04:26:19 GMT
Content-Length: 1760
Connection: keep-alive
Content-Type: application/json

www.ups.com/akam/13/pixel_429ccb6b

23.38.201.152

200 OK

0 B

URL HTTP/2
www.ups.com/akam/13/pixel_429ccb6b
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /akam/13/pixel_429ccb6b HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 2717
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF8JuqLCEAQAAZ3TvyxHnhstFZZE4reFhRibcgx4sMd/mpalGGtFi7yXzUpcMZ77gmU7CbxTjSc3otgtmM6ibisC6VXH6E4MDwEOCNnVPkV0o2GtqTVJwQxRMzBIUJHu1KURVoWr5/wBMmp4fB0IJ2qZqgvsKk5idOTuPq3I2kh3Q5ZNBL5Q4f3AskBkqZLCCCFXQiO77B/rSx467+x3SGGdGNWYeaYtBEWLv5H3ur7YxYhPNLcGhKqsCnqAy3IZ8lWtkxHdOoib+bf24J0ZJonDkM7Sq5WaS1CP7ZV6+y67C2DNOfbNJ7GflfKVI1i/oevNo/5Ju1hhW06qKlggn72mRFUa/WZYJJIGrVNNB1E9Wvm219G6w6x6WtfaeYrPggKx96GZaj56hadOk74XLRR/yjDu5v9oKYDVx3oN6D3qhGjlPLYkXHHfb3RFSne4f8vmt5agOpb0i0wWRwvAYPqLzmn4N; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870638; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session; RT="z=1&dm=ups.com&si=f05f933a-ce8c-48cb-a023-24a3cfd722f9&ss=lb4kr4ys&sl=0&tt=0&bcn=%2F%2F0217991d.akstat.io%2F"
TE: trailers

HTTP/2 200 OK
content-type: text/html
content-length: 0
date: Thu, 01 Dec 2022 04:26:19 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=3
x-akam-sw-version: 0.5.0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
set-cookie: ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~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; Domain=.ups.com; Path=/; Expires=Thu, 01 Dec 2022 06:26:18 GMT; Max-Age=7199; HttpOnly
X-Firefox-Spdy: h2

www.ups.com/akam-sw.js

23.38.201.152

304 Not Modified

0 B

URL HTTP/2
www.ups.com/akam-sw.js
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /akam-sw.js HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~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; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870638; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session; RT="z=1&dm=ups.com&si=f05f933a-ce8c-48cb-a023-24a3cfd722f9&ss=lb4kr4ys&sl=0&tt=0&bcn=%2F%2F0217991d.akstat.io%2F"
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Wed, 22 Sep 2021 12:41:17 GMT
If-None-Match: "0bd9e9e6c2e9ce340e6e1c7754b228ce5bb931351fb503a6d95b245f121c9540"
Cache-Control: max-age=0
TE: trailers

HTTP/2 304 Not Modified
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 22 Sep 2021 12:41:17 GMT
etag: "0bd9e9e6c2e9ce340e6e1c7754b228ce5bb931351fb503a6d95b245f121c9540"
expires: Thu, 01 Dec 2022 04:31:19 GMT
date: Thu, 01 Dec 2022 04:26:19 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-akam-sw-version: 0.5.0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/favicon.ico

23.38.201.152

200 OK

2.2 kB

URL HTTP/2
www.ups.com/favicon.ico
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
MS Windows icon resource - 1 icon, 32x32, 8 bits/pixel\012- data
Size
2.2 kB (2238 bytes)
Hash
afd13e52f285793f5eaa266c12a19abe
4b71098176443981be65286ec864b12ebc233f81
9ca2236bb4ec1714e173cecb6bcc95c82e12df204c7d4c87fe4b9f01135efce8

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.ups.com/us/en/global.page
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~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; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870638; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session; RT="z=1&dm=ups.com&si=f05f933a-ce8c-48cb-a023-24a3cfd722f9&ss=lb4kr4ys&sl=0&tt=0&bcn=%2F%2F0217991d.akstat.io%2F"
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
last-modified: Tue, 07 Jun 2011 13:07:05 GMT
accept-ranges: bytes
content-length: 2238
content-type: image/vnd.microsoft.icon
expires: Thu, 01 Dec 2022 04:26:20 GMT
date: Thu, 01 Dec 2022 04:26:20 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
f63c071f661813d5657ca867b0f91b97
11987be75d28b797d903d64ffc4f66c48d6a8547
5c074f044e8cf10dd486fe253534842e77b316ff232574d9cc3db761f9e5ce33

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 870
Cache-Control: max-age=93305
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:20 GMT
Etag: "6386f2ff-1d7"
Expires: Fri, 02 Dec 2022 06:21:25 GMT
Last-Modified: Wed, 30 Nov 2022 06:06:55 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

dpm.demdex.net/id?d_visid_ver=5.3.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=036784BD57A8BB277F000101%40AdobeOrg&d_nsid=0&ts=1669868777280

3.248.121.63

200 OK

1.3 kB

URL HTTP/1.1
dpm.demdex.net/id?d_visid_ver=5.3.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=036784BD57A8BB277F000101%40AdobeOrg&d_nsid=0&ts=1669868777280
IP
3.248.121.63:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (3611), with no line terminators
Size
1.3 kB (1276 bytes)
Hash
c6992c7c41e112974e9e0e4d0259f6df
b32df207d1ded55fe68b9efa53f3287da89674e9
c87076ae7bd1bfa1e606122edb74457e6dbc4ff201a244474db8eafd9a440dac

HTTP Headers

GET /id?d_visid_ver=5.3.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=036784BD57A8BB277F000101%40AdobeOrg&d_nsid=0&ts=1669868777280 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.ups.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v045-0be46a66e.edge-irl1.demdex.com 2 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=38274517553947141830264853495611281057; Max-Age=15552000; Expires=Tue, 30 May 2023 04:26:20 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: qIFK3DqXR4U=
Content-Length: 1276
Connection: keep-alive

ups.demdex.net/dest5.html?d_nsid=0

18.203.75.86

200 OK

2.8 kB

URL HTTP/1.1
ups.demdex.net/dest5.html?d_nsid=0
IP
18.203.75.86:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (550)
Size
2.8 kB (2791 bytes)
Hash
ccbdcb1e84c241950763ec4cd516cdfc
55dfa8d4b09c5c3a80fcd101152f6ebed3d27a2c
de9ccb9b168945a24f20edc28c39be4135b328129ba8ee378401a7aedc925d12

HTTP Headers

GET /dest5.html?d_nsid=0 HTTP/1.1
Host: ups.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: text/html;charset=UTF-8
date: Thu, 1 Dec 2022 04:26:20 GMT
DCS: dcs-prod-irl1-1-v045-07e4ed132.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Fri, 28 Oct 2022 11:02:57 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: XnF9104GTtI=
transfer-encoding: chunked
Connection: keep-alive

ups.inq.com/chatskins/launch/inqChatLaunch10005649.js

52.189.67.17

200 OK

1.9 kB

URL HTTP/2
ups.inq.com/chatskins/launch/inqChatLaunch10005649.js
IP
52.189.67.17:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
ASCII text, with very long lines (1011)
Size
1.9 kB (1941 bytes)
Hash
d608967ca5d9f29e106510017800adfa
b9e04ed6c7beef8ac01346acf90fa1caf94c864d
43f47111e7210896ecd0011f5da87a83142d94d289f2c696de6b299cb932e958

HTTP Headers

GET /chatskins/launch/inqChatLaunch10005649.js HTTP/1.1
Host: ups.inq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:20 GMT
content-type: application/javascript
content-length: 1941
server: TouchCommerce Server
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cache-control: no-cache
samesite: Strict
etag: "H2C5Z3NaQZS"
last-modified: Wed, 16 Nov 2022 15:06:24 GMT
accept-ranges: bytes
content-encoding: gzip
X-Firefox-Spdy: h2

tags.tiqcdn.com/utag/ups/yoda/prod/utag.19.js?utv=ut4.48.202108101731

23.38.200.249

200 OK

1.5 kB

URL HTTP/2
tags.tiqcdn.com/utag/ups/yoda/prod/utag.19.js?utv=ut4.48.202108101731
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1117)
Size
1.5 kB (1470 bytes)
Hash
49800d50de3a41b082988b4d08180b2d
be0831d8f667b1906823a92ecf78657b8c1f064a
0fae7e71d5690cf22eeda1c1a644c1ba731fa3909c3d86b52d0c28f79521b705

HTTP Headers

GET /utag/ups/yoda/prod/utag.19.js?utv=ut4.48.202108101731 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "509a2aa997e93b6ebe60cdf7a9ae73b6:1628613002.413896"
last-modified: Tue, 10 Aug 2021 16:30:02 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 16 Dec 2022 04:26:20 GMT
date: Thu, 01 Dec 2022 04:26:20 GMT
content-length: 1470
X-Firefox-Spdy: h2

tags.tiqcdn.com/utag/ups/yoda/prod/utag.14.js?utv=ut4.48.202211232237

23.38.200.249

200 OK

2.9 kB

URL HTTP/2
tags.tiqcdn.com/utag/ups/yoda/prod/utag.14.js?utv=ut4.48.202211232237
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1262)
Size
2.9 kB (2858 bytes)
Hash
20e02961e6a9c75ef3e033936a44f633
9118ba972b3410bdccc13a913b76015a7df4b78d
1c62985735b152f48bd613afb05672a16e9403c44ed133a980cb6a13a5d73740

HTTP Headers

GET /utag/ups/yoda/prod/utag.14.js?utv=ut4.48.202211232237 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "8367c4b25f0695bf73bd5ed060c8a809:1634907106.462287"
last-modified: Fri, 22 Oct 2021 12:51:46 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 16 Dec 2022 04:26:20 GMT
date: Thu, 01 Dec 2022 04:26:20 GMT
content-length: 2858
X-Firefox-Spdy: h2

tags.tiqcdn.com/utag/ups/yoda/prod/utag.15.js?utv=ut4.48.202207181153

23.38.200.249

200 OK

7.5 kB

URL HTTP/2
tags.tiqcdn.com/utag/ups/yoda/prod/utag.15.js?utv=ut4.48.202207181153
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (3163)
Size
7.5 kB (7498 bytes)
Hash
8e022fc08eee8c8207db9edf2f5b6ca7
df57749f7cd7fec72806c89235dadbb4b4f00e56
6b78c98f3dd4a61ad0b491d004203f902da9d7daedfd530b127fc30ec9812ed7

HTTP Headers

GET /utag/ups/yoda/prod/utag.15.js?utv=ut4.48.202207181153 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "32c557b17e016ba9440dd0c054e52444:1658145257.494961"
last-modified: Mon, 18 Jul 2022 11:54:17 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 16 Dec 2022 04:26:20 GMT
date: Thu, 01 Dec 2022 04:26:20 GMT
content-length: 7498
X-Firefox-Spdy: h2

tags.tiqcdn.com/utag/ups/yoda/prod/utag.21.js?utv=ut4.48.202108101731

23.38.200.249

200 OK

1.3 kB

URL HTTP/2
tags.tiqcdn.com/utag/ups/yoda/prod/utag.21.js?utv=ut4.48.202108101731
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1117)
Size
1.3 kB (1281 bytes)
Hash
232f2c805644c1a47de3bd7547a4beaa
4340e4f001d35de3454dccbbc0b115707fa68535
d07be14f04d12070fb3aa4dc19af8257dc856f9792df21790495c52434d92b41

HTTP Headers

GET /utag/ups/yoda/prod/utag.21.js?utv=ut4.48.202108101731 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "d6a4fe9ea3362c1aab10df41fa62ec69:1628616713.592195"
last-modified: Tue, 10 Aug 2021 17:31:53 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 16 Dec 2022 04:26:20 GMT
date: Thu, 01 Dec 2022 04:26:20 GMT
content-length: 1281
X-Firefox-Spdy: h2

tags.tiqcdn.com/utag/ups/yoda/prod/utag.22.js?utv=ut4.48.202210131118

23.38.200.249

200 OK

922 B

URL HTTP/2
tags.tiqcdn.com/utag/ups/yoda/prod/utag.22.js?utv=ut4.48.202210131118
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (774)
Size
922 B (922 bytes)
Hash
f979b5a06c0ff06f5ca6830237841487
39bb8dd6cff262cef672a3d77692aa43b69ff434
c40d20aeb5ffee343383c157698ca36a4d02146c48762dcdbc147ab38b6891c3

HTTP Headers

GET /utag/ups/yoda/prod/utag.22.js?utv=ut4.48.202210131118 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "63163f6e3183bf502e6287e25e8d02b9:1628616712.547486"
last-modified: Tue, 10 Aug 2021 17:31:52 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 16 Dec 2022 04:26:20 GMT
date: Thu, 01 Dec 2022 04:26:20 GMT
content-length: 922
X-Firefox-Spdy: h2

tags.tiqcdn.com/utag/ups/yoda/prod/utag.11.js?utv=ut4.48.202205201120

23.38.200.249

200 OK

35 kB

URL HTTP/2
tags.tiqcdn.com/utag/ups/yoda/prod/utag.11.js?utv=ut4.48.202205201120
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (24763)
Size
35 kB (35293 bytes)
Hash
ec1ba8192ff69a4eba52cb508ca24ec4
743af01c91df7945d1c37c3d1434fe03b4188ca7
93a50cffec8014b360f184a343abacf05a50b0795d6ed790270bd47201e0ff7e

HTTP Headers

GET /utag/ups/yoda/prod/utag.11.js?utv=ut4.48.202205201120 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "18d704181f505f3d4d9033ad3542b4b3:1653045675.054481"
last-modified: Fri, 20 May 2022 11:21:15 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 16 Dec 2022 04:26:20 GMT
date: Thu, 01 Dec 2022 04:26:20 GMT
content-length: 35293
X-Firefox-Spdy: h2

tags.tiqcdn.com/utag/ups/yoda/prod/utag.36.js?utv=ut4.48.202205261106

23.38.200.249

200 OK

5.5 kB

URL HTTP/2
tags.tiqcdn.com/utag/ups/yoda/prod/utag.36.js?utv=ut4.48.202205261106
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1253)
Size
5.5 kB (5512 bytes)
Hash
25adfbb6fce71f46eeeb8965eb79eb10
6179740308f4aea78b4bfa85a37d8902ce572692
aede6c4d0312f5b14140f2c42d89b8a73bcf989d7681381efdb6a960bd4839b1

HTTP Headers

GET /utag/ups/yoda/prod/utag.36.js?utv=ut4.48.202205261106 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "fdb1f92a4dbe2c3c5b04c08a02ea6025:1653563188.169965"
last-modified: Thu, 26 May 2022 11:06:28 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=1296000
expires: Fri, 16 Dec 2022 04:26:20 GMT
date: Thu, 01 Dec 2022 04:26:20 GMT
content-length: 5512
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
31dc4e647875dd1c4ea156b2a962f94e
05a8dc5d91472d415a5ff24cb2df0649027a329d
8533a9c98294c38a83b654fd082bc518443643635f2c1ab32a173cd8047ceabe

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 595
Cache-Control: max-age=134441
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:20 GMT
Etag: "638794c2-1d7"
Expires: Fri, 02 Dec 2022 17:47:01 GMT
Last-Modified: Wed, 30 Nov 2022 17:37:06 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

media-us1.digital.nuance.com/media/launch/chatLoader.min.js?codeVersion=1668611184077

13.107.213.53

200 OK

6.7 kB

URL HTTP/2
media-us1.digital.nuance.com/media/launch/chatLoader.min.js?codeVersion=1668611184077
IP
13.107.213.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type
HTML document text\012- C source, ASCII text, with very long lines (22333)
Size
6.7 kB (6692 bytes)
Hash
c0fcf9c27f26df55349231330e8e415f
4a589648af0bf9a3b7080bdaae5a17a644a7bd5f
e23eacf1e739426858c49a8f58f92b17f8b80b4964e894296fc8605def21dab5

HTTP Headers

GET /media/launch/chatLoader.min.js?codeVersion=1668611184077 HTTP/1.1
Host: media-us1.digital.nuance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
cache-control: public, max-age=3600
content-length: 6692
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 03 Nov 2022 02:56:14 GMT
accept-ranges: bytes
etag: "CzOnbdxkYMR"
vary: Accept-Encoding
x-cache: TCP_HIT
server: TouchCommerce Server
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
samesite: Strict
x-azure-ref: 07CyIYwAAAACbVrEJNa/RRr7uGbHQrXRhQU1TMDRFREdFMTkwNgBjYjRkNDNkNS0zNDI3LTQyZTMtYTYwZi1mMzBiYWVmMmZlM2M=
date: Thu, 01 Dec 2022 04:26:20 GMT
X-Firefox-Spdy: h2

tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=ups/yoda/202211232237&cb=1669868779499

23.38.200.249

200 OK

2 B

URL HTTP/2
tags.tiqcdn.com/utag/tiqapp/utag.v.js?a=ups/yoda/202211232237&cb=1669868779499
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
7bc0ee636b3b83484fc3b9348863bd22
ebbffb7d7ea5362a22bfa1bab0bfdeb1617cd610
a2c2339691fc48fbd14fb307292dff3e21222712d9240810742d7df0c6d74dfb

HTTP Headers

GET /utag/tiqapp/utag.v.js?a=ups/yoda/202211232237&cb=1669868779499 HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "7bc0ee636b3b83484fc3b9348863bd22:1460653071"
last-modified: Thu, 14 Apr 2016 16:57:51 GMT
server: AkamaiNetStorage
content-length: 2
cache-control: max-age=600
expires: Thu, 01 Dec 2022 04:36:20 GMT
date: Thu, 01 Dec 2022 04:26:20 GMT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.ups.com/akam-sw-policy.json

23.38.201.152

200 OK

92 B

URL HTTP/2
www.ups.com/akam-sw-policy.json
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
JSON data\012- , ASCII text, with no line terminators
Size
92 B (92 bytes)
Hash
552b8accc1459389255c5c27518d3e22
295bf1f0dfc956fe4aa92e16cfda4fc6585539e0
e63592984c38adf0a5b28cc2624c51121f1c14eee583bc0940f684b80b1218a4

HTTP Headers

GET /akam-sw-policy.json HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/akam-sw.js
If-Modified-Since: Thu, 01 Jan 1970 00:00:00 GMT
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~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; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CMCMID%7C38716240327731045150219515596249720677%7CMCAAMLH-1670473579%7C6%7CMCAAMB-1670473579%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1669875979s%7CNONE%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870640; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session$dc_visit:1$dc_event:1%3Bexp-session$vapi_domain:ups.com$_prevpageid:global.page%3Bexp-1669872379492; RT="z=1&dm=ups.com&si=f05f933a-ce8c-48cb-a023-24a3cfd722f9&ss=lb4kr4ys&sl=0&tt=0&bcn=%2F%2F0217991d.akstat.io%2F"; AMCVS_036784BD57A8BB277F000101%40AdobeOrg=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/html
x-akamai-transformed: 9 - 0 pmb=mNONE,1mTOE,1
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=0
expires: Thu, 01 Dec 2022 04:26:20 GMT
date: Thu, 01 Dec 2022 04:26:20 GMT
content-length: 92
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-akam-sw-version: 0.5.0, 0.5.0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
758b7bfa0eb76c173ccff941bd272d96
f26880d661a9d7eb9fd6d60b66d84f2f4b1d4c54
2ab44b7b624187be291d24308529591731cbb341f5ed4a26abf732f71b03dabf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=121656
Date: Thu, 01 Dec 2022 04:26:20 GMT
Etag: "6387621f-1d7"
Expires: Fri, 02 Dec 2022 14:13:56 GMT
Last-Modified: Wed, 30 Nov 2022 14:01:03 GMT
Server: ECS (nyb/1D08)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GFFseaZ2SXU2rSXq7JnycAWnyWq_VWGyfScg54yBrfmY8uVXiStj4g==
Age: 773

www.googletagmanager.com/gtag/js?id=DC-6451349

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=DC-6451349
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
44 kB (44148 bytes)
Hash
60e04346c36dc3519ca79de1927c4ef7
0d65818b917b22adb5307df0f0ff7de1e649464f
0bd926498eb637c36ec60914b6042c2860d064961fd15709f1e9ceb44f9bd7e1

HTTP Headers

GET /gtag/js?id=DC-6451349 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 01 Dec 2022 04:26:20 GMT
expires: Thu, 01 Dec 2022 04:26:20 GMT
cache-control: private, max-age=900
last-modified: Thu, 01 Dec 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44148
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

js.adsrvr.org/up_loader.1.1.0.js

143.204.45.46

200 OK

1.9 kB

URL HTTP/1.1
js.adsrvr.org/up_loader.1.1.0.js
IP
143.204.45.46:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (4593), with no line terminators
Size
1.9 kB (1887 bytes)
Hash
8dc722d27824e60548fd25752623cd07
33d66ad1a4a162e2d6c9ed732d6c9af79635fc4d
14ce9119fe06fb2d363ba3c824e9f5b3f212f1f39dfab38c836fa13a20daec1b

HTTP Headers

GET /up_loader.1.1.0.js HTTP/1.1
Host: js.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/1.1 200 OK
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 24 Sep 2020 15:15:34 GMT
Server: AmazonS3
Content-Encoding: gzip
Date: Wed, 30 Nov 2022 23:31:36 GMT
ETag: W/"98d98b3499058b76d58073cf8ede2f10"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: rW8Xmd8BgQ9SpEeEsF0r81TvVk-pn4mMFcQ10m0MqaEcyQEQ1DJwsw==
Age: 17685

cm.everesttech.net/cm/dd?d_uuid=38274517553947141830264853495611281057

99.80.65.0

302

0 B

URL HTTP/1.1
cm.everesttech.net/cm/dd?d_uuid=38274517553947141830264853495611281057
IP
99.80.65.0:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cm/dd?d_uuid=38274517553947141830264853495611281057 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/1.1 302 
Date: Thu, 01 Dec 2022 04:26:20 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y4gs7AAAAHYaDgMx; Domain=.everesttech.net; Expires=Fri, 01-Dec-2023 04:26:20 GMT; Path=/
everest_session_v2=Y4gs7AAAAHYaDwMx; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Y4gs7AAAAHYaDgMx
Server: AMO-cookiemap/1.1

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
33f732b4dfbd5fb3ed7345eba2896fe6
2652f214cf7127302cc65b1d4e42f48a80907d5d
904ce722469d356f8ec20c14bd51ca3ce459012ea0869f7d14821a963310a494

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1601a7c8a96ebe5b2af6fe1abcb6b90b
fb19f5121052f37c9cef4640791964583618560c
893364204eb010f01c891762b80db20df137be75ecb85fa4e22dbc68143b53fb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4999
Cache-Control: max-age=146415
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:21 GMT
Etag: "6387b255-1d7"
Expires: Fri, 02 Dec 2022 21:06:36 GMT
Last-Modified: Wed, 30 Nov 2022 19:43:17 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

27 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
27 kB (27340 bytes)
Hash
44ecaa3c2a4929a40141edc4540aaf84
f29a573182333b2500d41bfc389d6c5232dfb348
6589fe14578dedd4df678a909afadd7e5bc7f57c7e3e24518a7f5faac7383396

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: ImW5tc46mMaCMw4RZ18zXatZWqm6+JKPWykIpchpsCgw2IUTXPeEu9UoAwpjPqfbwvD5Hh0ibjlndSnsw2OTnA==
content-length: 27340
x-fb-trip-id: 1904183273
date: Thu, 01 Dec 2022 04:26:21 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1601a7c8a96ebe5b2af6fe1abcb6b90b
fb19f5121052f37c9cef4640791964583618560c
893364204eb010f01c891762b80db20df137be75ecb85fa4e22dbc68143b53fb

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4999
Cache-Control: max-age=146415
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:21 GMT
Etag: "6387b255-1d7"
Expires: Fri, 02 Dec 2022 21:06:36 GMT
Last-Modified: Wed, 30 Nov 2022 19:43:17 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

ocsp.godaddy.com/

192.124.249.36

200 OK

1.7 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.36:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.7 kB (1731 bytes)
Hash
00a3aeea144578c3c4814ac403fecae3
03a58f1b5376d7df685aee6ba56c5be7f9c33a78
1809a61c7baf8f74ce6a0be4f1672ca6b95c21cd44113db531c6d32f6e092085

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 68
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 01 Dec 2022 04:26:20 GMT
Content-Type: application/ocsp-response
Content-Length: 1731
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Wed, 30 Nov 2022 19:16:29 GMT
Expires: Thu, 01 Dec 2022 19:16:29 GMT
ETag: "03a58f1b5376d7df685aee6ba56c5be7f9c33a78"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

www.ups.com/nuance/nuance-chat.html?IFRAME&nuance-frame-ac=0

23.38.201.152

200 OK

1.8 kB

URL HTTP/2
www.ups.com/nuance/nuance-chat.html?IFRAME&nuance-frame-ac=0
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4156), with CRLF, LF line terminators
Size
1.8 kB (1769 bytes)
Hash
f7ac4ee139c001e7b13a4b36ffec8945
8a9cd9ed049f693e0554aef8a79e6b0fea2f45ce
ea640221c9fdbe29cbfd64f9ce73958377d5ab2b6a608ca986115a83c3a39c3f

HTTP Headers

GET /nuance/nuance-chat.html?IFRAME&nuance-frame-ac=0 HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.ups.com/us/en/global.page
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~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; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CMCMID%7C38716240327731045150219515596249720677%7CMCAAMLH-1670473579%7C6%7CMCAAMB-1670473579%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1669875979s%7CNONE%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870640; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session$dc_visit:1$dc_event:1%3Bexp-session$vapi_domain:ups.com$_prevpageid:global.page%3Bexp-1669872379492; RT="z=1&dm=ups.com&si=f05f933a-ce8c-48cb-a023-24a3cfd722f9&ss=lb4kr4ys&sl=0&tt=0&bcn=%2F%2F0217991d.akstat.io%2F"; AMCVS_036784BD57A8BB277F000101%40AdobeOrg=1
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
cache-control: no-store, no-cache
pragma: no-cache
accept-ranges: bytes
content-type: text/html
x-akamai-transformed: 9 236 0 pmb=mNONE,1mTOE,3
content-encoding: gzip
date: Thu, 01 Dec 2022 04:26:21 GMT
content-length: 1769
vary: Accept-Encoding
x-akam-sw-version: 0.5.0
link: <https://www.ups.com/assets/resources/styles/fonts/Roboto-Regular.woff>;rel="preload";as="font";type="font/woff";crossorigin,<https://www.ups.com/assets/resources/styles/fonts/Roboto-Medium.woff>;rel="preload";as="font";type="font/woff";crossorigin
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
X-Firefox-Spdy: h2

www.youtube.com/iframe_api

142.250.74.110

200 OK

960 B

URL HTTP/2
www.youtube.com/iframe_api
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (509)
Size
960 B (960 bytes)
Hash
f84afab6ffe5c6a95a449529a439614f
8a67a4b2164decae69068b96692224679580d64a
842c594ec4ffaa5e05e173d295bcdd8da943c3fac6555bd07a6aa8d95d1e9c29

HTTP Headers

GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 01 Dec 2022 04:26:21 GMT
date: Thu, 01 Dec 2022 04:26:21 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=eAGY5jouKU4; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=JU6QvOzWTVk; Domain=.youtube.com; Expires=Tue, 30-May-2023 04:26:21 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+007; expires=Sat, 30-Nov-2024 04:26:21 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

dpm.demdex.net/ibs:dpid=411&dpuuid=Y4gs7AAAAHYaDgMx

3.248.121.63

302 Found

0 B

URL HTTP/1.1
dpm.demdex.net/ibs:dpid=411&dpuuid=Y4gs7AAAAHYaDgMx
IP
3.248.121.63:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ibs:dpid=411&dpuuid=Y4gs7AAAAHYaDgMx HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v045-0a637d725.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y4gs7AAAAHYaDgMx
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=17532058378743501803712408714444499981; Max-Age=15552000; Expires=Tue, 30 May 2023 04:26:21 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: UmdX1cTsTXo=
Content-Length: 0
Connection: keep-alive

6451349.fls.doubleclick.net/activityi;src=6451349;type=sitev;cat=upsal0;ord=4500343383660;gtm=2odbs0;auiddc=943829796.1669868780;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page?

142.250.74.70

200 OK

262 B

URL HTTP/2
6451349.fls.doubleclick.net/activityi;src=6451349;type=sitev;cat=upsal0;ord=4500343383660;gtm=2odbs0;auiddc=943829796.1669868780;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page?
IP
142.250.74.70:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (474), with no line terminators
Size
262 B (262 bytes)
Hash
3361f246ecd30dc389061c48303d3098
e53ac2631c063a5b36f5d3609893c66050376b24
77664641aba749cff3501a4a9f0a6dc84d728fde86f87b1e643c5100716b5dc9

HTTP Headers

GET /activityi;src=6451349;type=sitev;cat=upsal0;ord=4500343383660;gtm=2odbs0;auiddc=943829796.1669868780;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page? HTTP/1.1
Host: 6451349.fls.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 01 Dec 2022 04:26:21 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
strict-transport-security: max-age=21600
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 262
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 01-Dec-2022 04:41:21 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
c8c1f36c0f3bccfbc36ca077e21ca07c
a6acfb0769c5f9221bd2d7f0d0124ae0f9e50657
f67613c87b9c323f2b53b8b7f2b2b58ccd20b489f820d1e4ad591f6c7909c733

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=93921
Date: Thu, 01 Dec 2022 04:26:21 GMT
Etag: "6386f5e5-1d7"
Expires: Fri, 02 Dec 2022 06:31:42 GMT
Last-Modified: Wed, 30 Nov 2022 06:19:17 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: I3YbGUAFELOCu2tAvhRBdPrUZsbOc3ZPrLiVb0TTilbQNMuW_vFigw==
Age: 745

www.ups.com/assets/resources/styles/fonts/Roboto-Regular.woff

23.38.201.152

304 Not Modified

0 B

URL HTTP/2
www.ups.com/assets/resources/styles/fonts/Roboto-Regular.woff
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/resources/styles/fonts/Roboto-Regular.woff HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Referer: https://www.ups.com/nuance/nuance-chat.html?IFRAME&nuance-frame-ac=0
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~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; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CMCMID%7C38716240327731045150219515596249720677%7CMCAAMLH-1670473579%7C6%7CMCAAMB-1670473579%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1669875979s%7CNONE%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870640; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session$dc_visit:1$dc_event:1%3Bexp-session$vapi_domain:ups.com$_prevpageid:global.page%3Bexp-1669872379492; RT="z=1&dm=ups.com&si=f05f933a-ce8c-48cb-a023-24a3cfd722f9&ss=lb4kr4ys&sl=0&tt=0&bcn=%2F%2F0217991d.akstat.io%2F"; AMCVS_036784BD57A8BB277F000101%40AdobeOrg=1; s_nr=1669868779634-New; s_vnum=1672531200634%26vn%3D1; s_invisit=true; dayssincevisit=1669868779634; dayssincevisit_s=First%20Visit; s_cc=true; _gcl_au=1.1.943829796.1669868780
If-Modified-Since: Fri, 01 Oct 2021 01:45:08 GMT
TE: trailers

HTTP/2 304 Not Modified
content-type: application/font-woff
last-modified: Fri, 01 Oct 2021 01:45:08 GMT
date: Thu, 01 Dec 2022 04:26:21 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
533f66ef53706466ce20dc9aebf11812
0c0d713d538eb224deeb9241917a117205f16cb2
8ce7b68022c847b59b9a132ada3a75eea73bb57bae4683901c8df08fa255ba79

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.ups.com/assets/resources/styles/fonts/Roboto-Medium.woff

23.38.201.152

304 Not Modified

0 B

URL HTTP/2
www.ups.com/assets/resources/styles/fonts/Roboto-Medium.woff
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/resources/styles/fonts/Roboto-Medium.woff HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Referer: https://www.ups.com/nuance/nuance-chat.html?IFRAME&nuance-frame-ac=0
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~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; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CMCMID%7C38716240327731045150219515596249720677%7CMCAAMLH-1670473579%7C6%7CMCAAMB-1670473579%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1669875979s%7CNONE%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870640; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session$dc_visit:1$dc_event:1%3Bexp-session$vapi_domain:ups.com$_prevpageid:global.page%3Bexp-1669872379492; RT="z=1&dm=ups.com&si=f05f933a-ce8c-48cb-a023-24a3cfd722f9&ss=lb4kr4ys&sl=0&tt=0&bcn=%2F%2F0217991d.akstat.io%2F"; AMCVS_036784BD57A8BB277F000101%40AdobeOrg=1; s_nr=1669868779634-New; s_vnum=1672531200634%26vn%3D1; s_invisit=true; dayssincevisit=1669868779634; dayssincevisit_s=First%20Visit; s_cc=true; _gcl_au=1.1.943829796.1669868780
If-Modified-Since: Fri, 01 Oct 2021 01:45:08 GMT
TE: trailers

HTTP/2 304 Not Modified
content-type: application/font-woff
last-modified: Fri, 01 Oct 2021 01:45:08 GMT
date: Thu, 01 Dec 2022 04:26:21 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

www.ups.com/bgm7/2XTR/oK/Jt_2/419A/a7DaSbDauSiY/d2pDGSk/fV9/sKApIfWkB

23.38.201.152

200 OK

75 kB

URL HTTP/2
www.ups.com/bgm7/2XTR/oK/Jt_2/419A/a7DaSbDauSiY/d2pDGSk/fV9/sKApIfWkB
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
data
Size
75 kB (74731 bytes)
Hash
3f4f3e9315bd945fe0f900f9743a8a45
2b7b36c12168e07dea9f1d61088a8f074f56550e
5d0b60cfe321510c4cd896ede7407c74e3b7eafcd24683d2b042a7c424074d6c

HTTP Headers

GET /bgm7/2XTR/oK/Jt_2/419A/a7DaSbDauSiY/d2pDGSk/fV9/sKApIfWkB HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.ups.com/nuance/nuance-chat.html?IFRAME&nuance-frame-ac=0
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~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; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CMCMID%7C38716240327731045150219515596249720677%7CMCAAMLH-1670473579%7C6%7CMCAAMB-1670473579%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1669875979s%7CNONE%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870640; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session$dc_visit:1$dc_event:1%3Bexp-session$vapi_domain:ups.com$_prevpageid:global.page%3Bexp-1669872379492; RT="z=1&dm=ups.com&si=f05f933a-ce8c-48cb-a023-24a3cfd722f9&ss=lb4kr4ys&sl=0&tt=0&bcn=%2F%2F0217991d.akstat.io%2F"; AMCVS_036784BD57A8BB277F000101%40AdobeOrg=1; s_nr=1669868779634-New; s_vnum=1672531200634%26vn%3D1; s_invisit=true; dayssincevisit=1669868779634; dayssincevisit_s=First%20Visit; s_cc=true; _gcl_au=1.1.943829796.1669868780
TE: trailers

HTTP/2 200 OK
last-modified: Mon, 31 Oct 2022 15:58:54 GMT
etag: "37a4b009e7ae076e7f3325379f971e6bf5df836d1f31841d88898cd782d66a2a"
content-type: application/javascript
content-encoding: gzip
date: Thu, 01 Dec 2022 04:26:21 GMT
content-length: 74731
vary: Accept-Encoding
cache-control: max-age=21600
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
03c111488d26627d15aa784bbcd47ed0
b51e643219d7ac6749d5e363cc131c0e166f55a6
40fe25b316a75b4eecb2c928fb19cd68baf0b23a9a282abda159862b7c0d4d08

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2475
Cache-Control: max-age=101774
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:21 GMT
Etag: "63870dd0-1d7"
Expires: Fri, 02 Dec 2022 08:42:35 GMT
Last-Modified: Wed, 30 Nov 2022 08:01:20 GMT
Server: ECS (amb/6BA4)
X-Cache: HIT
Content-Length: 471

www.ups.com/assets/ce586f7a90ceb2cb6785ea730fd896f2d0453d5260d

23.38.201.152

200 OK

52 kB

URL HTTP/2
www.ups.com/assets/ce586f7a90ceb2cb6785ea730fd896f2d0453d5260d
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type
ASCII text, with very long lines (1096)
Size
52 kB (52350 bytes)
Hash
e325c19bb184b5f3c2d457cd7087b43c
75bb9d18336344887c081f9b5cf125262b25807a
b59e44fa5db32f9b7e9c03f83bd41716a146d2362489e93fb789811f6ddd5b75

HTTP Headers

GET /assets/ce586f7a90ceb2cb6785ea730fd896f2d0453d5260d HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.ups.com/nuance/nuance-chat.html?IFRAME&nuance-frame-ac=0
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~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; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CMCMID%7C38716240327731045150219515596249720677%7CMCAAMLH-1670473579%7C6%7CMCAAMB-1670473579%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1669875979s%7CNONE%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870640; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session$dc_visit:1$dc_event:1%3Bexp-session$vapi_domain:ups.com$_prevpageid:global.page%3Bexp-1669872379492; RT="z=1&dm=ups.com&si=f05f933a-ce8c-48cb-a023-24a3cfd722f9&ss=lb4kr4ys&sl=0&tt=0&bcn=%2F%2F0217991d.akstat.io%2F"; AMCVS_036784BD57A8BB277F000101%40AdobeOrg=1; s_nr=1669868779634-New; s_vnum=1672531200634%26vn%3D1; s_invisit=true; dayssincevisit=1669868779634; dayssincevisit_s=First%20Visit; s_cc=true; _gcl_au=1.1.943829796.1669868780
TE: trailers

HTTP/2 200 OK
content-type: application/javascript
content-md5: Nnuc2pWSIu/PaSPPrC2/kQ==
last-modified: Mon, 04 Apr 2022 16:48:37 GMT
accept-ranges: bytes
etag: "0x8DA165AF72A4949"
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Accept-Ranges,Content-Length,Date,Transfer-Encoding
content-encoding: gzip
content-length: 52350
timing-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
access-control-allow-origin: *
cache-control: max-age=600
expires: Thu, 01 Dec 2022 04:36:21 GMT
date: Thu, 01 Dec 2022 04:26:21 GMT
vary: Accept-Encoding
set-cookie: akacd_RWASP-default-phased-release=3847321580~rv=23~id=718d1c9bf0a93cc397b213ba8e47a493; path=/;; Secure; SameSite=None
server-timing: edge; dur=1, origin; dur=13, cdn-cache; desc=MISS
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
X-Firefox-Spdy: h2

collect.tealiumiq.com/ups/yoda/2/i.gif

3.75.54.183

200 OK

43 B

URL HTTP/2
collect.tealiumiq.com/ups/yoda/2/i.gif
IP
3.75.54.183:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7

HTTP Headers

POST /ups/yoda/2/i.gif HTTP/1.1
Host: collect.tealiumiq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------27868060331628787194481037818
Content-Length: 6597
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:21 GMT
content-type: image/gif
content-length: 43
x-acc: ups:yoda:2:datacloud
x-did: 0184cbef700600025207a31da69300050002500900918
x-region: eu-central-1
access-control-allow-origin: https://www.ups.com
x-serverid: uconnect_i-00aac1be354b5ebba
pragma: no-cache
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID CUR ADM DEV OUR BUS"
access-control-expose-headers: X-Region
cache-control: no-transform,private,no-cache,no-store,max-age=0,s-maxage=0
x-tid: 0184cbef700600025207a31da69300050002500900918
access-control-allow-credentials: true
x-ulver: cf3f1085ffdb019d2f47243544d6f9ed56d97859-SNAPSHOT
vary: Origin
expires: Thu, 01 Dec 2022 04:26:21 GMT
x-uuid: 99da461f-456e-40c0-a30a-5529b32fc4c7
set-cookie: TAPID=ups/yoda>0184cbef700600025207a31da69300050002500900918|; Path=/; Domain=.tealiumiq.com; Expires=Fri, 01-Dec-2023 04:26:21 GMT; Max-Age=31536000; Secure; HttpOnly; SameSite=None
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
920992c4818e7d17517e3dfef67a22c1
407b7e56fbb4faacca123af367b6cfdf0b7b2d99
527197c1e55e0b319d64e59070906d60084827233a6d7498cf63145ab665c424

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.ups.com/akam-sw.js

23.38.201.152

304 Not Modified

0 B

URL HTTP/2
www.ups.com/akam-sw.js
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /akam-sw.js HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~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; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CMCMID%7C38716240327731045150219515596249720677%7CMCAAMLH-1670473579%7C6%7CMCAAMB-1670473579%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1669875979s%7CNONE%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870640|PC#19ffa3520971478d9e76e3bbf2413749.37_0#1733113580; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session$dc_visit:1$dc_event:1%3Bexp-session$vapi_domain:ups.com$_prevpageid:global.page%3Bexp-1669872379492; RT="z=1&dm=ups.com&si=f05f933a-ce8c-48cb-a023-24a3cfd722f9&ss=lb4kr4ys&sl=0&tt=0&bcn=%2F%2F0217991d.akstat.io%2F"; AMCVS_036784BD57A8BB277F000101%40AdobeOrg=1; s_nr=1669868779634-New; s_vnum=1672531200634%26vn%3D1; s_invisit=true; dayssincevisit=1669868779634; dayssincevisit_s=First%20Visit; s_cc=true; _gcl_au=1.1.943829796.1669868780; akacd_RWASP-default-phased-release=3847321580~rv=23~id=718d1c9bf0a93cc397b213ba8e47a493; mboxEdgeCluster=37
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Wed, 22 Sep 2021 12:41:17 GMT
If-None-Match: "0bd9e9e6c2e9ce340e6e1c7754b228ce5bb931351fb503a6d95b245f121c9540"
Cache-Control: max-age=0
TE: trailers

HTTP/2 304 Not Modified
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 22 Sep 2021 12:41:17 GMT
etag: "0bd9e9e6c2e9ce340e6e1c7754b228ce5bb931351fb503a6d95b245f121c9540"
expires: Thu, 01 Dec 2022 04:31:21 GMT
date: Thu, 01 Dec 2022 04:26:21 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-akam-sw-version: 0.5.0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

adservice.google.com/ddm/fls/i/src=6451349;type=sitev;cat=upsal0;ord=4500343383660;gtm=2odbs0;auiddc=943829796.1669868780;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page

216.58.207.226

200 OK

262 B

URL HTTP/2
adservice.google.com/ddm/fls/i/src=6451349;type=sitev;cat=upsal0;ord=4500343383660;gtm=2odbs0;auiddc=943829796.1669868780;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page
IP
216.58.207.226:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (473), with no line terminators
Size
262 B (262 bytes)
Hash
6a9b36db2b15280977e7a32c5952c13b
fa450b328b06ab615b19c36a44174ba6e063eb11
b8b56dbe75f9400f0a2e5a6529ed7a5e6beb1af672683310d71dc9f4f40467d1

HTTP Headers

GET /ddm/fls/i/src=6451349;type=sitev;cat=upsal0;ord=4500343383660;gtm=2odbs0;auiddc=943829796.1669868780;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6451349.fls.doubleclick.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 01 Dec 2022 04:26:21 GMT
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
pragma: no-cache
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 262
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

smetrics.ups.com/b/ss/upsprod/10/JS-2.22.4/s7946014433002?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=1%2F11%2F2022%204%3A26%3A19%204%200&cid.&tealiumVisitorID.&id=0184cbef700600025207a31da69300050002500900918&as=1&.tealiumVisitorID&.cid&d.&nsid=0&jsonv=1&.d&sdid=1827FF4C9A78338B-09773C1CA3960D66&mid=38716240327731045150219515596249720677&aamlh=6&ce=UTF-8&ns=unitedparcelservice&cdp=2&g=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c.&business_user_company_size=4&business_user_revenue=1384000&.c&ch=home&events=event155%3D26%2Cevent157%3D2364%2Cevent156%3D20&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=global.page&c2=global&v2=b2b&c5=en&c6=US&v6=4&c13=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&v14=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c17=ups%7Cyoda%7Cprod%7Cut4.48.202211232237%7C-%7C-&c18=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c19=4&v19=guest&c22=guest&c23=New&c24=38716240327731045150219515596249720677&c27=26&c29=SiteB&c30=541512&c31=7379&c33=global&v37=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&v39=New&v49=www.ups.com&v50=1669868777479&c51=www.ups.com&v51=0184cbef700600025207a31da69300050002500900918&v55=ups.com&v77=38716240327731045150219515596249720677&v78=1&v83=First%20Visit&v88=-%7C4%7CSoftware%20and%20Technology%7CData%20and%20Technical%20Services%7C1384000%7C-&v93=1669868777479_1669868777489&v171=en&v172=US&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=036784BD57A8BB277F000101%40AdobeOrg&AQE=1

13.36.218.177

200 OK

3.7 kB

URL HTTP/2
smetrics.ups.com/b/ss/upsprod/10/JS-2.22.4/s7946014433002?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=1%2F11%2F2022%204%3A26%3A19%204%200&cid.&tealiumVisitorID.&id=0184cbef700600025207a31da69300050002500900918&as=1&.tealiumVisitorID&.cid&d.&nsid=0&jsonv=1&.d&sdid=1827FF4C9A78338B-09773C1CA3960D66&mid=38716240327731045150219515596249720677&aamlh=6&ce=UTF-8&ns=unitedparcelservice&cdp=2&g=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c.&business_user_company_size=4&business_user_revenue=1384000&.c&ch=home&events=event155%3D26%2Cevent157%3D2364%2Cevent156%3D20&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=global.page&c2=global&v2=b2b&c5=en&c6=US&v6=4&c13=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&v14=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c17=ups%7Cyoda%7Cprod%7Cut4.48.202211232237%7C-%7C-&c18=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c19=4&v19=guest&c22=guest&c23=New&c24=38716240327731045150219515596249720677&c27=26&c29=SiteB&c30=541512&c31=7379&c33=global&v37=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&v39=New&v49=www.ups.com&v50=1669868777479&c51=www.ups.com&v51=0184cbef700600025207a31da69300050002500900918&v55=ups.com&v77=38716240327731045150219515596249720677&v78=1&v83=First%20Visit&v88=-%7C4%7CSoftware%20and%20Technology%7CData%20and%20Technical%20Services%7C1384000%7C-&v93=1669868777479_1669868777489&v171=en&v172=US&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=036784BD57A8BB277F000101%40AdobeOrg&AQE=1
IP
13.36.218.177:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (3662)
Size
3.7 kB (3663 bytes)
Hash
9a6eb804aa228cea9fbfcc46ba61db05
c65151cbaae135409a879420db591592d1ffe8ef
6812a9e89546a0ca90623e620bb0a049a885595f1830e788c57b1ded3f8325c8

HTTP Headers

GET /b/ss/upsprod/10/JS-2.22.4/s7946014433002?AQB=1&ndh=1&pf=1&callback=s_c_il[1].doPostbacks&et=1&t=1%2F11%2F2022%204%3A26%3A19%204%200&cid.&tealiumVisitorID.&id=0184cbef700600025207a31da69300050002500900918&as=1&.tealiumVisitorID&.cid&d.&nsid=0&jsonv=1&.d&sdid=1827FF4C9A78338B-09773C1CA3960D66&mid=38716240327731045150219515596249720677&aamlh=6&ce=UTF-8&ns=unitedparcelservice&cdp=2&g=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c.&business_user_company_size=4&business_user_revenue=1384000&.c&ch=home&events=event155%3D26%2Cevent157%3D2364%2Cevent156%3D20&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&c1=global.page&c2=global&v2=b2b&c5=en&c6=US&v6=4&c13=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&v14=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c17=ups%7Cyoda%7Cprod%7Cut4.48.202211232237%7C-%7C-&c18=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&c19=4&v19=guest&c22=guest&c23=New&c24=38716240327731045150219515596249720677&c27=26&c29=SiteB&c30=541512&c31=7379&c33=global&v37=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&v39=New&v49=www.ups.com&v50=1669868777479&c51=www.ups.com&v51=0184cbef700600025207a31da69300050002500900918&v55=ups.com&v77=38716240327731045150219515596249720677&v78=1&v83=First%20Visit&v88=-%7C4%7CSoftware%20and%20Technology%7CData%20and%20Technical%20Services%7C1384000%7C-&v93=1669868777479_1669868777489&v171=en&v172=US&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=036784BD57A8BB277F000101%40AdobeOrg&AQE=1 HTTP/1.1
Host: smetrics.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF85uqLCEAQAAF3jvyxHe3wD4zOnspirmCsv1xluj84T/ZNrOcCAOa3jSTW3Kv6M78f5L/8TGg6avB7yia+mv66GE1W88INP84P02njQx+L2AoQbkydSMhGg9OR/MyvpVsAnJy1n6QvP2nOjRSxOm8V5pImJ1zjefxAlMzTiZoqn5HX9KrG8qckeOgw4sCX8DIXP9UjKvzEFYQIb8mk0658FYZ4aBpqYR4SGR5xNg4a7yXrkRLbarWJinF6ANfcZnJoWrPGvG9iPimepYa17TbWGja+ycVMCU6m0LPcBFpCxbBDgYSmQDO9nrh/WfkUz7fLmboHsQ0aQf66pVDyOM6+JFqNA2G4hzqNQW2tGyqmN8z5x3iawbq76hhiiUiD/4HQ9sQ+R9UfVm/E0tvw1ISwGdvWmvmVmzEixfpq+XoguRQlnw9lHmBXXQI1lBlT3fQ0DMHpowQKzytYB2wKBY+xkgdK7rtaiFWOZmv0kRjF7k; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CMCMID%7C38716240327731045150219515596249720677%7CMCAAMLH-1670473579%7C6%7CMCAAMB-1670473579%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1669875979s%7CNONE%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870640; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session$dc_visit:1$dc_event:1%3Bexp-session$vapi_domain:ups.com$_prevpageid:global.page%3Bexp-1669872379492; RT="z=1&dm=ups.com&si=f05f933a-ce8c-48cb-a023-24a3cfd722f9&ss=lb4kr4ys&sl=0&tt=0&bcn=%2F%2F0217991d.akstat.io%2F"; AMCVS_036784BD57A8BB277F000101%40AdobeOrg=1; s_nr=1669868779634-New; s_vnum=1672531200634%26vn%3D1; s_invisit=true; dayssincevisit=1669868779634; dayssincevisit_s=First%20Visit; s_cc=true

HTTP/2 200 OK
access-control-allow-origin: *
date: Thu, 01 Dec 2022 04:26:21 GMT
expires: Wed, 30 Nov 2022 04:26:21 GMT
last-modified: Fri, 02 Dec 2022 04:26:21 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3586015903136579584-4619731203253712747
vary: *
dcs: dcs-prod-irl1-2-v045-001bf2e72.edge-irl1.demdex.com 6 ms
x-aam-tid: lYHQrao3S4Y=
content-type: application/x-javascript;charset=utf-8
content-length: 3663
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2

dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y4gs7AAAAHYaDgMx

3.248.121.63

200 OK

59 B

URL HTTP/1.1
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y4gs7AAAAHYaDgMx
IP
3.248.121.63:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
59 B (59 bytes)
Hash
1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13

HTTP Headers

GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y4gs7AAAAHYaDgMx HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-07bcfe959.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: fsFcrveqS0Q=
Content-Length: 59
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
3402a11f28d369c1ad537c8e44ba5568
17c9fc852ca71dc4d46f786537adda4ee0e9a3ef
dd142866516f3293fab9f67f092d37b70c39fc58512734c8e88dab5c5faf7264

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

p11.techlab-cdn.com/e/65257_1825232159.js

104.84.152.59

200 OK

6.0 kB

URL HTTP/2
p11.techlab-cdn.com/e/65257_1825232159.js
IP
104.84.152.59:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (517)
Size
6.0 kB (5956 bytes)
Hash
4da12d649c49eb24a2b87408ad161200
5c71537465ab90c9d2bdd4ceaa603c06c5c6eff8
8881190fa4cdda123fe962619d54ec6a56aeb6b432576d1946d3ec856268eab4

HTTP Headers

GET /e/65257_1825232159.js HTTP/1.1
Host: p11.techlab-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
content-type: application/javascript
content-md5: uCd5irYaQbFEuwNKJ59UGA==
last-modified: Wed, 15 Dec 2021 00:34:30 GMT
accept-ranges: bytes
etag: "0x8D9BF62A8923636"
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Accept-Ranges,Content-Length,Date,Transfer-Encoding
content-encoding: gzip
content-length: 5956
cache-control: max-age=600
expires: Thu, 01 Dec 2022 04:36:21 GMT
date: Thu, 01 Dec 2022 04:26:21 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
access-control-allow-origin: *
set-cookie: akacd_RWASP-default-phased-release=3847321580~rv=69~id=a6525436068ffe6b5d764999028cb9eb; path=/;; Secure; SameSite=None
X-Firefox-Spdy: h2

p11.techlab-cdn.com/e/64885_1825232283.js

104.84.152.59

200 OK

1.9 kB

URL HTTP/2
p11.techlab-cdn.com/e/64885_1825232283.js
IP
104.84.152.59:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (544)
Size
1.9 kB (1872 bytes)
Hash
012496bae65ee49e860deeeb6b854848
1955b7a1da647551106c982d0a8e98e05c08ec8a
5f8b68022074c8b0325d74f9b5324e4fc7012681fa908cd96996ed51aed2829a

HTTP Headers

GET /e/64885_1825232283.js HTTP/1.1
Host: p11.techlab-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
content-type: application/javascript
content-md5: kYjINenfgD1AmqSEyGQZvA==
last-modified: Tue, 02 Feb 2021 20:14:20 GMT
accept-ranges: bytes
etag: "0x8D8C7B7200E6A28"
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Accept-Ranges,Content-Length,Date,Transfer-Encoding
content-encoding: gzip
content-length: 1872
cache-control: max-age=600
expires: Thu, 01 Dec 2022 04:36:21 GMT
date: Thu, 01 Dec 2022 04:26:21 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
access-control-allow-origin: *
set-cookie: akacd_RWASP-default-phased-release=3847321580~rv=27~id=3e2dd4de68d229108c517a25d7189752; path=/;; Secure; SameSite=None
X-Firefox-Spdy: h2

p11.techlab-cdn.com/e/65226_1825232221.js

104.84.152.59

200 OK

33 kB

URL HTTP/2
p11.techlab-cdn.com/e/65226_1825232221.js
IP
104.84.152.59:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (46725)
Size
33 kB (32564 bytes)
Hash
57fb7e486c419bf3f0924acb2e02622d
f2cd0ebfbb1faa828b315a5ee6b542edea22d4ba
cdf3f9bd272e50fea9f1def1c531761dfb38df7eb47363c5d6ed54dece4753c8

HTTP Headers

GET /e/65226_1825232221.js HTTP/1.1
Host: p11.techlab-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
content-type: application/javascript
content-md5: SXxgqgysjhD+doh01gfTBg==
last-modified: Tue, 22 Jun 2021 09:56:19 GMT
accept-ranges: bytes
etag: "0x8D93563FBF1CA03"
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Accept-Ranges,Content-Length,Date,Transfer-Encoding
content-encoding: gzip
content-length: 32564
cache-control: max-age=600
expires: Thu, 01 Dec 2022 04:36:21 GMT
date: Thu, 01 Dec 2022 04:26:21 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
access-control-allow-origin: *
set-cookie: akacd_RWASP-default-phased-release=3847321580~rv=87~id=26cc4f5e0eccd94322d204d43227579f; path=/;; Secure; SameSite=None
X-Firefox-Spdy: h2

adservice.google.no/ddm/fls/i/src=6451349;type=sitev;cat=upsal0;ord=4500343383660;gtm=2odbs0;auiddc=943829796.1669868780;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page

216.58.207.194

302 Found

0 B

URL HTTP/2
adservice.google.no/ddm/fls/i/src=6451349;type=sitev;cat=upsal0;ord=4500343383660;gtm=2odbs0;auiddc=943829796.1669868780;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ddm/fls/i/src=6451349;type=sitev;cat=upsal0;ord=4500343383660;gtm=2odbs0;auiddc=943829796.1669868780;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://adservice.google.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 01 Dec 2022 04:26:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://6451349.fls.doubleclick.net/ddm/fls/r/src=6451349;type=sitev;cat=upsal0;ord=4500343383660;gtm=2odbs0;auiddc=943829796.1669868780;gdid=dYmQxMT;~oref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.facebook.com/tr/?id=286726385262010&ev=PageView&dl=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&rl=&if=false&ts=1669868779964&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmtealium&ec=0&o=30&fbp=fb.1.1669868779963.1218660965&it=1669868779710&coo=false&dpo=LDU&dpoco=0&dpost=0&eid=000d3278ee212a1dd8807e4a0ecf6f37&rqm=GET

31.13.72.36

200 OK

0 B

URL HTTP/2
www.facebook.com/tr/?id=286726385262010&ev=PageView&dl=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&rl=&if=false&ts=1669868779964&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmtealium&ec=0&o=30&fbp=fb.1.1669868779963.1218660965&it=1669868779710&coo=false&dpo=LDU&dpoco=0&dpost=0&eid=000d3278ee212a1dd8807e4a0ecf6f37&rqm=GET
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tr/?id=286726385262010&ev=PageView&dl=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&rl=&if=false&ts=1669868779964&sw=1280&sh=1024&v=2.9.89&r=stable&a=tmtealium&ec=0&o=30&fbp=fb.1.1669868779963.1218660965&it=1669868779710&coo=false&dpo=LDU&dpoco=0&dpost=0&eid=000d3278ee212a1dd8807e4a0ecf6f37&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin: 
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Thu, 01 Dec 2022 04:26:21 GMT
X-Firefox-Spdy: h2

p11.techlab-cdn.com/e/65319_1825202523.js

104.84.152.59

200 OK

18 kB

URL HTTP/2
p11.techlab-cdn.com/e/65319_1825202523.js
IP
104.84.152.59:0
ASN
#20940 Akamai International B.V.

File type
ASCII text, with very long lines (552)
Size
18 kB (18209 bytes)
Hash
eea1bd4b030789c7992c125c1cdbf8b3
a094021d62a62385f42f66c60b7b4ad103f1e0e4
84b11995244e59d33449fb9c16d8f8c1ee4258fedbeb3e0a40aa4cdf262f6ec4

HTTP Headers

GET /e/65319_1825202523.js HTTP/1.1
Host: p11.techlab-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
content-type: application/javascript
content-md5: JYEgCWdrWBLwxS45s4Z1wA==
last-modified: Sun, 03 Apr 2022 14:58:03 GMT
accept-ranges: bytes
etag: "0x8DA15825A7AF912"
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-lease-state,x-ms-blob-type,Accept-Ranges,Content-Length,Date,Transfer-Encoding
content-encoding: gzip
content-length: 18209
cache-control: max-age=600
expires: Thu, 01 Dec 2022 04:36:21 GMT
date: Thu, 01 Dec 2022 04:26:21 GMT
vary: Accept-Encoding
timing-allow-origin: *
access-control-allow-methods: GET, POST, HEAD
access-control-allow-origin: *
set-cookie: akacd_RWASP-default-phased-release=3847321580~rv=36~id=56447d7dbb1bc9b6eef8de322146f0bb; path=/;; Secure; SameSite=None
X-Firefox-Spdy: h2

ups.tt.omtrdc.net/rest/v1/delivery?client=ups&sessionId=19ffa3520971478d9e76e3bbf2413749&version=2.8.1

54.154.170.90

200 OK

768 B

URL HTTP/2
ups.tt.omtrdc.net/rest/v1/delivery?client=ups&sessionId=19ffa3520971478d9e76e3bbf2413749&version=2.8.1
IP
54.154.170.90:0
ASN
#16509 AMAZON-02

File type
data
Size
768 B (768 bytes)
Hash
bfa88dfa1933632629a0a1e9cf868480
0990895cabe3a709d2bf29910c2bbb40d9dbb31e
444985351a6f6c0ac7d1b810f561775e80a93d21ede29b5cbb8109ed5a8b981c

HTTP Headers

POST /rest/v1/delivery?client=ups&sessionId=19ffa3520971478d9e76e3bbf2413749&version=2.8.1 HTTP/1.1
Host: ups.tt.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 2049
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:20 GMT
content-type: application/json;charset=UTF-8
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
access-control-allow-origin: https://www.ups.com
access-control-allow-credentials: true
x-request-id: 8ff59cba6c06e1a943020df14975c251
timing-allow-origin: *
accept-ch: Sec-CH-UA, Sec-CH-UA-Arch, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version-List
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
81abfd63eeb2fadc85b31541378babb1
09d3223c1a2a4e2cbfcba0381ead2cee5ee0a200
c7665c83165956c11bdbe0509ae03bf6af1b34ca68bf352fbfd629dc3a04b815

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

match.prod.bidr.io/cookie-sync/demandbase

52.30.114.131

303 See Other

0 B

URL HTTP/1.1
match.prod.bidr.io/cookie-sync/demandbase
IP
52.30.114.131:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cookie-sync/demandbase HTTP/1.1
Host: match.prod.bidr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/1.1 303 See Other
Date: Thu, 01 Dec 2022 04:26:21 GMT
location: https://match.prod.bidr.io/cookie-sync/demandbase?_bee_ppp=1
Server: gunicorn
set-cookie: checkForPermission=ok; Domain=bidr.io; expires=Thu, 01 Dec 2022 04:36:21 GMT; Path=/; SameSite=None; Secure
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive

visitor-service-eu-central-1.tealiumiq.com/ups/yoda/0184cbef700600025207a31da69300050002500900918?callback=utag.ut%5B%22writevayoda%22%5D&rnd=1669868779923

18.196.139.125

200 OK

2 B

URL HTTP/2
visitor-service-eu-central-1.tealiumiq.com/ups/yoda/0184cbef700600025207a31da69300050002500900918?callback=utag.ut%5B%22writevayoda%22%5D&rnd=1669868779923
IP
18.196.139.125:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
99914b932bd37a50b983c5e7c90ae93b
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

HTTP Headers

GET /ups/yoda/0184cbef700600025207a31da69300050002500900918?callback=utag.ut%5B%22writevayoda%22%5D&rnd=1669868779923 HTTP/1.1
Host: visitor-service-eu-central-1.tealiumiq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:21 GMT
content-type: application/json;charset=utf-8
content-length: 2
x-region: eu-central-1
x-nodeid: i-035e9d31a0c41c36f
x-version: cf3f1085ffdb019d2f47243544d6f9ed56d97859-SNAPSHOT
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2

match.prod.bidr.io/cookie-sync/demandbase?_bee_ppp=1

52.30.114.131

303 See Other

0 B

URL HTTP/1.1
match.prod.bidr.io/cookie-sync/demandbase?_bee_ppp=1
IP
52.30.114.131:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cookie-sync/demandbase?_bee_ppp=1 HTTP/1.1
Host: match.prod.bidr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 303 See Other
Date: Thu, 01 Dec 2022 04:26:21 GMT
location: https://segments.company-target.com/log?vendor=choca&user_id=
Server: gunicorn
strict-transport-security: max-age=2592000; includeSubDomains
Content-Length: 0
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8d42dbe45d28e98140b7b8e7337916c2
702722d1219f8037f75a0dc9e24936bf7d454533
987efb6ca64818d45978d4bb1ea0557f9531f57f757922ddecad760c854fc0ae

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googleadservices.com/pagead/conversion.js

142.250.74.34

200 OK

17 kB

URL HTTP/2
www.googleadservices.com/pagead/conversion.js
IP
142.250.74.34:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2772)
Size
17 kB (16827 bytes)
Hash
ac7574cbc5b2e85b7ddfa76b8657e59d
2bbeec5531576d6352b1c2b74e0e05c1ea10251d
bdf1e52afba9d671ea698707f97e8609de6360c502dc7b6eed2f40f979e08387

HTTP Headers

GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6451349.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Thu, 01 Dec 2022 04:26:21 GMT
expires: Thu, 01 Dec 2022 04:26:21 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 16359567893097152046
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 16827
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2127bde04ad44ce578c974ce17014430
0671da7ac6281e7666378aec875006158b784931
e7353f4f5fdb557bbc3ed7b6c74c9a79d1bb7ef966f5bd471382feb82234bd93

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
51d5484b700426c5612c309bbf14b114
026994960bfaaa4e2604b66cb795b2787fe300a2
e3e30a64f2e4fc59120c46b320d104f1b9d9a8af90106ab78715d14e49e11ae0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
5bc03b4995299a6a2777604a4d461631
c9de39bb466bfb8f885bae78849b7049389e3483
a8155ab40b718c91379d3a995b89adb27a9044c6f48d0033bfe797e5d9f1437b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 04:26:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 13:42:55 GMT
Expires: Wed, 07 Dec 2022 13:42:54 GMT
Etag: "c9de39bb466bfb8f885bae78849b7049389e3483"
Cache-Control: max-age=551192,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7729106aba02b4fa-OSL

googleads.g.doubleclick.net/pagead/viewthroughconversion/863311277/?random=1669868780185&cv=9&fst=1669868780185&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6451349.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6451349%3Btype%3Dsitev%3Bcat%3Dupsal0%3Bord%3D4500343383660%3Bgtm%3D2odbs0%3Bauiddc%3D943829796.1669868780%3Bgdid%3DdYmQxMT%3B~oref%3Dhttps%253A%252F%252Fwww.ups.com%252Fus%252Fen%252Fglobal.page&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4

172.217.21.162

200 OK

1.1 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/863311277/?random=1669868780185&cv=9&fst=1669868780185&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6451349.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6451349%3Btype%3Dsitev%3Bcat%3Dupsal0%3Bord%3D4500343383660%3Bgtm%3D2odbs0%3Bauiddc%3D943829796.1669868780%3Bgdid%3DdYmQxMT%3B~oref%3Dhttps%253A%252F%252Fwww.ups.com%252Fus%252Fen%252Fglobal.page&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4
IP
172.217.21.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2567), with no line terminators
Size
1.1 kB (1065 bytes)
Hash
780f7623ce8f2044160f56d543357b42
11d89c4da68c52f1a155eaa6404aa0929e7c062f
73195c94b66b7e005ee7185b21b294cdf5a223cfb774eb4d6a7d1123a67d0778

HTTP Headers

GET /pagead/viewthroughconversion/863311277/?random=1669868780185&cv=9&fst=1669868780185&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=2&url=https%3A%2F%2F6451349.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6451349%3Btype%3Dsitev%3Bcat%3Dupsal0%3Bord%3D4500343383660%3Bgtm%3D2odbs0%3Bauiddc%3D943829796.1669868780%3Bgdid%3DdYmQxMT%3B~oref%3Dhttps%253A%252F%252Fwww.ups.com%252Fus%252Fen%252Fglobal.page&ref=https%3A%2F%2Fadservice.google.com%2F&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6451349.fls.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 01 Dec 2022 04:26:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1065
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Thu, 01-Dec-2022 04:41:21 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

id.rlcdn.com/464526.gif

35.244.174.68

451 Unavailable For Legal Reasons

0 B

URL HTTP/2
id.rlcdn.com/464526.gif
IP
35.244.174.68:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /464526.gif HTTP/1.1
Host: id.rlcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 451 Unavailable For Legal Reasons
date: Thu, 01 Dec 2022 04:26:21 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5d950b70d3b1532276ed817249b72618
dca7faf727b8afdd481c8f8bcc3e9129fdadadc3
afe3fbe5f269179e18a66ca806664b7f96b903150b364129e2f2b30087198e34

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
16c3ad4a2bc7f419fb354b37778f8b2f
d193a1336556dcf6b4975a057e7c849037eef0ff
5993deb5a53b2e844b9027a6b6906c718f6e9f69c27388199c4343a80ef067f6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.no/pagead/1p-user-list/863311277/?random=1669868780185&cv=9&fst=1669867200000&num=1&guid=ON&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=2&url=https%3A%2F%2F6451349.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6451349%3Btype%3Dsitev%3Bcat%3Dupsal0%3Bord%3D4500343383660%3Bgtm%3D2odbs0%3Bauiddc%3D943829796.1669868780%3Bgdid%3DdYmQxMT%3B~oref%3Dhttps%253A%252F%252Fwww.ups.com%252Fus%252Fen%252Fglobal.page&ref=https%3A%2F%2Fadservice.google.com%2F&fmt=3&is_vtc=1&random=2117796697&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y

142.250.74.67

200 OK

42 B

URL HTTP/2
www.google.no/pagead/1p-user-list/863311277/?random=1669868780185&cv=9&fst=1669867200000&num=1&guid=ON&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=2&url=https%3A%2F%2F6451349.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6451349%3Btype%3Dsitev%3Bcat%3Dupsal0%3Bord%3D4500343383660%3Bgtm%3D2odbs0%3Bauiddc%3D943829796.1669868780%3Bgdid%3DdYmQxMT%3B~oref%3Dhttps%253A%252F%252Fwww.ups.com%252Fus%252Fen%252Fglobal.page&ref=https%3A%2F%2Fadservice.google.com%2F&fmt=3&is_vtc=1&random=2117796697&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP
142.250.74.67:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/863311277/?random=1669868780185&cv=9&fst=1669867200000&num=1&guid=ON&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=2&url=https%3A%2F%2F6451349.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6451349%3Btype%3Dsitev%3Bcat%3Dupsal0%3Bord%3D4500343383660%3Bgtm%3D2odbs0%3Bauiddc%3D943829796.1669868780%3Bgdid%3DdYmQxMT%3B~oref%3Dhttps%253A%252F%252Fwww.ups.com%252Fus%252Fen%252Fglobal.page&ref=https%3A%2F%2Fadservice.google.com%2F&fmt=3&is_vtc=1&random=2117796697&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6451349.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 01 Dec 2022 04:26:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.google.com/pagead/1p-user-list/863311277/?random=1669868780185&cv=9&fst=1669867200000&num=1&guid=ON&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=2&url=https%3A%2F%2F6451349.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6451349%3Btype%3Dsitev%3Bcat%3Dupsal0%3Bord%3D4500343383660%3Bgtm%3D2odbs0%3Bauiddc%3D943829796.1669868780%3Bgdid%3DdYmQxMT%3B~oref%3Dhttps%253A%252F%252Fwww.ups.com%252Fus%252Fen%252Fglobal.page&ref=https%3A%2F%2Fadservice.google.com%2F&fmt=3&is_vtc=1&random=2117796697&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y

142.250.74.132

200 OK

42 B

URL HTTP/2
www.google.com/pagead/1p-user-list/863311277/?random=1669868780185&cv=9&fst=1669867200000&num=1&guid=ON&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=2&url=https%3A%2F%2F6451349.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6451349%3Btype%3Dsitev%3Bcat%3Dupsal0%3Bord%3D4500343383660%3Bgtm%3D2odbs0%3Bauiddc%3D943829796.1669868780%3Bgdid%3DdYmQxMT%3B~oref%3Dhttps%253A%252F%252Fwww.ups.com%252Fus%252Fen%252Fglobal.page&ref=https%3A%2F%2Fadservice.google.com%2F&fmt=3&is_vtc=1&random=2117796697&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP
142.250.74.132:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629

HTTP Headers

GET /pagead/1p-user-list/863311277/?random=1669868780185&cv=9&fst=1669867200000&num=1&guid=ON&eid=375603260&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=2&url=https%3A%2F%2F6451349.fls.doubleclick.net%2Fddm%2Ffls%2Fr%2Fsrc%3D6451349%3Btype%3Dsitev%3Bcat%3Dupsal0%3Bord%3D4500343383660%3Bgtm%3D2odbs0%3Bauiddc%3D943829796.1669868780%3Bgdid%3DdYmQxMT%3B~oref%3Dhttps%253A%252F%252Fwww.ups.com%252Fus%252Fen%252Fglobal.page&ref=https%3A%2F%2Fadservice.google.com%2F&fmt=3&is_vtc=1&random=2117796697&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://6451349.fls.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 01 Dec 2022 04:26:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

segments.company-target.com/log?vendor=choca&user_id=

54.230.111.34

303 See Other

0 B

URL HTTP/1.1
segments.company-target.com/log?vendor=choca&user_id=
IP
54.230.111.34:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /log?vendor=choca&user_id= HTTP/1.1
Host: segments.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 303 See Other
Content-Length: 0
Connection: keep-alive
Date: Thu, 01 Dec 2022 04:26:21 GMT
trace-id: 8860286d441a97af
Vary: Origin
Location: /validateCookie?vendor=choca&user_id=&verifyHash=e604138f2a4741ecd0630194310de3f3db7f11e3
Set-Cookie: tuuid=309430e0-ae8e-45aa-a3b9-15bd4e83ee41; Max-Age=63072000; Expires=Sat, 30 Nov 2024 04:26:21 GMT; SameSite=None; Path=/; Domain=.company-target.com; Secure; HTTPOnly
tuuid_lu=1669868781; Max-Age=63072000; Expires=Sat, 30 Nov 2024 04:26:21 GMT; SameSite=None; Path=/; Domain=.company-target.com; Secure; HTTPOnly
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: xqbsWnif6xsDC5h51UUyxq2eGnAVJkOq2pDpwp06HT5JTvh5c8IO0g==

segments.company-target.com/validateCookie?vendor=choca&user_id=&verifyHash=e604138f2a4741ecd0630194310de3f3db7f11e3

54.230.111.34

204 No Content

0 B

URL HTTP/1.1
segments.company-target.com/validateCookie?vendor=choca&user_id=&verifyHash=e604138f2a4741ecd0630194310de3f3db7f11e3
IP
54.230.111.34:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /validateCookie?vendor=choca&user_id=&verifyHash=e604138f2a4741ecd0630194310de3f3db7f11e3 HTTP/1.1
Host: segments.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Connection: keep-alive
Date: Thu, 01 Dec 2022 04:26:21 GMT
trace-id: b61c2137752eb31b
Vary: Origin
X-Cache: Miss from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Uv6iJOHJqHMQuktFxUmXIVAC_gJ3ix29go99fFKJjb6cC4gGA78jeg==

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
5bc03b4995299a6a2777604a4d461631
c9de39bb466bfb8f885bae78849b7049389e3483
a8155ab40b718c91379d3a995b89adb27a9044c6f48d0033bfe797e5d9f1437b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 04:26:21 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 30 Nov 2022 13:42:55 GMT
Expires: Wed, 07 Dec 2022 13:42:54 GMT
Etag: "c9de39bb466bfb8f885bae78849b7049389e3483"
Cache-Control: max-age=551192,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7729106d8aefb4fa-OSL

ups.inq.com/chatskins/launch/inqChatLaunch10005649.js

52.189.67.17

304 Not Modified

0 B

URL HTTP/2
ups.inq.com/chatskins/launch/inqChatLaunch10005649.js
IP
52.189.67.17:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /chatskins/launch/inqChatLaunch10005649.js HTTP/1.1
Host: ups.inq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
If-Modified-Since: Wed, 16 Nov 2022 15:06:24 GMT
If-None-Match: "H2C5Z3NaQZS"
TE: trailers

HTTP/2 304 Not Modified
date: Thu, 01 Dec 2022 04:26:22 GMT
server: TouchCommerce Server
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cache-control: max-age=3600
samesite: Strict
etag: "H2C5Z3NaQZS"
X-Firefox-Spdy: h2

www.ups.com/akam-sw.js

23.38.201.152

304 Not Modified

0 B

URL HTTP/2
www.ups.com/akam-sw.js
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /akam-sw.js HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~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; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; JSESSIONID=485AA53440CF960868BCCDC2862F90C1; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CMCMID%7C38716240327731045150219515596249720677%7CMCAAMLH-1670473579%7C6%7CMCAAMB-1670473579%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1669875979s%7CNONE%7CMCCIDH%7C598016938%7CMCSYNCSOP%7C411-19335%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870640|PC#19ffa3520971478d9e76e3bbf2413749.37_0#1733113580; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session$dc_visit:1$dc_event:1%3Bexp-session$vapi_domain:ups.com$_prevpageid:global.page%3Bexp-1669872379492$dc_region:eu-central-1%3Bexp-session; RT="z=1&dm=ups.com&si=f05f933a-ce8c-48cb-a023-24a3cfd722f9&ss=lb4kr4ys&sl=0&tt=0&bcn=%2F%2F0217991d.akstat.io%2F"; AMCVS_036784BD57A8BB277F000101%40AdobeOrg=1; s_nr=1669868779634-New; s_vnum=1672531200634%26vn%3D1; s_invisit=true; dayssincevisit=1669868779634; dayssincevisit_s=First%20Visit; s_cc=true; _gcl_au=1.1.943829796.1669868780; akacd_RWASP-default-phased-release=3847321580~rv=23~id=718d1c9bf0a93cc397b213ba8e47a493; mboxEdgeCluster=37; PIM-SESSION-ID=wajc7SRqW7C26X7d; aam_cms=segments%3D22945447%7C17739880%7C9626487; aam_uuid=38274517553947141830264853495611281057; _fbp=fb.1.1669868779963.1218660965
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Wed, 22 Sep 2021 12:41:17 GMT
If-None-Match: "0bd9e9e6c2e9ce340e6e1c7754b228ce5bb931351fb503a6d95b245f121c9540"
Cache-Control: max-age=0
TE: trailers

HTTP/2 304 Not Modified
content-type: application/javascript; charset=UTF-8
last-modified: Wed, 22 Sep 2021 12:41:17 GMT
etag: "0bd9e9e6c2e9ce340e6e1c7754b228ce5bb931351fb503a6d95b245f121c9540"
expires: Thu, 01 Dec 2022 04:31:22 GMT
date: Thu, 01 Dec 2022 04:26:22 GMT
server-timing: cdn-cache; desc=HIT, edge; dur=1
x-akam-sw-version: 0.5.0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
cache-control: no-cache="Set-Cookie"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
dde6421fcd2fb53140855f97d8cd7cec
630a9d98df6fd4d19d9d9f32ef7f4cf98bdce356
722382ce32dac568e321ee9b7dd2e3f4d13f743910b3739774b4d0c7ed84ea71

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6225
Cache-Control: max-age=118119
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 04:26:22 GMT
Etag: "63873f04-1d7"
Expires: Fri, 02 Dec 2022 13:15:01 GMT
Last-Modified: Wed, 30 Nov 2022 11:31:16 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471

siteintercept.qualtrics.com/dxjsmodule/4.a5c0de52a5fc4b1cbc4b.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx

104.17.209.240

200 OK

5.7 kB

URL HTTP/2
siteintercept.qualtrics.com/dxjsmodule/4.a5c0de52a5fc4b1cbc4b.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx
IP
104.17.209.240:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (44548), with no line terminators
Size
5.7 kB (5737 bytes)
Hash
7e366cc7a44a4c177100bb27385ad96e
ab9e672c1963daa27b6f00ee49d958d761934a37
492e48524ff9c08ee34c9dd181779b2b7472df7afc0d7eb354467853be52ae31

HTTP Headers

GET /dxjsmodule/4.a5c0de52a5fc4b1cbc4b.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:22 GMT
content-type: application/javascript
cf-ray: 77291073ecbdb512-OSL
access-control-allow-origin: *
age: 182383
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"9eb-1845383cf10"
last-modified: Mon, 07 Nov 2022 19:14:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=2539
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

insight.adsrvr.org/track/up?adv=bhipc3r&ref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&upid=3xdvk81&upv=1.1.0

52.223.40.198

200 OK

32 kB

URL HTTP/2
insight.adsrvr.org/track/up?adv=bhipc3r&ref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&upid=3xdvk81&upv=1.1.0
IP
52.223.40.198:0
ASN
#16509 AMAZON-02

File type
data
Size
32 kB (32468 bytes)
Hash
1a9f7bacf5630fff634a614a2f98bb88
66bddd106b25b77bb486fbcdc8f410f446c1fdc8
a44498cde64fb9654b1fd13280712e817d318054a64334104e7427ac3c8e75f1

HTTP Headers

GET /track/up?adv=bhipc3r&ref=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&upid=3xdvk81&upv=1.1.0 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:22 GMT
content-type: text/html
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2

zn1gqrxzvrld7vjwm-upscx.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_1GqrxzvRld7vjWm&Q_LOC=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page

104.17.209.240

200 OK

218 kB

URL HTTP/2
zn1gqrxzvrld7vjwm-upscx.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_1GqrxzvRld7vjWm&Q_LOC=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page
IP
104.17.209.240:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (6801)
Size
218 kB (218151 bytes)
Hash
47df1e4522596268d6aedc587dad1dd6
ed970c5574e864f6603f2d07e00a8adb33d2f3d3
9d4721253ec4b3bf61dd65f7c7e649cea4d7a6e360659c5f792eef4d320b0871

HTTP Headers

GET /WRSiteInterceptEngine/?Q_ZID=ZN_1GqrxzvRld7vjWm&Q_LOC=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page HTTP/1.1
Host: zn1gqrxzvrld7vjwm-upscx.siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:22 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 77291071ebf2b512-OSL
access-control-allow-origin: *
age: 527103
cache-control: public, max-age=3600, s-maxage=604800
etag: W/"2127-pATZJ3h9VRlCtZ1+NGVtvbLOzYU"
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=8487
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

siteintercept.qualtrics.com/WRSiteInterceptEngine/Asset.php?Module=CR_5dP5CLwMUnm5N3M&Version=23&Q_InterceptID=SI_bIqWU0mwn3C8qFM&Q_ORIGIN=https://www.ups.com&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web

104.17.209.240

200 OK

2.2 kB

URL HTTP/2
siteintercept.qualtrics.com/WRSiteInterceptEngine/Asset.php?Module=CR_5dP5CLwMUnm5N3M&Version=23&Q_InterceptID=SI_bIqWU0mwn3C8qFM&Q_ORIGIN=https://www.ups.com&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web
IP
104.17.209.240:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (1576), with no line terminators
Size
2.2 kB (2237 bytes)
Hash
ede185c73ad283ea0e75c312f213ad27
bae9c492e65a8b24de6f81cc8fe648d1ecefa216
0c7a8b44141db88aa2860833c1525e687128ebb760fdbf3230301bc5812082f7

HTTP Headers

GET /WRSiteInterceptEngine/Asset.php?Module=CR_5dP5CLwMUnm5N3M&Version=23&Q_InterceptID=SI_bIqWU0mwn3C8qFM&Q_ORIGIN=https://www.ups.com&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:22 GMT
content-type: application/json
cf-ray: 77291073ecc4b512-OSL
access-control-allow-origin: *
age: 228132
cache-control: public, max-age=604800, s-maxage=604800, max-age=315360000
expires: Mon, 22 Nov 2032 04:29:09 GMT
last-modified: Fri, 25 Nov 2022 04:29:09 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: false
edge-control: max-age=604800
p3p: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
servershortname: 
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

0217991d.akstat.io/

23.38.200.138

204 No Content

0 B

URL HTTP/2
0217991d.akstat.io/
IP
23.38.200.138:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST / HTTP/1.1
Host: 0217991d.akstat.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 10898
Origin: null
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 204 No Content
access-control-allow-origin: null
x-xss-protection: 0
access-control-allow-credentials: true
timing-allow-origin: *
content-type: image/gif
expires: Thu, 01 Dec 2022 04:26:23 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 01 Dec 2022 04:26:23 GMT
X-Firefox-Spdy: h2

ups.inq.com/tagserver/init/isTrustedDomain

52.189.67.17

200 OK

0 B

URL HTTP/2
ups.inq.com/tagserver/init/isTrustedDomain
IP
52.189.67.17:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /tagserver/init/isTrustedDomain HTTP/1.1
Host: ups.inq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 48
Origin: https://ups.inq.com
Connection: keep-alive
Referer: https://ups.inq.com/tagserver/postToServer.min.htm?siteID=10005649&codeVersion=1668611184077
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:23 GMT
content-type: text/html; charset=utf-8
content-length: 0
server: TouchCommerce Server
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
samesite: Strict
p3p: policyref="http://ups.inq.com/w3c/p3p.xml", CP="NON DSP LAW CUR ADMi TAIi PSAi PSD TELi OUR SAMi IND
X-Firefox-Spdy: h2

siteintercept.qualtrics.com/WRSiteInterceptEngine/Asset.php?Module=SI_bIqWU0mwn3C8qFM&Version=28&Q_ORIGIN=https://www.ups.com&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web

104.17.209.240

200 OK

664 B

URL HTTP/2
siteintercept.qualtrics.com/WRSiteInterceptEngine/Asset.php?Module=SI_bIqWU0mwn3C8qFM&Version=28&Q_ORIGIN=https://www.ups.com&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web
IP
104.17.209.240:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text, with very long lines (1597), with no line terminators
Size
664 B (664 bytes)
Hash
147cd0a4bbbacbfd1bd870f7cd2810e4
0427b933606658e73722530b81556c88629de043
1c42aa75f0958b672421d78e1d125dcece1223776c8fa81b464588b5c58f23d2

HTTP Headers

GET /WRSiteInterceptEngine/Asset.php?Module=SI_bIqWU0mwn3C8qFM&Version=28&Q_ORIGIN=https://www.ups.com&Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:22 GMT
content-type: application/json
cf-ray: 77291073ecc3b512-OSL
access-control-allow-origin: *
age: 228132
cache-control: public, max-age=604800, s-maxage=604800, max-age=315360000
expires: Mon, 22 Nov 2032 05:10:07 GMT
last-modified: Fri, 25 Nov 2022 05:10:07 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: false
edge-control: max-age=604800
p3p: CP="CAO DSP COR CURa ADMa DEVa OUR IND PHY ONL UNI COM NAV INT DEM PRE"
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
servershortname: 
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

ups.inq.com/tagserver/logging/logline

52.189.67.17

200 OK

43 B

URL HTTP/2
ups.inq.com/tagserver/logging/logline
IP
52.189.67.17:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7

HTTP Headers

POST /tagserver/logging/logline HTTP/1.1
Host: ups.inq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 457
Origin: https://ups.inq.com
Connection: keep-alive
Referer: https://ups.inq.com/tagserver/postToServer.min.htm?siteID=10005649&codeVersion=1668611184077
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:23 GMT
content-type: image/gif
content-length: 43
server: TouchCommerce Server
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
samesite: Strict
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
p3p: policyref="http://ups.inq.com/w3c/p3p.xml", CP="NON DSP LAW CUR ADMi TAIi PSAi PSD TELi OUR SAMi IND
access-control-allow-origin: https://ups.inq.com
access-control-allow-credentials: true
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Authorization, Cookie, Content-Length, Content-Type, content-type, Depth, User-Agent, X-Requested-With, X-Protection-Id
access-control-allow-methods: OPTIONS, POST, GET
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.comodoca.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.comodoca.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
6ccdb6d44621f9da930ec3504d1c75da
e364ad39f826abc9e97bde64ba4e019cf2773f9c
84e3acd7cdcdf45f665d48ca59e20373a0c05962fa77065c7cbef29ced965a1b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 04:26:23 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Mon, 28 Nov 2022 05:44:40 GMT
Expires: Mon, 05 Dec 2022 05:44:39 GMT
Etag: "e364ad39f826abc9e97bde64ba4e019cf2773f9c"
Cache-Control: max-age=604139,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 1
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77291078d96eb4f9-OSL

filexfer.ups.com/nuance/nuance-chat.html?POST2SERVER

153.2.224.71

200 OK

333 B

URL HTTP/1.1
filexfer.ups.com/nuance/nuance-chat.html?POST2SERVER
IP
153.2.224.71:0
ASN
#12217 UPS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
333 B (333 bytes)
Hash
c75f0679b08483e95b391a050f5f4465
24a0219d75f30adcc939efe3a2875e1e01b566ce
c3b9c0c9a3243aa4ee0e67efbf35ba996293b80dca4a3eabfc16983ad36298b9

HTTP Headers

GET /nuance/nuance-chat.html?POST2SERVER HTTP/1.1
Host: filexfer.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~0~YAAQJ08kF8duqLCEAQAAiXbvywiXLn7ftQKE9koFDyIIZulOo3dvLkt8Z3TaH2pdpKwESpq9zqfP//6OyJDPprpp1aVSAF4r6ERsy/kVNWp7A+H4LdTLLvLtu/RZfYrJqiszIyEF/5vBZlPB8nlUbGwXuuN16EZdJUL1UIFdHLnag9zGrA80faKSJy8c+avgdyTFSrd45Ko0UXBlz3+4Y61zSJeSw1lMi6uGwaDG8xQiF/wgNup7dQu+TfNay3SkIbZDbiOTm0OeGSylL3gHUbH0ZzVGVMtx7WueIb0sCOrHcDmpK8RvVOOHbtdUj/YIY3swVW+oHKnYPZF9i55u7oCgW+2518QU6gx9tXMkS0jb3KJx2210v7ObiigiUvEIXT5ESw4+C80j/aQUpOox5w7UZKpIbw==~-1~-1~1669872321; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF85uqLCEAQAAF3jvyxHe3wD4zOnspirmCsv1xluj84T/ZNrOcCAOa3jSTW3Kv6M78f5L/8TGg6avB7yia+mv66GE1W88INP84P02njQx+L2AoQbkydSMhGg9OR/MyvpVsAnJy1n6QvP2nOjRSxOm8V5pImJ1zjefxAlMzTiZoqn5HX9KrG8qckeOgw4sCX8DIXP9UjKvzEFYQIb8mk0658FYZ4aBpqYR4SGR5xNg4a7yXrkRLbarWJinF6ANfcZnJoWrPGvG9iPimepYa17TbWGja+ycVMCU6m0LPcBFpCxbBDgYSmQDO9nrh/WfkUz7fLmboHsQ0aQf66pVDyOM6+JFqNA2G4hzqNQW2tGyqmN8z5x3iawbq76hhiiUiD/4HQ9sQ+R9UfVm/E0tvw1ISwGdvWmvmVmzEixfpq+XoguRQlnw9lHmBXXQI1lBlT3fQ0DMHpowQKzytYB2wKBY+xkgdK7rtaiFWOZmv0kRjF7k; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981; ups_language_preference=en_US; sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; AKA_A2=A; AMCV_036784BD57A8BB277F000101%40AdobeOrg=-2121179033%7CMCIDTS%7C19328%7CMCMID%7C38716240327731045150219515596249720677%7CMCAAMLH-1670473579%7C6%7CMCAAMB-1670473579%7C6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y%7CMCOPTOUT-1669875979s%7CNONE%7CMCCIDH%7C598016938%7CMCSYNCSOP%7C411-19335%7CvVersion%7C5.3.0; at_check=true; mbox=session#19ffa3520971478d9e76e3bbf2413749#1669870640|PC#19ffa3520971478d9e76e3bbf2413749.37_0#1733113580; utag_main=v_id:0184cbef700600025207a31da69300050002500900918$_sn:1$_se:1$_ss:1$_st:1669870577479$ses_id:1669868777479%3Bexp-session$_pn:1%3Bexp-session$fs_sample_user:false%3Bexp-session$dc_visit:1$dc_event:1%3Bexp-session$vapi_domain:ups.com$_prevpageid:global.page%3Bexp-1669872379492$dc_region:eu-central-1%3Bexp-session; RT="z=1&dm=ups.com&si=f05f933a-ce8c-48cb-a023-24a3cfd722f9&ss=lb4kr4ys&sl=1&tt=4pg&bcn=%2F%2F0217991d.akstat.io%2F&ld=4vb"; AMCVS_036784BD57A8BB277F000101%40AdobeOrg=1; s_nr=1669868779634-New; s_vnum=1672531200634%26vn%3D1; s_invisit=true; dayssincevisit=1669868779634; dayssincevisit_s=First%20Visit; s_cc=true; _gcl_au=1.1.943829796.1669868780; mboxEdgeCluster=37; PIM-SESSION-ID=wajc7SRqW7C26X7d; aam_cms=segments%3D22945447%7C17739880%7C9626487; aam_uuid=38274517553947141830264853495611281057; _fbp=fb.1.1669868779963.1218660965
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Date: Thu, 01 Dec 2022 04:26:23 GMT
Server: Apache
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Cache-Control: no-store, no-cache
Pragma: no-cache
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: X-CSRF-Token, Content-Type, loc
Last-Modified: Wed, 18 Oct 2017 17:03:46 GMT
Accept-Ranges: bytes
Content-Length: 333
Keep-Alive: timeout=65
Connection: Keep-Alive
Content-Type: text/html

ups.inq.com/tagserver/postToServer.min.js?siteID=10005649&codeVersion=1668611184077

52.189.67.17

200 OK

6.4 kB

URL HTTP/2
ups.inq.com/tagserver/postToServer.min.js?siteID=10005649&codeVersion=1668611184077
IP
52.189.67.17:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
Java source, ASCII text, with very long lines (807)
Size
6.4 kB (6410 bytes)
Hash
72bd19f8ade67f1a349b9e8b9b0f267d
87d2f5c5c0d4e3c9588402fedcb689058a4e5c18
956f55416cb5b9a6490a2cb62d4be17735b63b12e915285de3514f08be2e97da

HTTP Headers

GET /tagserver/postToServer.min.js?siteID=10005649&codeVersion=1668611184077 HTTP/1.1
Host: ups.inq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://filexfer.ups.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:23 GMT
content-type: application/javascript
content-length: 6410
server: TouchCommerce Server
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
samesite: Strict
cache-control: max-age=3600
p3p: policyref="http://ups.inq.com/w3c/p3p.xml", CP="NON DSP LAW CUR ADMi TAIi PSAi PSD TELi OUR SAMi IND
etag: "EV/6E6FubWF"
last-modified: Wed, 09 Nov 2022 20:01:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

ups.inq.com/tagserver/launch/initCustCachedId

52.189.67.17

200 OK

59 B

URL HTTP/2
ups.inq.com/tagserver/launch/initCustCachedId
IP
52.189.67.17:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
JSON data\012- , ASCII text, with no line terminators
Size
59 B (59 bytes)
Hash
2807857fdc254cae92420616db96dbb5
36cd9f0371a84b19cf7c9e2826af21d7c0f1990c
391fcda2dcb76024d4b611c00eb9fc5363017c654adec2c5673bc2c30662ef79

HTTP Headers

GET /tagserver/launch/initCustCachedId HTTP/1.1
Host: ups.inq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://filexfer.ups.com
Connection: keep-alive
Referer: https://filexfer.ups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:23 GMT
content-type: application/json; charset=UTF-8
content-length: 59
server: TouchCommerce Server
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
samesite: Strict
access-control-allow-origin: https://filexfer.ups.com
vary: Origin
access-control-allow-credentials: true
p3p: policyref="http://ups.inq.com/w3c/p3p.xml", CP="NON DSP LAW CUR ADMi TAIi PSAi PSD TELi OUR SAMi IND
cache-control: private
expires: Fri, 01 Dec 2023 04:26:23 GMT
copyright: 2016 Nuance TouchCommerce, all rights reserved.
content-language: en-US
X-Firefox-Spdy: h2

ups.inq.com/tagserver/launch/readChatOnCustomerCachedId

52.189.67.17

200 OK

43 B

URL HTTP/2
ups.inq.com/tagserver/launch/readChatOnCustomerCachedId
IP
52.189.67.17:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7

HTTP Headers

POST /tagserver/launch/readChatOnCustomerCachedId HTTP/1.1
Host: ups.inq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 43
Origin: https://ups.inq.com
Connection: keep-alive
Referer: https://ups.inq.com/tagserver/postToServer.min.htm?siteID=10005649&codeVersion=1668611184077
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:24 GMT
content-type: application/json
server: TouchCommerce Server
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
samesite: Strict
p3p: policyref="http://ups.inq.com/w3c/p3p.xml", CP="NON DSP LAW CUR ADMi TAIi PSAi PSD TELi OUR SAMi IND
X-Firefox-Spdy: h2

ups.inq.com/tagserver/logging/logline

52.189.67.17

200 OK

43 B

URL HTTP/2
ups.inq.com/tagserver/logging/logline
IP
52.189.67.17:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7

HTTP Headers

POST /tagserver/logging/logline HTTP/1.1
Host: ups.inq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 299
Origin: https://filexfer.ups.com
Connection: keep-alive
Referer: https://filexfer.ups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:24 GMT
content-type: image/gif
content-length: 43
server: TouchCommerce Server
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
samesite: Strict
access-control-allow-origin: https://filexfer.ups.com
vary: Origin
access-control-allow-credentials: true
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
p3p: policyref="http://ups.inq.com/w3c/p3p.xml", CP="NON DSP LAW CUR ADMi TAIi PSAi PSD TELi OUR SAMi IND
access-control-allow-headers: Accept, Accept-Charset, Accept-Encoding, Accept-Language, Authorization, Cookie, Content-Length, Content-Type, content-type, Depth, User-Agent, X-Requested-With, X-Protection-Id
access-control-allow-methods: OPTIONS, POST, GET
accept-ranges: bytes
X-Firefox-Spdy: h2

siteintercept.qualtrics.com/dxjsmodule/1.8ce69394dfc154e65174.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx

104.17.209.240

200 OK

6.8 kB

URL HTTP/2
siteintercept.qualtrics.com/dxjsmodule/1.8ce69394dfc154e65174.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx
IP
104.17.209.240:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (28783), with no line terminators
Size
6.8 kB (6824 bytes)
Hash
f8d03566d8be666daace9295f2e0bab7
cb27e5254d7e376a60e7a1444687b7ece2263b28
92437d2e079f96d2c729cc55cec00518380360af460853db21a6ddceadf17cd6

HTTP Headers

GET /dxjsmodule/1.8ce69394dfc154e65174.chunk.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:22 GMT
content-type: application/javascript
cf-ray: 77291073ecbeb512-OSL
access-control-allow-origin: *
age: 182383
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"7380-1845383cf10"
last-modified: Mon, 07 Nov 2022 19:14:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=29568
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

ups.inq.com/tagserver/incrementality/onEvent

52.189.67.17

200 OK

0 B

URL HTTP/2
ups.inq.com/tagserver/incrementality/onEvent
IP
52.189.67.17:0
ASN
#8075 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /tagserver/incrementality/onEvent HTTP/1.1
Host: ups.inq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 338
Origin: https://filexfer.ups.com
Connection: keep-alive
Referer: https://filexfer.ups.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:24 GMT
content-type: application/json; charset=UTF-8
content-length: 0
server: TouchCommerce Server
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
samesite: Strict
access-control-allow-origin: https://filexfer.ups.com
vary: Origin
access-control-allow-credentials: true
cache-control: no-cache, no-store, max-age=0, must-revalidate
expires: Thu, 01 Jan 1970 00:00:00 GMT
pragma: no-cache
p3p: policyref="http://ups.inq.com/w3c/p3p.xml", CP="NON DSP LAW CUR ADMi TAIi PSAi PSD TELi OUR SAMi IND
content-language: en-US
X-Firefox-Spdy: h2

yasser-elgharably.com/bricri.html

34.228.120.180

200 OK

0 B

URL HTTP/2
yasser-elgharably.com/bricri.html
IP
34.228.120.180:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /bricri.html HTTP/1.1
Host: yasser-elgharably.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 04:26:16 GMT
content-type: text/html
last-modified: Wed, 30 Nov 2022 17:40:40 GMT
vary: Accept-Encoding
etag: W/"63879598-e2"
x-powered-by: WordOps
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
x-download-options: noopen
content-encoding: gzip
X-Firefox-Spdy: h2

tags.tiqcdn.com/utag/ups/yoda/prod/utag.js

23.38.200.249

200 OK

0 B

URL HTTP/2
tags.tiqcdn.com/utag/ups/yoda/prod/utag.js
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /utag/ups/yoda/prod/utag.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "2d4f7816415e23e99f25acf9521883d9:1669243034.649754"
last-modified: Wed, 23 Nov 2022 22:37:14 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Thu, 01 Dec 2022 04:31:18 GMT
date: Thu, 01 Dec 2022 04:26:18 GMT
X-Firefox-Spdy: h2

scripts.demandbase.com/DZlgJRFL.min.js

143.204.55.88

200 OK

0 B

URL HTTP/2
scripts.demandbase.com/DZlgJRFL.min.js
IP
143.204.55.88:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /DZlgJRFL.min.js HTTP/1.1
Host: scripts.demandbase.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Wed, 26 Oct 2022 08:58:18 GMT
x-amz-version-id: Q16WPWMr7OIlRyITGl.H6gHc97FsCjs.
server: AmazonS3
content-encoding: gzip
date: Thu, 01 Dec 2022 03:28:53 GMT
cache-control: public, max-age=3600
etag: W/"78c2462539be981398ff47e7892a7651"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HaDbK3pXOezpV0QZHBvbVqMCB5kSY4CIMPG-D6K4SU4yP8mrVp2hVg==
age: 3527
strict-transport-security: max-age=63072000; includeSubDomains; preload
permissions-policy: accelerometer=(), camera=(), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=(), interest-cohort=()
X-Firefox-Spdy: h2

media-us1.digital.nuance.com/media/launch/ci/InqFramework.js?codeVersion=1668611184077

13.107.213.53

200 OK

0 B

URL HTTP/2
media-us1.digital.nuance.com/media/launch/ci/InqFramework.js?codeVersion=1668611184077
IP
13.107.213.53:0
ASN
#8068 MICROSOFT-CORP-MSN-AS-BLOCK

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /media/launch/ci/InqFramework.js?codeVersion=1668611184077 HTTP/1.1
Host: media-us1.digital.nuance.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=3600
content-type: application/javascript
content-encoding: gzip
last-modified: Thu, 03 Nov 2022 02:56:14 GMT
accept-ranges: bytes
etag: "CN+YVfWxP0M"
vary: Accept-Encoding
x-cache: TCP_HIT
server: TouchCommerce Server
strict-transport-security: max-age=31536000; includeSubDomains
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
samesite: Strict
x-azure-ref: 08CyIYwAAAACyW2cf39DQQKDYc80o6ZVHQU1TMDRFREdFMTkwNgBjYjRkNDNkNS0zNDI3LTQyZTMtYTYwZi1mMzBiYWVmMmZlM2M=
date: Thu, 01 Dec 2022 04:26:24 GMT
X-Firefox-Spdy: h2

www.ups.com/us/en/global.page

23.38.201.152

200 OK

0 B

URL HTTP/2
www.ups.com/us/en/global.page
IP
23.38.201.152:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /us/en/global.page HTTP/1.1
Host: www.ups.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Connection: keep-alive
Cookie: _abck=57A88D2941B405172AC2A08C08699B03~-1~YAAQJ08kF7puqLCEAQAA/3LvywjD2NpnkSuhixjjfvc9ipnMXYRFMfzeZQMC997L6AxNLZn87KlOnIrTwDVxELiap958+RED/PR/0Wd905bBX1s+NQEUPNFfen3MhPfFrvlIPcEzowwXxsMdsmsqGWa+GADh6XL0Yuzd24JT1sMJl0s7lYwAUoIEZqj5kjNl2dxbCik7LPC2nKq/vLYzJF5tUdX2bbzD9yGMSPv52HHCeOn+e7DfJOHnHymFhUXXpbSo89dc+m1kDpF0CS9RprU4++rBQQnwg/7UVKafxyEdqTsvGzm1jfdoJoWa23i2Cq0vNuJ3LAP9LMRIMjyxaE+L1V9FWHNK6IZL77dCc7Mc30Jfh4LiHtRG~-1~-1~1669872345; ak_bmsc=04368D3E1C5C0596C9FEA39B1514F4E8~000000000000000000000000000000~YAAQJ08kF7tuqLCEAQAA/3LvyxHAzSnSXYNZXx6gYGnoRXmjWT0Wo/IMAJ6fsYqKOn0WwhuTq9MXKLQLoV5/NtFFVDUVHZWSgvILh2Bxk78j57JIdOPsaVEu+lmvbPHKu0oCAFIk28B+oFDyOpPFzgJkhx4f2VRxM7QwiPPWWi32wxODd4vckD9ggrseVVSJ6RTmdEmil+tDPxxqUcEMgC+sggVDRfWCNJ4fjxO0WTNdAFXcsrkV4HaP/gXznGbArP2dc8rkdYWmpkO4MTUxmPdLqf11uZzqAMj7xht3y/Z0XACR6CwRf6TSa3OedhONlbUNuLfG27+gx1NmN42csi7qP7EsXPF9gD6yoCKf6Otpu8nIhunZu2NmvPQUfF9igTsjAG8j; bm_sz=F3CDE286996C40D6F97394164578E73C~YAAQJ08kF7xuqLCEAQAA/3LvyxG3T6RYDDhRAPMhialYFAuTLS+ooHhD7i3UGzTrIGQszj1JOIoHxgNqbtHM+H8CeV4ew+T+pvOw5WBepMOyZPgzdJCN5pavXkAzGLT9bIOJe+OnG8RkALXF6LvIiey2TbFIRfGdKoxgVqX1jVMNTcxa62+BQAuSnI8MTFgElXcfhRJvw7oskW8wLKqRhH3ouzjd3vIBwWthRPmxhRFmdYa+nuAHnZkRigtbi/SpPE4UqYMbvl3tX7IOQ6A9XXYkp1+ZQ7VOIinOejCeF2w=~3159620~3356981
TE: trailers

HTTP/2 200 OK
server: Apache
referrer-policy: same-origin
cache-control: no-store, no-cache
pragma: no-cache
content-type: text/html;charset=UTF-8
x-akamai-transformed: 9 - 0 pmb=mNONE,1mTOE,3mRUM,2
content-encoding: gzip
date: Thu, 01 Dec 2022 04:26:18 GMT
vary: Accept-Encoding
set-cookie: ups_language_preference=en_US; Max-Age=63072000; Expires=Sat, 30-Nov-2024 04:26:18 GMT; Domain=ups.com; Path=/; Secure; HttpOnly; SameSite=Strict
JSESSIONID=485AA53440CF960868BCCDC2862F90C1; Path=/; Secure; HttpOnly; SameSite=Strict
sharedsession=e151ca9c-aa7a-4d72-9ba8-173fb632ab01:m; Domain=ups.com; Path=/; Secure; HttpOnly; SameSite=Strict
AKA_A2=A; expires=Thu, 01-Dec-2022 05:26:18 GMT; path=/; domain=ups.com; secure; HttpOnly
bm_mi=254BD0BEC30572AE2885194F3860BB2E~YAAQJ08kF8BuqLCEAQAA3nPvyxGl6pyZGsLn6uy3IHdoD77yv9M8Zr6kZ1jnUGUdZHk8LyC5MZ7h0SvddVn4oKgxLint8N3jfF2jl9xcvhVStvW1XGi2aOS/AF/Y43ExONs1+7pEKr7KpBM9aNjHsKLJewM0PQZ7IXcndp2iGv9f6HueDEnJbRQe6lZiqney3TDRAhJ3qGaqTkIlgKJ+syJvV9k0Msw/CzsXWtqfofFPbUi86eU6XbbqL3GCu/xXFB4s98tcQ3loIFkMI5pwncqPuRj33jtI981Ju6z94fjztIgQg5m3pdJOOpk+yjDOKkWZxTEXQopcyRVF~1; Domain=.ups.com; Path=/; Expires=Thu, 01 Dec 2022 04:26:18 GMT; Max-Age=0; Secure
server-timing: cdn-cache; desc=MISS, edge; dur=144, origin; dur=50
x-akam-sw-version: 0.5.0
link: <https://www.ups.com/assets/resources/styles/fonts/Roboto-Regular.woff>;rel="preload";as="font";type="font/woff";crossorigin,<https://www.ups.com/assets/resources/styles/fonts/Roboto-Medium.woff>;rel="preload";as="font";type="font/woff";crossorigin, <https://tags.tiqcdn.com>;rel="preconnect",<https://akamai.tiqcdn.com>;rel="preconnect",<https://ups.demdex.net>;rel="preconnect",<https://ups.inq.com>;rel="preconnect",<https://media-us1.digital.nuance.com>;rel="preconnect",<https://p11.techlab-cdn.com>;rel="preconnect",<https://connect.facebook.net>;rel="preconnect",<https://js.adsrvr.org>;rel="preconnect",<https://id.rlcdn.com>;rel="preconnect"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
X-Firefox-Spdy: h2

api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&page_title=Select%20Your%20Location%20%7C%20UPS%20-%20United%20States

54.230.111.40

200 OK

0 B

URL HTTP/2
api.company-target.com/api/v2/ip.json?referrer=&page=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&page_title=Select%20Your%20Location%20%7C%20UPS%20-%20United%20States
IP
54.230.111.40:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /api/v2/ip.json?referrer=&page=https%3A%2F%2Fwww.ups.com%2Fus%2Fen%2Fglobal.page&page_title=Select%20Your%20Location%20%7C%20UPS%20-%20United%20States HTTP/1.1
Host: api.company-target.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 63
Origin: https://www.ups.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Connection: keep-alive

HTTP/2 200 OK
content-type: application/json;charset=utf-8
date: Thu, 01 Dec 2022 04:26:21 GMT
server: nginx
access-control-allow-origin: https://www.ups.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: 
access-control-max-age: 7200
access-control-allow-credentials: true
api-version: v2
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
identification-source: CACHE
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Wed, 30 Nov 2022 04:26:21 GMT
vary: Accept-Encoding, Origin
content-encoding: gzip
request-id: 8f5886d5-b4d3-4834-924f-28f08de76295
x-cache: Miss from cloudfront
via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1zujh-iTSt3E3p1YfZN4u0CVcM7oaAcQIneBt3wF1Nf7gVFQwj_-2g==
X-Firefox-Spdy: h2

tags.tiqcdn.com/utag/ups/yoda/prod/utag.sync.js

23.38.200.249

200 OK

0 B

URL HTTP/2
tags.tiqcdn.com/utag/ups/yoda/prod/utag.sync.js
IP
23.38.200.249:0
ASN
#16625 AKAMAI-AS

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /utag/ups/yoda/prod/utag.sync.js HTTP/1.1
Host: tags.tiqcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: application/x-javascript
etag: "2bba4b1c55b54fc9881db7353d300ab6:1669243034.845895"
last-modified: Wed, 23 Nov 2022 22:37:14 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=300
expires: Thu, 01 Dec 2022 04:31:18 GMT
date: Thu, 01 Dec 2022 04:26:18 GMT
X-Firefox-Spdy: h2

siteintercept.qualtrics.com/dxjsmodule/FeedbackButtonModule.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx

104.17.209.240

200 OK

0 B

URL HTTP/2
siteintercept.qualtrics.com/dxjsmodule/FeedbackButtonModule.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx
IP
104.17.209.240:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /dxjsmodule/FeedbackButtonModule.js?Q_CLIENTVERSION=1.81.0&Q_CLIENTTYPE=web&Q_BRANDID=upscx HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
TE: trailers

HTTP/2 200 OK
date: Thu, 01 Dec 2022 04:26:22 GMT
content-type: application/javascript
cf-ray: 77291073ecc2b512-OSL
access-control-allow-origin: *
age: 181889
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"102f7-1845383cf10"
last-modified: Mon, 07 Nov 2022 19:14:18 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=66295
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (96)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations