email.hrtrnd.com/c/1hDismMfNRirNLOopDFQZHlUXQAb
54.230.111.25301 Moved Permanently 167 B URL HTTP/1.1 email.hrtrnd.com/c/1hDismMfNRirNLOopDFQZHlUXQAb
IP 54.230.111.25:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /c/1hDismMfNRirNLOopDFQZHlUXQAb HTTP/1.1
Host: email.hrtrnd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 30 Jan 2023 14:38:55 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://email.hrtrnd.com/c/1hDismMfNRirNLOopDFQZHlUXQAb
X-Cache: Redirect from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: I1eS0uCM0t0EvdeJO1RtKsbYUl_QiBX58XnVGBtINt_szS1rrihVUg==
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8695
Expires: Mon, 30 Jan 2023 17:03:50 GMT
Date: Mon, 30 Jan 2023 14:38:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13349
Expires: Mon, 30 Jan 2023 18:21:24 GMT
Date: Mon, 30 Jan 2023 14:38:55 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7818
Expires: Mon, 30 Jan 2023 16:49:13 GMT
Date: Mon, 30 Jan 2023 14:38:55 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 13:43:12 GMT
content-type: application/json
age: 3343
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2doUzJuicRD1QlkDzRILDYyuldWPvClMxAKKUnmmtZknTKHJUSNLZx1DyW15Vzb91Si1XnOBTeM=
x-amz-request-id: XG65Z69D1768WJKM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 14:21:49 GMT
age: 1026
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 14:38:55 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash ce1ed48b77712f066b2bb488d758462f
8d3ad0ea5deab83efa19e8c369ef037713f89eb3
5a66fff57ece3416dd136eaa709365183889daf45707170d5073401700b897ae
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=104613
Date: Mon, 30 Jan 2023 14:38:56 GMT
Etag: "63d6cc25-1d7"
Expires: Tue, 31 Jan 2023 19:42:29 GMT
Last-Modified: Sun, 29 Jan 2023 19:42:29 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JoV7S0strTL1xtp5abyFuzyjgFWdjvSE6EJzU8BdiOnojZ4V0GAXFQ==
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 13:41:41 GMT
age: 3435
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7462
Expires: Mon, 30 Jan 2023 16:43:18 GMT
Date: Mon, 30 Jan 2023 14:38:56 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash aff437a0e7b47c6fa6b6712b9c407a93
f981ab8bf481f14ac153a4c388ff1e00fc815044
ccefe0c241fa76f043ff73aa7e692b2c2548c915152eb60ad2eb3e18478dc65e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:56 GMT
Server: ECS (amb/6B8D)
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash aff437a0e7b47c6fa6b6712b9c407a93
f981ab8bf481f14ac153a4c388ff1e00fc815044
ccefe0c241fa76f043ff73aa7e692b2c2548c915152eb60ad2eb3e18478dc65e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:56 GMT
Last-Modified: Mon, 30 Jan 2023 14:38:56 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
push.services.mozilla.com/
34.213.121.129101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.121.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zEHHJk6bmTsQjhF+UWv4Ag==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zaR1kJpeWmn3hzmQi0QweXt3yU0=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash de8bf33f4196f33ac2f8e3a0828a3d3e
cda7006f545c63c7aafa93c77ebde233bb26ea26
127d6a8555323a1b8c7a5c5b2e837aef3d1f398a88b3426688fe15130a855d39
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "127D6A8555323A1B8C7A5C5B2E837AEF3D1F398A88B3426688FE15130A855D39"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21587
Expires: Mon, 30 Jan 2023 20:38:44 GMT
Date: Mon, 30 Jan 2023 14:38:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash de8bf33f4196f33ac2f8e3a0828a3d3e
cda7006f545c63c7aafa93c77ebde233bb26ea26
127d6a8555323a1b8c7a5c5b2e837aef3d1f398a88b3426688fe15130a855d39
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "127D6A8555323A1B8C7A5C5B2E837AEF3D1F398A88B3426688FE15130A855D39"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21587
Expires: Mon, 30 Jan 2023 20:38:44 GMT
Date: Mon, 30 Jan 2023 14:38:57 GMT
Connection: keep-alive
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.16.148.64200 OK 7.2 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (21747)
Hash 4292e44eba0796aac4d0b7aab80daec2
8131fd92ed85c9e8378d78e2b668cd7163fdf875
0deff459ca0049e97fc03f4a80660ef7e69185057ffdcd1a462cd3bcaffb6e5b
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:57 GMT
content-type: application/javascript
content-length: 7151
content-encoding: gzip
content-md5: QpLkTroHlqrE0LequA2uwg==
last-modified: Fri, 27 Jan 2023 07:38:15 GMT
etag: 0x8DB003973D2D647
x-ms-request-id: 40175fdc-601e-00c5-10ad-32a6dd000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 72031
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 791af449ca77b50c-OSL
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.6.0.min.js?ver=6.1.1
69.16.175.42200 OK 31 kB URL HTTP/2 code.jquery.com/jquery-3.6.0.min.js?ver=6.1.1
IP 69.16.175.42:0
File type ASCII text, with very long lines (65447)
Hash 899f0189aaf034bbba5340f724d91dfa
210ea9de03968edb9d839ba4a0ce2d48666a8ab8
949b6597c5ea907a7ef3c8ca6d5ffc73be2352f9df485b78704e5c4dabac5d0f
GET /jquery-3.6.0.min.js?ver=6.1.1 HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:57 GMT
content-encoding: gzip
content-length: 30875
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15d9d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675089537.dop009.sk1.t,1675089537.cds231.sk1.hn,1675089537.cds210.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 749 B IP 142.250.74.131:0
Hash 415490bde85bed0b0745a77d8d3a6d36
6648cc3b859a35379955f4f917c845ca50372ddf
d83efd50b5d234a660d53c8f8dd9936e4d4a62de4947c80ab606e1fee312b163
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 991 B IP 142.250.74.131:0
Hash 15993e0971c87be98709f3e0fd07f92c
934d36401a21f5d4d89b6538bc9cbdb0b1344ecc
78b34678ef3108e96b6e551545f8341f29f94845bfa7d5524aca49162eb3f07d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-KH7KTM7
142.250.74.72200 OK 85 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-KH7KTM7
IP 142.250.74.72:0
File type ASCII text, with very long lines (23901)
Hash 274a034925c5e52d50e6aa0ae2e49b80
313162b55c4db87ea2e1a5b9ce2cd2f8503c79fb
27f3a3d3a1ba84fb2267cb0cbc6adab9e692104c32fd6de8d22810e79b7154c8
GET /gtm.js?id=GTM-KH7KTM7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 14:38:57 GMT
expires: Mon, 30 Jan 2023 14:38:57 GMT
cache-control: private, max-age=900
last-modified: Mon, 30 Jan 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 84928
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d81f874741beb45c89de8bb5c6de438e
a251ab903e654953631d84721479bbae55aa5cdf
ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.cookielaw.org/consent/fd2e7436-225f-4dff-bbe3-c08f91069ec2/fd2e7436-225f-4dff-bbe3-c08f91069ec2.json
104.16.148.64200 OK 1.9 kB URL HTTP/2 cdn.cookielaw.org/consent/fd2e7436-225f-4dff-bbe3-c08f91069ec2/fd2e7436-225f-4dff-bbe3-c08f91069ec2.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (4256), with no line terminators
Hash ab4f023b3a90ee706a8c7647fc1fa294
2b8839d0d75ab1f64e15fad761226d14b885c234
0d2e1114f311c8ea8cd8b1e390c7f6c95d982a2732787ead1475bc2d6edbd2d9
GET /consent/fd2e7436-225f-4dff-bbe3-c08f91069ec2/fd2e7436-225f-4dff-bbe3-c08f91069ec2.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:57 GMT
content-type: application/x-javascript
content-length: 1858
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: q08COzqQ7nBqjHZH/B+ilA==
last-modified: Mon, 07 Nov 2022 17:14:53 GMT
etag: 0x8DAC0E395FCC03F
x-ms-request-id: d13ec26c-201e-0086-1bcc-f28c34000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 10480
expires: Tue, 31 Jan 2023 14:38:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 791af44b1e221c16-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 898 B IP 142.250.74.131:0
Hash 78c70d434ec54953450006242b110f07
b3e29e9f745ca78d80bb209d21867acc85e77b55
12431fa53bc46b43a43c8b1c0963f8a832ea6062aab9ac24999fe2c126d66d2d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2
142.250.74.163200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2
IP 142.250.74.163:0
Hash 977dc7f230f9b000e0793a48a48b8b0d
d6e15039ec49a405ca1264c7e8ee19918de0d19a
5ee369f0cc6d9ff108a4ef86cc8e54f3fc41df35d09326f12d2936fbb44afad7
GET /s/mulish/v12/1Ptvg83HX_SGhgqk3wot.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://anteriad.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27428
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 21:59:20 GMT
expires: Sat, 27 Jan 2024 21:59:20 GMT
cache-control: public, max-age=31536000
age: 232777
last-modified: Mon, 11 Jul 2022 18:57:51 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 3.1 kB IP 142.250.74.131:0
Hash d8b066c7b22c9df49db65a69284397a7
97767046db9a32a87d7ac81c6ba214bca09b6c51
65762f459d27198d95a808d64b4008451b13f7032df8a570d5b7d1be907903ea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 1.5 kB IP 93.184.220.29:0
Hash 424dba5c29890c0a42e6bf625d89e811
284266e59836d6711fcbede21e664f23ec771e19
aa4a1cafff65a65ed6ed0f0d3462fce1ade88d5a65fb046ac02fe989c9c5cf3d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2713
Cache-Control: max-age=139748
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:58 GMT
Etag: "63d74acd-118"
Expires: Wed, 01 Feb 2023 05:28:06 GMT
Last-Modified: Mon, 30 Jan 2023 04:42:53 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash e5249cabce91316854a0709e2a0c4ab9
01dc3b0227716c994cd9919ceedf967a169576ff
4e3cf0ff7ac8adce36cbaab71747a7fe0f93d8d7aae42582d4b837bea2e5ecfe
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5769
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:58 GMT
Last-Modified: Mon, 30 Jan 2023 13:02:49 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
cdn.cookielaw.org/scripttemplates/6.38.0/otBannerSdk.js
104.16.148.64200 OK 90 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.38.0/otBannerSdk.js
IP 104.16.148.64:0
File type ASCII text, with very long lines (65455)
Hash 8f3f79d0cf195bb45a90f3f6ce52c765
0dbd651547da8916062b874fd671a005d4d4c876
5df755e7d1f1fad81564342c72ea8226bf3ce12aa5892556f37cab01998ce045
GET /scripttemplates/6.38.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:58 GMT
content-type: application/javascript
content-length: 89624
content-encoding: gzip
content-md5: jz950M8ZW7RakPP2zlLHZQ==
last-modified: Thu, 21 Jul 2022 06:31:17 GMT
etag: 0x8DA6AE29E465D1D
x-ms-request-id: 7e08b95c-701e-0174-68d7-9c18f5000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 41848
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 791af44d5822b50c-OSL
X-Firefox-Spdy: h2
anteriad.com/
141.193.213.20200 OK 15 kB IP 141.193.213.20:0
ASN #209242 Cloudflare London, LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash e3a6c9198eeee0ddef07307e9b54f459
988516e708c63967e2b139b6a6b055440b5cd94a
94f9f74189c8c00087eb1b856c950c509b670f92ea7f24a67486fe5eae9d2853
GET / HTTP/1.1
Host: anteriad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:57 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
link: <https://anteriad.com/wp-json/>; rel="https://api.w.org/", <https://anteriad.com/wp-json/wp/v2/pages/6>; rel="alternate"; type="application/json", <https://anteriad.com/>; rel=shortlink
x-tec-api-version: v1
x-tec-api-root: https://anteriad.com/wp-json/tribe/events/v1/
x-tec-api-origin: https://anteriad.com
server-timing: wp-load-alloptions-query;dur=2.32, wp-before-template;dur=82.05
x-powered-by: WP Engine
x-cacheable: SHORT
cache-control: max-age=600, must-revalidate
x-cache: HIT: 13
x-cache-group: normal
content-security-policy: upgrade-insecure-requests
permissions-policy: geolocation=(); midi=(); notifications=(); push=(); sync-xhr=(); microphone=(); camera=(); magnetometer=(); gyroscope=(); speaker=(self); vibrate=(); fullscreen=(self); payment=();
referrer-policy: origin
strict-transport-security: max-age=63072000
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 791af447ef51b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
px.anteriad.com/1/e/tcs.dhj?cls=Test&dmn=anteriad.com
23.43.135.163204 No Content 21 kB URL HTTP/1.1 px.anteriad.com/1/e/tcs.dhj?cls=Test&dmn=anteriad.com
IP 23.43.135.163:0
Hash 269f2af39091603ec58c361526b5d960
727cf8aacda80f2781caaafd9afadd3be971b9bc
a5e11649f7a811665117007017805d427b9160996d147268ff2a60977af9df23
GET /1/e/tcs.dhj?cls=Test&dmn=anteriad.com HTTP/1.1
Host: px.anteriad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
Cache-Control: private, max-age=3600
Expires: Mon, 30 Jan 2023 15:38:58 GMT
Date: Mon, 30 Jan 2023 14:38:58 GMT
Connection: keep-alive
X-Robots-Tag: noindex, nofollow
px.anteriad.com/1/e/tcs.dhj?dmn=anteriad.com
23.43.135.163204 No Content 0 B URL HTTP/1.1 px.anteriad.com/1/e/tcs.dhj?dmn=anteriad.com
IP 23.43.135.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /1/e/tcs.dhj?dmn=anteriad.com HTTP/1.1
Host: px.anteriad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
Cache-Control: private, max-age=3600
Expires: Mon, 30 Jan 2023 15:38:58 GMT
Date: Mon, 30 Jan 2023 14:38:58 GMT
Connection: keep-alive
X-Robots-Tag: noindex, nofollow
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Mon, 30 Jan 2023 13:46:59 GMT
expires: Mon, 30 Jan 2023 15:46:59 GMT
cache-control: public, max-age=7200
age: 3119
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
snap.licdn.com/li.lms-analytics/insight.min.js
95.101.11.48200 OK 4.8 kB URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js
IP 95.101.11.48:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (13351)
Hash 74f72658f6efd10c4c286ab07cd5e452
9fa4dfc644b6e818914f2f2c4fe4bdf791fd6d39
6681619d5962f95b3fccfa34a7f035664edb66522d237ea0c28a05851f9d295c
GET /li.lms-analytics/insight.min.js HTTP/1.1
Host: snap.licdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 10 Jan 2023 17:22:56 GMT
accept-ranges: bytes
content-type: application/x-javascript;charset=utf-8
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=58171
date: Mon, 30 Jan 2023 14:38:58 GMT
content-length: 4777
x-content-type-options: nosniff
x-cdn: AKAM
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/runtime~main.ea25c54c.js
54.230.111.67200 OK 18 kB URL HTTP/2 js.driftt.com/core/assets/js/runtime~main.ea25c54c.js
IP 54.230.111.67:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 6cc245a4510a850dbb7a60a4844e88af
18ee44f2c990f6743f95cfb9aea130b85701ff30
8a2722efcd7e5bef9b9301205ec5fa326f579abdc7830df304a34dd072d24359
GET /core/assets/js/runtime~main.ea25c54c.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:23 GMT
etag: W/"5242ba432c5a4820adfd6ac2335563bc"
x-amz-server-side-encryption: AES256
x-amz-version-id: WfZbZyYvSQYuMnv2wtSa6GvVxlplZaqN
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: FvQxyX-J-kUY4C2jJa5O-iK_EkPO_XSnnUbx8PIPzCkzqr3W1Yngxg==
age: 249242
X-Firefox-Spdy: h2
cdn.cookielaw.org/vendorlist/iab2Data.json
104.16.148.64200 OK 54 kB URL HTTP/2 cdn.cookielaw.org/vendorlist/iab2Data.json
IP 104.16.148.64:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65512), with no line terminators
Hash eaf0f3fe4e3b74bb97dd67c45a2b382a
00c753c4b56bf34340f90fadd08ba040dcc9692a
8155e659c2ef06056c0b125048781678688e37ede95ee97596ee8b17482f8bd2
GET /vendorlist/iab2Data.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:58 GMT
content-type: application/x-javascript
content-length: 53501
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: 6vDz/k47dLuX3WfEWis4Kg==
last-modified: Sun, 29 Jan 2023 15:42:21 GMT
etag: 0x8DB020F6916F100
x-ms-request-id: e1e1bb91-f01e-002e-5809-345821000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 10480
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 791af44ea9aa1c16-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bat.bing.com/bat.js
204.79.197.200200 OK 12 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39395), with no line terminators
Hash 4f378a725368a42971cd69e29f75db89
2a1cdf193b346d9281c6e04a9b3775e7fc1ae11e
6a2a9d238501343cb3f25e0f54f4ecc4ec2c4e0fa6b228cc72dc3fff90502078
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11552
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 23 Jan 2023 19:59:24 GMT
accept-ranges: bytes
etag: "076bc30652fd91:0"
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 16D7D7D5014F4A01BF1A018CE0C05C50 Ref B: OSL30EDGE0219 Ref C: 2023-01-30T14:38:58Z
date: Mon, 30 Jan 2023 14:38:57 GMT
X-Firefox-Spdy: h2
d1mw1zzypd871g.cloudfront.net/scripts/ti_sp.js
54.230.245.188200 OK 79 kB URL HTTP/2 d1mw1zzypd871g.cloudfront.net/scripts/ti_sp.js
IP 54.230.245.188:0
File type ASCII text, with very long lines (590)
Hash 1400970874add8a03a76148d9fd2f43d
603c1220c2a3f5f684872fc89c2d6098408d8ad5
7169b20ff9116852953e326ad3776ac06c0f14a5a21a3e07f3fb8b5c46418a61
GET /scripts/ti_sp.js HTTP/1.1
Host: d1mw1zzypd871g.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 79263
last-modified: Thu, 18 Mar 2021 09:13:37 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 30 Jan 2023 01:55:54 GMT
etag: "1400970874add8a03a76148d9fd2f43d"
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fUCXKihXFdW16WDAkWwNYG4Pz-dT5CNdreUkhwhCwdNBDk1lQQJOmw==
age: 45785
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/fd2e7436-225f-4dff-bbe3-c08f91069ec2/b05e5fe7-4ada-4d0f-a41e-0ba2c7b53e07/en.json
104.16.148.64200 OK 14 kB URL HTTP/2 cdn.cookielaw.org/consent/fd2e7436-225f-4dff-bbe3-c08f91069ec2/b05e5fe7-4ada-4d0f-a41e-0ba2c7b53e07/en.json
IP 104.16.148.64:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (65147), with no line terminators
Hash 2ad7dd43d50b94dd1056db2b6ef27fd0
1f17bfca74af3a51de73c98032053a7651921451
d8619f21bd8c34b89eb1152f660992bb3592db2960a268c1cd3aa8f75707ad92
GET /consent/fd2e7436-225f-4dff-bbe3-c08f91069ec2/b05e5fe7-4ada-4d0f-a41e-0ba2c7b53e07/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:58 GMT
content-type: application/x-javascript
content-length: 13833
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: KtfdQ9ULlN0QVtsrbvJ/0A==
last-modified: Mon, 07 Nov 2022 17:15:04 GMT
etag: 0x8DAC0E39CBFC567
x-ms-request-id: 3f38d05f-e01e-011c-3acc-f246a4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 10480
expires: Tue, 31 Jan 2023 14:38:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 791af44ea9a31c16-OSL
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/17.22abfce0.chunk.css
54.230.111.67200 OK 24 B URL HTTP/2 js.driftt.com/core/assets/css/17.22abfce0.chunk.css
IP 54.230.111.67:0
File type ASCII text, with no line terminators
Hash 0c5dad92482d9a7c7c253510f5082465
534b458f99b4d0bb90c2cf2c4bb3703ef44a52bf
5dbaf0a4ff0f8ac8c1b67550eee84390b089604ffaf71183e417636c7e183ac5
GET /core/assets/css/17.22abfce0.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 24
server: istio-envoy
date: Thu, 26 Jan 2023 20:13:51 GMT
last-modified: Tue, 11 Oct 2022 19:09:27 GMT
etag: "0c5dad92482d9a7c7c253510f5082465"
x-amz-server-side-encryption: AES256
x-amz-version-id: eR0JFDWwyA3gsnd_XajqmmtDUbC85CBL
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: rlWQOJH3DKTKlPehs1H5cJSaRifY-wUODRD40X9HlDjH4yArNlwzZQ==
age: 325507
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3520
Expires: Mon, 30 Jan 2023 15:37:38 GMT
Date: Mon, 30 Jan 2023 14:38:58 GMT
Connection: keep-alive
googleads.g.doubleclick.net/pagead/viewthroughconversion/520267791/?random=1675089550475&cv=11&fst=1675089550475&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fanteriad.com%2F&tiba=Anteriad%20%7C%20Full-Funnel%20B2B%20Marketing%20Solutions%20Provider&rfmt=3&fmt=4
142.250.74.98200 OK 891 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/520267791/?random=1675089550475&cv=11&fst=1675089550475&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fanteriad.com%2F&tiba=Anteriad%20%7C%20Full-Funnel%20B2B%20Marketing%20Solutions%20Provider&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (1865), with no line terminators
Hash 3940e529a0b098bed70bc17fd0285a1c
2883f9e093f4faf937b77a99ad78d79f3eff2e6b
f4fe0b05cc4699eb04f19c70768fe9643d7df64f31305f998a6b81a4b7a06671
GET /pagead/viewthroughconversion/520267791/?random=1675089550475&cv=11&fst=1675089550475&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fanteriad.com%2F&tiba=Anteriad%20%7C%20Full-Funnel%20B2B%20Marketing%20Solutions%20Provider&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 14:38:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 891
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 30-Jan-2023 14:53:58 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3520
Expires: Mon, 30 Jan 2023 15:37:38 GMT
Date: Mon, 30 Jan 2023 14:38:58 GMT
Connection: keep-alive
js.driftt.com/core/assets/js/30.57dfb56c.chunk.js
54.230.111.67200 OK 5.5 kB URL HTTP/2 js.driftt.com/core/assets/js/30.57dfb56c.chunk.js
IP 54.230.111.67:0
Hash 78b6e8a176620d1f57e78dfe3264d1b0
6b975781ea92ac8f5dcd34976c08e84197bfad46
792eab8f2111988806ef32e18fdb7c922c713501ff400086de490f437bbe681b
GET /core/assets/js/30.57dfb56c.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"b8addee34a5cd2241740a2e3094039b3"
x-amz-server-side-encryption: AES256
x-amz-version-id: PRu.RNHym52TA_hlIcQB1Vv5VUA1vVKS
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lr-4zP3XyfVBMyJ3FPR8gymPJVsObN4aso5C6zOtKxHiga4TwoUvfA==
age: 249242
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/41.a1867ad4.chunk.js
54.230.111.67200 OK 4.3 kB URL HTTP/2 js.driftt.com/core/assets/js/41.a1867ad4.chunk.js
IP 54.230.111.67:0
Hash bb06667eb59436264989e055410409b5
6a013b538c7c9703096e91f7e0a43bcfa4e53c18
09eb7f3b87ade4a454a2c5ec54c9fd6fdfd833ddd5fbb7a6f23f8e5af08beec7
GET /core/assets/js/41.a1867ad4.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"299dd262bf32831c99dc78a9c5b5ca43"
x-amz-server-side-encryption: AES256
x-amz-version-id: X151O2if9SUzZhsBRIHlOqKUakbFDRo_
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 5rlx4piRQMVFbHEHo5mZmKn4wwQgAkpJ6-I5GaUWKgMwI0Fm-cPe_Q==
age: 249242
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/12.d33926cb.chunk.js
54.230.111.67200 OK 6.6 kB URL HTTP/2 js.driftt.com/core/assets/js/12.d33926cb.chunk.js
IP 54.230.111.67:0
Hash 47ca2c0108fe43710e62e1b14867c937
1ae2f7dc1bdfba4db19806747fd44a102f57be58
865d89c33d5fbae8e52c6fa44cf152c0bbc3b3ca54e5c234d47834896eabba4b
GET /core/assets/js/12.d33926cb.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"bdcb035523ec144399213aa65a8430ff"
x-amz-server-side-encryption: AES256
x-amz-version-id: KyS4g55V4uBz7fjaZ0R1pHyOHsEBkZV6
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 27
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zza1yWWTtuaTyaZNKZOX-ML44WjuraEsmC85Iq3Hfstd1m0S3ZRBtw==
age: 249240
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 8bec493a-9c81-4cfd-b6e9-66f4f3d55cb7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOOJQEZSoAMFb1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf2a3b-5f0c9f3e4cac1ba26c802050;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 00:45:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3uybP14DBtrEK8ieNWHaQfz3Zl_JMl0_L9CGZgcusTjVCFIIaTpwIQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 00:23:18 GMT
age: 51340
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5190c0bdc6abe0ee258e9f8c20ddaf51
d60f280f8a742480527dbc32d08f321f972d4fcf
874b38a04aa3736e65aaef72da2cc2efceb208618267107a495bdfe51ec58e58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12507
x-amzn-requestid: 85c9adcd-b997-48ca-bbfb-ccdeaf3e8cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFaJoAMFqKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-2bcdd8c353d8429d2b1e95f6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UDJKl99GiUxTW_EgWFDjLaJZbKFhfaJR-XRLsbQphwHuCXczDlxrDA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:54:37 GMT
age: 60261
etag: "d60f280f8a742480527dbc32d08f321f972d4fcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: soTFEnYjNcti77h3FpnztwzR7ypv68NbyoI6DxS0NhU412ykFsWAgA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:00:38 GMT
age: 59900
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:53:08 GMT
age: 60350
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Wx-qjsrMLYpLmE-8QmpR46BeRySbUGL2Rrr6LqhEQ8jaEEj_6Aj0qg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:52:09 GMT
age: 60409
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe31ee140c2fd62e616c8a1edc9e78bb
7aa5fbdc8156514770ae620e81f1afef1c77890f
799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UNub7Gd4S0ogn5EJhtJVu8q1qML5_4eL2lIPQXiAuXy_q-XiR4s-5w==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:21 GMT
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
age: 60217
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
vars.hotjar.com/box-fc6c0cda90900662e5160cde908b3e86.html
54.230.111.94200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-fc6c0cda90900662e5160cde908b3e86.html
IP 54.230.111.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash c34915675a9e912c93dac934322be7d1
1d0c20a805821d76fdef8b95eace30ac659a9454
091ab4e6d3f86a5e7bc8c7c3e9805df420c13f77627902dd204abc1f28b6336d
GET /box-fc6c0cda90900662e5160cde908b3e86.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 27 Jan 2023 09:04:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "c34915675a9e912c93dac934322be7d1"
last-modified: Fri, 27 Jan 2023 09:03:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AO8IgzeidcvHuhzJTiDEJ_jABAoTONl4d6Jp5_pOdTxuraQg17bSnw==
age: 279292
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.driftt.com/core/assets/css/21.c695453b.chunk.css
54.230.111.67200 OK 365 B URL HTTP/2 js.driftt.com/core/assets/css/21.c695453b.chunk.css
IP 54.230.111.67:0
File type ASCII text, with very long lines (365), with no line terminators
Hash 06b2963b029c0824382815165bfea73e
de23fb128e2589cf384603cfbb7f6b7bef969b05
ec3a84e593065a50cd77ce9fba273b4196936940c0813ca248b045df2e2c8eff
GET /core/assets/css/21.c695453b.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 365
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: "06b2963b029c0824382815165bfea73e"
x-amz-server-side-encryption: AES256
x-amz-version-id: ObwTjzJ4TT60JlQVwXz0_ax56DSZu27m
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Fa7jti_4UezZDBETafMMhSCMFFLBij7SoWR6dWvrrZFP9ZTcHRPvaA==
age: 249241
X-Firefox-Spdy: h2
static.listenlayer.com/1839c28e-2303-4815-bfb8-4b0cdfa2aaea.json
104.21.96.47204 No Content 0 B URL HTTP/2 static.listenlayer.com/1839c28e-2303-4815-bfb8-4b0cdfa2aaea.json
IP 104.21.96.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /1839c28e-2303-4815-bfb8-4b0cdfa2aaea.json HTTP/1.1
Host: static.listenlayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: cache-control,content-type,x-pingother
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 14:38:58 GMT
x-amz-id-2: 3+rpOAehOBKw7v4bIUdFS9eDwt2u2aAj95POYwobzaUcXHTxRg0Jco2ypK7atkugq3BDpKsuLWY=
x-amz-request-id: 2V6GVDKAVM39NST4
access-control-allow-origin: *
access-control-allow-methods: PUT, POST, DELETE, GET
access-control-allow-headers: cache-control, content-type, x-pingother
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V2g9rzUNb%2FLrO34E9HwBSnYXZyskk8OOB2zNda2k%2BEEXSOQjXahds1HGkpdRGpndy4k0qTN9QQAgA%2BoIhd3EA%2Bac82%2BwIdQX8isTYujDhk2Yp%2FNGnnRAqUUK9IBFckz7ILv4TM3qLuO9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791af44fcb4db51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/50.de3b5864.chunk.js
54.230.111.67200 OK 102 kB URL HTTP/2 js.driftt.com/core/assets/js/50.de3b5864.chunk.js
IP 54.230.111.67:0
Size 102 kB (102077 bytes)
Hash 8d8e3cd00455b2c826e9b0d37d82e9c9
4abdaca7cec750af00330434a1f7dce92d37d6b1
dc632c0584d28aecf5cc32ce96a5291947494076744606e06f150f2a6c6a680e
GET /core/assets/js/50.de3b5864.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"114785899ceb423273fcc17aaad202e9"
x-amz-server-side-encryption: AES256
x-amz-version-id: 1DnDsXjV5U2x4yjXf3GCnDIDPlyIffBu
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZpMt5pEYKFmj5aU0KrxW2xHei4WMhCcG1cBaPso-tI4mjS-ZGOi60A==
age: 249241
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/19.8e79a39a.chunk.js
54.230.111.67200 OK 29 kB URL HTTP/2 js.driftt.com/core/assets/js/19.8e79a39a.chunk.js
IP 54.230.111.67:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 689dacc5b5be7e4d23839d702a089739
27c0df2ff723e7e3587d7745caa380b1f2aab95b
5c071a2da65dbbc61213a6fce64f32000e5f93faace787b24ee78ba17f38b6c6
GET /core/assets/js/19.8e79a39a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"c478a5bb4d7885e2b9250c6beeb4fd6d"
x-amz-server-side-encryption: AES256
x-amz-version-id: uwUNfVtyHdRKYycXgamRNBkk5aCRrwjq
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -gEHMF2BykZnZQoJWrL8DgpND6x7eDQRK9EDB6-4y1hbg8YTMXk62g==
age: 249242
X-Firefox-Spdy: h2
d1mw1zzypd871g.cloudfront.net/i?stm=1675089550972&e=pv&url=https%3A%2F%2Fanteriad.com%2F&page=Anteriad%20%7C%20Full-Funnel%20B2B%20Marketing%20Solutions%20Provider&tv=js-2.17.3&tna=trueInfluenceWebIntelligence&aid=my-site&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&cookie=1&eid=bd40e61d-8e94-49c4-903b-0cb188e9afe8&dtm=1675089550968&vp=1280x939&ds=1268x4312&vid=1&sid=3311a158-f47b-454c-bb97-9b3e540d2661&duid=3ce04f85-7d66-48d3-b1cc-c98fb9d3158d
54.230.245.188200 OK 670 B URL HTTP/2 d1mw1zzypd871g.cloudfront.net/i?stm=1675089550972&e=pv&url=https%3A%2F%2Fanteriad.com%2F&page=Anteriad%20%7C%20Full-Funnel%20B2B%20Marketing%20Solutions%20Provider&tv=js-2.17.3&tna=trueInfluenceWebIntelligence&aid=my-site&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&cookie=1&eid=bd40e61d-8e94-49c4-903b-0cb188e9afe8&dtm=1675089550968&vp=1280x939&ds=1268x4312&vid=1&sid=3311a158-f47b-454c-bb97-9b3e540d2661&duid=3ce04f85-7d66-48d3-b1cc-c98fb9d3158d
IP 54.230.245.188:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1x1, components 3\012- data
Hash 2c38cf52dd2eb69901b7cfe6f8f32a33
17ae90d78888f5a765214f71115197cad3c7abce
b7892514dd74a1b710dad6432923e301520fb52042bd8bc6b2cf30403dbecdeb
GET /i?stm=1675089550972&e=pv&url=https%3A%2F%2Fanteriad.com%2F&page=Anteriad%20%7C%20Full-Funnel%20B2B%20Marketing%20Solutions%20Provider&tv=js-2.17.3&tna=trueInfluenceWebIntelligence&aid=my-site&p=web&tz=UTC&lang=en-US&cs=UTF-8&res=1280x1024&cd=24&cookie=1&eid=bd40e61d-8e94-49c4-903b-0cb188e9afe8&dtm=1675089550968&vp=1280x939&ds=1268x4312&vid=1&sid=3311a158-f47b-454c-bb97-9b3e540d2661&duid=3ce04f85-7d66-48d3-b1cc-c98fb9d3158d HTTP/1.1
Host: d1mw1zzypd871g.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 670
last-modified: Thu, 18 Mar 2021 09:14:15 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 30 Jan 2023 08:47:41 GMT
etag: "2c38cf52dd2eb69901b7cfe6f8f32a33"
x-cache: Hit from cloudfront
via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: tFe_coK6CiAtuK9pkf0puXzeEfXjk7rZNFi1iLgzzV1skAceiYzSig==
age: 21078
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b67335a8e235eacf68e4b7f98cc5dc40
887a9b34cf2ba9371bbe8c93e362c174668cf812
1ad2f6328af6d819acd85f4e4646afcafd945e17e555d5eeb54244db83cd48fa
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash a369a4445d1fccf2ce045c3c4c3f3d67
d6f618e6150a4f9ac6eb5df4a503141a635605a2
d62c7913686c10d4c4b8d691d533256534da77cecc9fcf3f8aa885380dcc148b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
js.driftt.com/core/assets/css/10.18bfca70.chunk.css
54.230.111.67200 OK 2.9 kB URL HTTP/2 js.driftt.com/core/assets/css/10.18bfca70.chunk.css
IP 54.230.111.67:0
Hash 81106bcabda93209f3c3bda721f6a7aa
0c279a9b2c0f797d1d3eadbf33c7d52c529640a7
f01907c891a48ca8c7ff5aabf277550a361b5f597080bf8202b0744146bff6e4
GET /core/assets/css/10.18bfca70.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"dd670379de64b0621ee84574f3b8e73d"
x-amz-server-side-encryption: AES256
x-amz-version-id: W.Ed7skdAN0dSG59eVgsVvIsNBx.BMsL
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 20
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bVYu5c-Sngr34feP2hLS07uqKHvbEGWBcMHwbbwyT-bbBhexUAfxTQ==
age: 249241
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/520267791/?random=1675089550475&cv=11&fst=1675087200000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fanteriad.com%2F&tiba=Anteriad%20%7C%20Full-Funnel%20B2B%20Marketing%20Solutions%20Provider&fmt=3&is_vtc=1&random=46565594&rmt_tld=1&ipr=y
142.250.74.163200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/520267791/?random=1675089550475&cv=11&fst=1675087200000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fanteriad.com%2F&tiba=Anteriad%20%7C%20Full-Funnel%20B2B%20Marketing%20Solutions%20Provider&fmt=3&is_vtc=1&random=46565594&rmt_tld=1&ipr=y
IP 142.250.74.163:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/520267791/?random=1675089550475&cv=11&fst=1675087200000&bg=ffffff&guid=ON&async=1>m=2wg1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fanteriad.com%2F&tiba=Anteriad%20%7C%20Full-Funnel%20B2B%20Marketing%20Solutions%20Provider&fmt=3&is_vtc=1&random=46565594&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 30 Jan 2023 14:38:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
bat.bing.com/p/action/25151172.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/25151172.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/25151172.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: C4FAF936037443C88A49D62E05AB1E77 Ref B: OSL30EDGE0219 Ref C: 2023-01-30T14:38:58Z
date: Mon, 30 Jan 2023 14:38:58 GMT
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/38.627f88e6.chunk.js
54.230.111.67200 OK 1.9 kB URL HTTP/2 js.driftt.com/core/assets/js/38.627f88e6.chunk.js
IP 54.230.111.67:0
Hash e45c8e6379b3d9a57ed522b5cb1257a5
bd2e2cd34285f084f1b549c12bdcaadcbe3729f1
5a9f5276edd476332ae413cf960fa343fb63163d734a6ce461093698e4a19f54
GET /core/assets/js/38.627f88e6.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675089549858
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"d03d4e13d59e06f8ec44e39d9d85fa54"
x-amz-server-side-encryption: AES256
x-amz-version-id: VrL4qVVdcSDrKVxDzMDZ1ibCwb1LgkQ.
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: s8nGbTqDxjf7OupXv7SuwDi9ZtXEJA353P52H0EmhAZDMmhHl1nldQ==
age: 249241
X-Firefox-Spdy: h2
px.ads.linkedin.com/collect?v=2&fmt=js&pid=3900956&time=1675089550815&url=https%3A%2F%2Fanteriad.com%2F
13.107.42.14302 Found 0 B URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=3900956&time=1675089550815&url=https%3A%2F%2Fanteriad.com%2F
IP 13.107.42.14:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collect?v=2&fmt=js&pid=3900956&time=1675089550815&url=https%3A%2F%2Fanteriad.com%2F HTTP/1.1
Host: px.ads.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D3900956%26time%3D1675089550815%26url%3Dhttps%253A%252F%252Fanteriad.com%252F%26liSync%3Dtrue
set-cookie: UserMatchHistory=AQKgihIGLDhragAAAYYDHe8hWjdPGn6dT4EqUyScqzQYkBAP9Vfy1m8xJYtNeeAHGqESC1ukUYG_7g; Max-Age=2592000; Expires=Wed, 01 Mar 2023 14:38:58 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
AnalyticsSyncHistory=AQL-6yx0cuI0zwAAAYYDHe8hh7vyqC8ZChjV-M-fh7slTdYSQPzeayeH3S73gdqgl8YytEMnEXqTUPrM4xdcuQ; Max-Age=2592000; Expires=Wed, 01 Mar 2023 14:38:58 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure
lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure
bcookie="v=2&8e2c4c7c-ce1b-47f2-8129-60310827d7fc"; domain=.linkedin.com; Path=/; Secure; Expires=Tue, 30-Jan-2024 14:38:58 GMT; SameSite=None
lidc="b=VGST09:s=V:r=V:a=V:p=V:g=2478:u=1:x=1:i=1675089538:t=1675175938:v=2:sig=AQFK7L3kp4MnlFRw-aBaLKcuVNRTk46a"; Expires=Tue, 31 Jan 2023 14:38:58 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure
linkedin-action: 1
x-li-fabric: prod-lva1
x-li-pop: afd-prod-lva1-x
x-li-proto: http/2
x-li-uuid: AAXzfCzt+6gKliezON/Llg==
x-cache: CONFIG_NOCACHE
x-msedge-ref: Ref A: 773D22B77EE64CDA85C3A87B1722C697 Ref B: OSL30EDGE0410 Ref C: 2023-01-30T14:38:58Z
date: Mon, 30 Jan 2023 14:38:58 GMT
content-length: 0
X-Firefox-Spdy: h2
c.clarity.ms/c.gif
20.234.93.27302 Found 0 B IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.bing.com/c.gif?CtsSyncId=C5C71087A3594C6EA2CC56B8C5645273&RedC=c.clarity.ms&MXFR=22748F8861F56BCC19909D2165F565EA
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SM=T; domain=c.clarity.ms; path=/; SameSite=None; Secure;
MUID=22748F8861F56BCC19909D2165F565EA; domain=.clarity.ms; expires=Sat, 24-Feb-2024 14:38:58 GMT; path=/; SameSite=None; Secure; Priority=High;
date: Mon, 30 Jan 2023 14:38:58 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1141ae65ad448fb3438690d5042af728
aa8b236bb1099c9440bfe3e98530939623250c03
e55eeaf5cd454042706c3e2d7d2b0211e91087b430cb5bae6b9e030392f57b4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:58 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
region1.google-analytics.com/g/collect?v=2&tid=G-BS09JWWK6K>m=2oe1p0&_p=734654569&cid=296406068.1675089551&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675089550&sct=1&seg=0&dl=https%3A%2F%2Fanteriad.com%2F&dt=Anteriad%20%7C%20Full-Funnel%20B2B%20Marketing%20Solutions%20Provider&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-BS09JWWK6K>m=2oe1p0&_p=734654569&cid=296406068.1675089551&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675089550&sct=1&seg=0&dl=https%3A%2F%2Fanteriad.com%2F&dt=Anteriad%20%7C%20Full-Funnel%20B2B%20Marketing%20Solutions%20Provider&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-BS09JWWK6K>m=2oe1p0&_p=734654569&cid=296406068.1675089551&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675089550&sct=1&seg=0&dl=https%3A%2F%2Fanteriad.com%2F&dt=Anteriad%20%7C%20Full-Funnel%20B2B%20Marketing%20Solutions%20Provider&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://anteriad.com
date: Mon, 30 Jan 2023 14:38:58 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.38.0/assets/otFloatingFlat.json
104.16.148.64200 OK 2.7 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.38.0/assets/otFloatingFlat.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (8048)
Hash d2e0ef82a1f0595c7ac4dd07de92cd12
d6a6a80dbcaaef613a2706670cccf6ba8e369cd5
637e1ac836a11183e360fbbf7a8190d5995a23812c3e14273fefed2f5e07ef38
GET /scripttemplates/6.38.0/assets/otFloatingFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:59 GMT
content-type: application/json
content-length: 2702
content-encoding: gzip
content-md5: 0uDvgqHwWVx6xN0H3pLNEg==
last-modified: Thu, 21 Jul 2022 06:31:09 GMT
etag: 0x8DA6AE29992ABC9
x-ms-request-id: bd70e62f-601e-0142-36cc-f2b5a7000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 10481
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 791af452fde71c16-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.38.0/assets/v2/otPcTab.json
104.16.148.64200 OK 14 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.38.0/assets/v2/otPcTab.json
IP 104.16.148.64:0
File type JSON data\012- , ASCII text, with very long lines (51759)
Hash 34c6e079e588d474cfe1dfacaa5549f7
60428de73fc49c6887d34867150042e30394c2fa
87bf60fc784a0648130ed31c3010421e1c02f6e8a929d4c3cad2654c08cd25c7
GET /scripttemplates/6.38.0/assets/v2/otPcTab.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:59 GMT
content-type: application/json
content-length: 13981
content-encoding: gzip
content-md5: NMbgeeWI1HTP4d+sqlVJ9w==
last-modified: Thu, 21 Jul 2022 06:31:11 GMT
etag: 0x8DA6AE29AB8B18B
x-ms-request-id: 125703ca-501e-010e-3d8e-2c72b8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 10481
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 791af452fde91c16-OSL
X-Firefox-Spdy: h2
static.listenlayer.com/1839c28e-2303-4815-bfb8-4b0cdfa2aaea.json
104.21.96.47200 OK 56 kB URL HTTP/2 static.listenlayer.com/1839c28e-2303-4815-bfb8-4b0cdfa2aaea.json
IP 104.21.96.47:0
File type JSON data\012- , ASCII text, with very long lines (2995), with no line terminators
Hash bf688a5070fc180351f168e146dbc24e
cf52d9a338128f931379978aba890b4c1d42eedb
c5704ed9dcd4cb408b55c3f1799f07c453d54a2f97155b418d23db5014406347
GET /1839c28e-2303-4815-bfb8-4b0cdfa2aaea.json HTTP/1.1
Host: static.listenlayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
X-PINGOTHER: pingpong
Content-Type: application/json
Cache-Control: no-cache
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:58 GMT
content-type: application/json; charset=utf-8
x-amz-id-2: yrEwBi43aN2p5jiaeEh2MVHnjnp1V9wwhfOxboeP7z9lsD2NOtBq1Fg+3lnT+3NKpH/60Dqj9LM=
x-amz-request-id: 2V6JVRMTDGPY24AG
access-control-allow-origin: *
access-control-allow-methods: PUT, POST, DELETE, GET
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
cache-control: max-age=60
last-modified: Wed, 21 Dec 2022 02:55:30 GMT
etag: W/"7601d6d2f61ac63de85777a1e1954d3c"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8PmTIrK3vGMgYbWDrK77CDeAjKg%2FVo24dzWLxOFVM2aB07NQzL%2BlsjlpZbSKMbc6hvWTzMTBh0wcNE7T2PTsde5nf9%2BneEqOndEh7MmLVb6vaQo4xIh%2B1l%2BpwyrTSGCmzOlXaYvfufzO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791af4517d80b51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash a2eeda5662138c08076b4358873be6d2
08c88f8bc43030af45cb9a41c20d48ba8174e8e7
71efa8dc3fd695ce28323eb1dee15ef572a08d457a7f3bb25e579341ccefb7f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1102
Cache-Control: max-age=154354
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:38:59 GMT
Etag: "63d78a27-117"
Expires: Wed, 01 Feb 2023 09:31:33 GMT
Last-Modified: Mon, 30 Jan 2023 09:13:11 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
c.bing.com/c.gif?CtsSyncId=C5C71087A3594C6EA2CC56B8C5645273&RedC=c.clarity.ms&MXFR=22748F8861F56BCC19909D2165F565EA
204.79.197.200302 Found 0 B URL HTTP/2 c.bing.com/c.gif?CtsSyncId=C5C71087A3594C6EA2CC56B8C5645273&RedC=c.clarity.ms&MXFR=22748F8861F56BCC19909D2165F565EA
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /c.gif?CtsSyncId=C5C71087A3594C6EA2CC56B8C5645273&RedC=c.clarity.ms&MXFR=22748F8861F56BCC19909D2165F565EA HTTP/1.1
Host: c.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
location: https://c.clarity.ms/c.gif?CtsSyncId=C5C71087A3594C6EA2CC56B8C5645273&MUID=15FBF99C04D767A60FFDEB35052266F9
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: SRM_B=15FBF99C04D767A60FFDEB35052266F9; domain=c.bing.com; expires=Sat, 24-Feb-2024 14:38:59 GMT; path=/; SameSite=None; Secure;
x-powered-by: ASP.NET
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: F3B1F7BA0E2D4612B434E9FDFAB1A910 Ref B: OSL30EDGE0219 Ref C: 2023-01-30T14:38:59Z
date: Mon, 30 Jan 2023 14:38:58 GMT
content-length: 0
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/6.38.0/assets/otCommonStyles.css
104.16.148.64200 OK 7.7 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/6.38.0/assets/otCommonStyles.css
IP 104.16.148.64:0
File type ASCII text, with very long lines (11231)
Hash 0101b0a85d851c20c115853d6cf57836
af2a7137cfd00406a828ec6256a28b22be8d05ce
34cd6131697485cc36d02d0c85464acc950c849988252a53696c87001ff80880
GET /scripttemplates/6.38.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:59 GMT
content-type: text/css
content-md5: TLLtdkuMahUQRVIfmZNHNw==
last-modified: Thu, 21 Jul 2022 06:31:23 GMT
x-ms-request-id: e68c1287-c01e-00ae-382d-21fb8b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 10481
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 791af452fdec1c16-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.clarity.ms/tag/drmu4lraas?ref=gtm2
13.107.238.53200 OK 1.6 kB URL HTTP/2 www.clarity.ms/tag/drmu4lraas?ref=gtm2
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash 6402d3c802d6240f36bf687686bd2a2a
50f0bcad6246e9548dd23a91f4ea18b89c94d90c
3b92457c27647295ff08dc07d0bf316545f75059e3aeff5fde36b3414d7b8a8e
GET /tag/drmu4lraas?ref=gtm2 HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store
content-type: application/x-javascript
expires: -1
set-cookie: CLID=2bf9675114ca4a59bdb3635b88ae2443.20230130.20240130; expires=Tue, 30 Jan 2024 14:38:58 GMT; path=/; secure; samesite=none; httponly
request-context: appId=cid-v1:b1d896b3-bec7-448b-b764-240152e813e8
x-cache: CONFIG_NOCACHE
x-azure-ref: 0gtbXYwAAAADtnl6DWxKbTrfLCcKS8zW+Q1BIMzBFREdFMDQxNQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Mon, 30 Jan 2023 14:38:58 GMT
X-Firefox-Spdy: h2
c.clarity.ms/c.gif?CtsSyncId=C5C71087A3594C6EA2CC56B8C5645273&MUID=15FBF99C04D767A60FFDEB35052266F9
20.234.93.27200 OK 42 B URL HTTP/2 c.clarity.ms/c.gif?CtsSyncId=C5C71087A3594C6EA2CC56B8C5645273&MUID=15FBF99C04D767A60FFDEB35052266F9
IP 20.234.93.27:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 1 x 1\012- data
Hash 32023bb33cfb2a1990a4ef2d85b6ac16
23dcc6d4b5bfe00357fd0248bb5955b8e36bb8f1
99c2917ee5b2a01459a923bdd1c676f15ee73b62b87f696e6735312d26f51e12
GET /c.gif?CtsSyncId=C5C71087A3594C6EA2CC56B8C5645273&MUID=15FBF99C04D767A60FFDEB35052266F9 HTTP/1.1
Host: c.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: private, no-cache, proxy-revalidate, no-store
pragma: no-cache
content-type: image/gif
last-modified: Tue, 17 Jan 2023 20:36:49 GMT
accept-ranges: bytes
etag: "b1c8df6cb32ad91:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
set-cookie: ANONCHK=0; domain=c.clarity.ms; expires=Mon, 30-Jan-2023 14:48:59 GMT; path=/; SameSite=None; Secure;
date: Mon, 30 Jan 2023 14:38:59 GMT
content-length: 42
X-Firefox-Spdy: h2
services.listenlayer.com/api/v1/user-geolocation?accountId=1839c28e-2303-4815-bfb8-4b0cdfa2aaea&ip=91.90.42.154
104.21.96.47204 No Content 0 B URL HTTP/2 services.listenlayer.com/api/v1/user-geolocation?accountId=1839c28e-2303-4815-bfb8-4b0cdfa2aaea&ip=91.90.42.154
IP 104.21.96.47:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/v1/user-geolocation?accountId=1839c28e-2303-4815-bfb8-4b0cdfa2aaea&ip=91.90.42.154 HTTP/1.1
Host: services.listenlayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 14:38:59 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=O3CMieVuAnyEoC0nyGeX%2F7rShmycqFaOtQM6rydTahBhoHlUjJMbJ4QhonSSTQIIrcOknBE9G537dymAfkljKPkX7afX4Vv03CNAVqtxzCrEWNkrhymzt%2BgImONPT1FT6Exop%2BqE89sCCbI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791af45469c6b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/43.7ac85d58.chunk.js
54.230.111.67200 OK 7.4 kB URL HTTP/2 js.driftt.com/core/assets/js/43.7ac85d58.chunk.js
IP 54.230.111.67:0
File type ASCII text, with very long lines (25600), with no line terminators
Hash a8ccd5d8926c1f0e7434981a64e83789
76400d8f91da97f568cda763bbff53b048a751d9
7f4f24a5f67434f207e02c9f607b995bfdc49a04b83aac1caff623a2fc2656ce
GET /core/assets/js/43.7ac85d58.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"48be1563378f7c36bdadc0f2eb616856"
x-amz-server-side-encryption: AES256
x-amz-version-id: nlt9wYKKCayMlGWQHqpz8g8qDzXbqs5K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ly9Slj5RXp0Y6sxIHbIyQ4L_vX8bOKC0SgjHbv-XOsU1qVCvH-abyg==
age: 249242
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/25.22647a55.chunk.js
54.230.111.67200 OK 11 kB URL HTTP/2 js.driftt.com/core/assets/js/25.22647a55.chunk.js
IP 54.230.111.67:0
Hash 53e059dd4dc3991ab16e90ee3d95c0f7
bb056ff3355f44ac93c839c4312dc94b42d56b70
ad217b7be2b214c468ed21a80a94b9d43092fe5238422196fa68a72c05b886ee
GET /core/assets/js/25.22647a55.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"2ce6c446f71a395ff41647c9ba4b9c19"
x-amz-server-side-encryption: AES256
x-amz-version-id: 3Dq5XEj76miHFBtzwx_L1gh4_UbdDQYk
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9COOE8je-qOzmCeNjAE3FYd_TGvPHcVAEQhtKoS6Vgg_Pv7zcEc2iQ==
age: 249241
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash ea08ccf378c1f3a042343f20957e4c0c
0612afb109261f177ebaf312eb77d720d3e8783a
e2a903b736ca3efc1a0a2b5aa550cb653a808d3d9edd0cacc08fce7c4d4f4e63
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=88034
Date: Mon, 30 Jan 2023 14:38:59 GMT
Etag: "63d67d74-1d7"
Expires: Tue, 31 Jan 2023 15:06:13 GMT
Last-Modified: Sun, 29 Jan 2023 14:06:44 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: JSYAM-XZyNp__FpjfDNhW2ZCiwMzHclF73vlFSUb7LcCOKA5DE6lwA==
Age: 3569
js.driftt.com/core/assets/js/1.a06ac441.chunk.js
54.230.111.67200 OK 17 kB URL HTTP/2 js.driftt.com/core/assets/js/1.a06ac441.chunk.js
IP 54.230.111.67:0
File type ASCII text, with very long lines (54546), with no line terminators
Hash 99c151cd98dc8aa2a9d49f607b282ebb
0b916db2710b6c5addb7391c1124741c3c55943f
8b9f2388b7872e910d0f2be64178d5870628b11738e17a878b3fe1873727c353
GET /core/assets/js/1.a06ac441.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675089549858
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:19 GMT
etag: W/"543474d64f847873a71da746d7d2feb2"
x-amz-server-side-encryption: AES256
x-amz-version-id: u7B4zaaFSKDftPBeota51fTuGRRD0vyd
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: -tF9vWHIHtvGEFwEI64iCxYc9LnZusSwXP-iIHK3eYORttKQWAwNjg==
age: 249242
X-Firefox-Spdy: h2
bootstrap.api.drift.com/widget_bootstrap/ping
34.193.113.164200 OK 13 B URL HTTP/2 bootstrap.api.drift.com/widget_bootstrap/ping
IP 34.193.113.164:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /widget_bootstrap/ping HTTP/1.1
Host: bootstrap.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:59 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift380ad6d4529a3efc7bddf016446
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
bootstrap.api.drift.com/widget_bootstrap/ping
34.193.113.164200 OK 147 B URL HTTP/2 bootstrap.api.drift.com/widget_bootstrap/ping
IP 34.193.113.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8c612fc540876e0bda7a2bd19173f6c2
880ded2759c931aec0d70edb56b32dc40b649869
ed6856d25506eaf6ed7b1d955b09c5e38e03e58025cf30d2bfe42256625672e2
POST /widget_bootstrap/ping HTTP/1.1
Host: bootstrap.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 60
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:59 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: fc1d6980291051a9
vary: Accept-Encoding
content-length: 147
x-envoy-upstream-service-time: 14
server: istio-envoy
X-Firefox-Spdy: h2
px.anteriad.com/1/e/tcs.dhj?dmn=anteriad.com
23.43.135.163204 No Content 0 B URL HTTP/1.1 px.anteriad.com/1/e/tcs.dhj?dmn=anteriad.com
IP 23.43.135.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /1/e/tcs.dhj?dmn=anteriad.com HTTP/1.1
Host: px.anteriad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
Cache-Control: private, max-age=3600
Expires: Mon, 30 Jan 2023 15:38:59 GMT
Date: Mon, 30 Jan 2023 14:38:59 GMT
Connection: keep-alive
X-Robots-Tag: noindex, nofollow
px.anteriad.com/1/e/tcs.dhj?cls=Test&dmn=anteriad.com
23.43.135.163204 No Content 0 B URL HTTP/1.1 px.anteriad.com/1/e/tcs.dhj?cls=Test&dmn=anteriad.com
IP 23.43.135.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1/e/tcs.dhj?cls=Test&dmn=anteriad.com HTTP/1.1
Host: px.anteriad.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Content
Cache-Control: private, max-age=3600
Expires: Mon, 30 Jan 2023 15:38:59 GMT
Date: Mon, 30 Jan 2023 14:38:59 GMT
Connection: keep-alive
X-Robots-Tag: noindex, nofollow
js.driftt.com/core/assets/js/36.b49bf23f.chunk.js
54.230.111.67200 OK 9.7 kB URL HTTP/2 js.driftt.com/core/assets/js/36.b49bf23f.chunk.js
IP 54.230.111.67:0
File type ASCII text, with very long lines (36995), with no line terminators
Hash 0d98d39542318c17492395edc9eef4d0
3cdd82fdd130e80de7c715d30cc3ba6098a072dd
79687aa58478521a96371e01f68cfb108b89d5c0bd62c5b1a2f77fecf755183c
GET /core/assets/js/36.b49bf23f.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"4ae92c53ef226eb2a201fc855ccb7835"
x-amz-server-side-encryption: AES256
x-amz-version-id: SWSsVLzyOcOhQhmvR.pbvKyQeo7W0A10
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SKI2sSp9xfTbt1jsZQOzTDjTH-A3yFvHg8NXdKx5NVv6tu0YyX_QHA==
age: 249241
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/widget/init/v2
34.193.113.164200 OK 13 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/widget/init/v2
IP 34.193.113.164:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /monitoring/metrics/widget/init/v2 HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:59 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift9680a8748b28ac69932f3de85d0
content-length: 13
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash eb873c4859ab1a310883f76a9ba9bd7b
b0689c3e84e2869f276467b7d834320793ef68ad
ae1c2c52863e7ccc675f23fb51b8918f371af9981ebcf3bbe12fa90e0c602cdb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=102857
Date: Mon, 30 Jan 2023 14:39:00 GMT
Etag: "63d6aec2-1d7"
Expires: Tue, 31 Jan 2023 19:13:17 GMT
Last-Modified: Sun, 29 Jan 2023 17:37:06 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ji7IMBlVc4ZQP1X1JVNan5q2OYIeTbOymBgDqO7eHNp39jhyJ5m-qA==
Age: 5771
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash eb873c4859ab1a310883f76a9ba9bd7b
b0689c3e84e2869f276467b7d834320793ef68ad
ae1c2c52863e7ccc675f23fb51b8918f371af9981ebcf3bbe12fa90e0c602cdb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=98747
Date: Mon, 30 Jan 2023 14:39:00 GMT
Etag: "63d6aec2-1d7"
Expires: Tue, 31 Jan 2023 18:04:47 GMT
Last-Modified: Sun, 29 Jan 2023 17:37:06 GMT
Server: ECS (nyb/1D19)
X-Cache: Miss from cloudfront
Via: 1.1 c26775cc34c23943f6f5cfc9a3da9b4a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: k0u65qwN18on4vKTGgZ3Hf4tZnuZc7jwyf40XXL6nSEmYYhyUcwaUg==
Age: 1661
metrics.api.drift.com/monitoring/metrics/widget/init/v2
34.193.113.164200 OK 25 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/widget/init/v2
IP 34.193.113.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 61228f8f544358e9ea1f463f01b5853c
582766f30c82dc2df6938c8e16455fa5e329afb1
f8c91e009d219173c41b4c0b6e43ad28081f7580df6cb99a76aa0a476390ca47
POST /monitoring/metrics/widget/init/v2 HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization:
Content-Length: 344
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:39:00 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 3e759497fd2e7087
vary: Accept-Encoding
content-length: 25
x-envoy-upstream-service-time: 66
server: istio-envoy
X-Firefox-Spdy: h2
503d42zic5.execute-api.us-east-2.amazonaws.com/prod/visitor-checking
3.135.102.208200 OK 0 B URL HTTP/2 503d42zic5.execute-api.us-east-2.amazonaws.com/prod/visitor-checking
IP 3.135.102.208:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /prod/visitor-checking HTTP/1.1
Host: 503d42zic5.execute-api.us-east-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:39:00 GMT
content-type: application/json
content-length: 0
x-amzn-requestid: 84ddb5e4-3c43-4a8a-928b-158e8dd2228c
access-control-allow-origin: *
access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token
x-amz-apigw-id: fj50sH1NiYcFT2Q=
access-control-allow-methods: OPTIONS,POST
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash f09c57b928d5624ceea7edf8997ca75c
76b3d6aafa7189ac9700e2c68133475202e1efa5
2ee0991563e2879259a0e776919b7798cd91176e0479c680c64ef506f82d0329
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 14:39:00 GMT
Last-Modified: Mon, 30 Jan 2023 14:33:41 GMT
Server: ECS (nyb/1D35)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nWdToq0GW9W_sQIcKedL8P6C2PrPz2i-KRDUSA5EzHi4YlYtSrjEwg==
Age: 319
503d42zic5.execute-api.us-east-2.amazonaws.com/prod/visitor-checking
3.135.102.208200 OK 691 B URL HTTP/2 503d42zic5.execute-api.us-east-2.amazonaws.com/prod/visitor-checking
IP 3.135.102.208:0
File type JSON data\012- , ASCII text, with very long lines (691), with no line terminators
Hash 9f9d77483969b138dd5c2923fcef59ef
a32ae5ec577f883970ac6417af155915f910bc30
49304c61534ed9fafbcd9b6d249b76f9afd11497fba8b58009e1049dcb8c29fe
POST /prod/visitor-checking HTTP/1.1
Host: 503d42zic5.execute-api.us-east-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Content-Type: application/json
Content-Length: 22544
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:39:00 GMT
content-type: application/json
content-length: 691
x-amzn-requestid: 422094e0-10da-4614-b962-5e938df7d022
access-control-allow-origin: *
x-amz-apigw-id: fj50uEiciYcFpZA=
access-control-request-method: *
x-amzn-trace-id: Root=1-63d7d684-7e675dd4432cba4844e58b13;Sampled=0
access-control-allow-credentials: true
X-Firefox-Spdy: h2
1165458-8.chat.api.drift.com/ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTE2NTQ1OC0xNzExMzk2NjcxOC00ZAAGb3JnX2lkbQAAAAcxMTY1NDU4ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMTcxMTM5NjY3MThkAAl1c2VyX3R5cGVkAARsZWFkbgYAM_QdA4YBYgABUYA.POQnzD5HKviFqXwP6KY0PzxJUOiIMaaS0AX8dZwAvJo&remote_ip=18.232.245.220&vsn=2.0.0
50.16.172.222101 Switching Protocols 0 B URL HTTP/1.1 1165458-8.chat.api.drift.com/ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTE2NTQ1OC0xNzExMzk2NjcxOC00ZAAGb3JnX2lkbQAAAAcxMTY1NDU4ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMTcxMTM5NjY3MThkAAl1c2VyX3R5cGVkAARsZWFkbgYAM_QdA4YBYgABUYA.POQnzD5HKviFqXwP6KY0PzxJUOiIMaaS0AX8dZwAvJo&remote_ip=18.232.245.220&vsn=2.0.0
IP 50.16.172.222:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/websocket?session_token=SFMyNTY.g2gDdAAAAAVkAAJpZG0AAAAVMTE2NTQ1OC0xNzExMzk2NjcxOC00ZAAGb3JnX2lkbQAAAAcxMTY1NDU4ZAAJc2NvcGVfc2V0bQAAAARsZWFkZAAHdXNlcl9pZG0AAAALMTcxMTM5NjY3MThkAAl1c2VyX3R5cGVkAARsZWFkbgYAM_QdA4YBYgABUYA.POQnzD5HKviFqXwP6KY0PzxJUOiIMaaS0AX8dZwAvJo&remote_ip=18.232.245.220&vsn=2.0.0 HTTP/1.1
Host: 1165458-8.chat.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://js.driftt.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aRJP6ncY9ZpY0UBp4+66zQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Mon, 30 Jan 2023 14:39:00 GMT
Connection: upgrade
cache-control: max-age=0, private, must-revalidate
sec-websocket-accept: r0uSEDTgIQwh1OHkOg6o9eZeMAo=
server: Cowboy
upgrade: websocket
event.api.drift.com/track
34.193.113.164200 OK 77 kB URL HTTP/2 event.api.drift.com/track
IP 34.193.113.164:0
Hash b05066482924f7f2566f6d67f0af831c
5e6f1b59f7da29db5e474be6330712c21834f937
356268b9e3723442f8ce25cb0457d9a248fbc83f5dd6be18a9bddad1c5fff432
OPTIONS /track HTTP/1.1
Host: event.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:39:01 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift6c37f134f8c8adbda99f05b5c8b
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
targeting.api.drift.com/targeting/evaluate_with_log
34.193.113.164200 OK 13 B URL HTTP/2 targeting.api.drift.com/targeting/evaluate_with_log
IP 34.193.113.164:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /targeting/evaluate_with_log HTTP/1.1
Host: targeting.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:39:01 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift58ba7684f9b847fb3ee9e91c847
content-length: 13
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:58 GMT
expires: Fri, 26 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 361983
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
event.api.drift.com/track
34.193.113.164200 OK 1.2 kB URL HTTP/2 event.api.drift.com/track
IP 34.193.113.164:0
File type gzip compressed data, max compression\012- data
Hash f10c3a62367897f45267108d6f463f63
287320e4cb9558abbe6a9b4f4a4fa49e397eb772
2b6301f0c73433aaec1673779f7fe7e0684bf082a834ea328f5e207c88d41813
POST /track HTTP/1.1
Host: event.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNzExMzk2NjcxOCIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjExNjU0NTgiLCJleHAiOjE3MDY2MjU1NDAsImlhdCI6MTY3NTA4OTU0MH0.6PNEGUB6ZAhn7vE15YLcxOUX_MLmXkXkgckaAtWHbgk8c84lr5TO3pKva6Z-bFnRiO5p1Pm4CnzZQQWm58f6XQ
Content-Length: 387
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:39:01 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 2fd33b9f6005b6cb
content-length: 542
x-envoy-upstream-service-time: 1
server: istio-envoy
X-Firefox-Spdy: h2
targeting.api.drift.com/targeting/evaluate_with_log
34.193.113.164200 OK 322 B URL HTTP/2 targeting.api.drift.com/targeting/evaluate_with_log
IP 34.193.113.164:0
File type JSON data\012- , ASCII text, with very long lines (758), with no line terminators
Hash d12649351ac801ee2af0d1c8beccd612
f464e4ff2f0f92e1235ad9e96fc70461eb6ab598
1fb5d53edce90b2e160ad583a9f216b1a16d4d0d3ef20c3bcbb162b95be41273
POST /targeting/evaluate_with_log HTTP/1.1
Host: targeting.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNzExMzk2NjcxOCIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjExNjU0NTgiLCJleHAiOjE3MDY2MjU1NDAsImlhdCI6MTY3NTA4OTU0MH0.6PNEGUB6ZAhn7vE15YLcxOUX_MLmXkXkgckaAtWHbgk8c84lr5TO3pKva6Z-bFnRiO5p1Pm4CnzZQQWm58f6XQ
Content-Length: 766
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:39:01 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 5dd1b8c398c5fb90
vary: Accept-Encoding
content-encoding: gzip
content-length: 322
x-envoy-upstream-service-time: 2
server: istio-envoy
X-Firefox-Spdy: h2
presence.api.drift.com/ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFTExNjU0NTgtMTcxMTM5NjY3MTgtNGQABm9yZ19pZG0AAAAHMTE2NTQ1OGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzE3MTEzOTY2NzE4ZAAJdXNlcl90eXBlZAAEbGVhZGQABnNpZ25lZG4GADf0HQOGAQ.V5bLr90az3NuDsW0swo7rR9pRSeXe5sWC1pHoz0rWv0&remote_ip=18.232.245.220&vsn=2.0.0
52.0.218.127101 Switching Protocols 0 B URL HTTP/1.1 presence.api.drift.com/ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFTExNjU0NTgtMTcxMTM5NjY3MTgtNGQABm9yZ19pZG0AAAAHMTE2NTQ1OGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzE3MTEzOTY2NzE4ZAAJdXNlcl90eXBlZAAEbGVhZGQABnNpZ25lZG4GADf0HQOGAQ.V5bLr90az3NuDsW0swo7rR9pRSeXe5sWC1pHoz0rWv0&remote_ip=18.232.245.220&vsn=2.0.0
IP 52.0.218.127:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/websocket?session_token=SFMyNTY.g3QAAAACZAAEZGF0YXQAAAAFZAACaWRtAAAAFTExNjU0NTgtMTcxMTM5NjY3MTgtNGQABm9yZ19pZG0AAAAHMTE2NTQ1OGQACXNjb3BlX3NldG0AAAAEbGVhZGQAB3VzZXJfaWRtAAAACzE3MTEzOTY2NzE4ZAAJdXNlcl90eXBlZAAEbGVhZGQABnNpZ25lZG4GADf0HQOGAQ.V5bLr90az3NuDsW0swo7rR9pRSeXe5sWC1pHoz0rWv0&remote_ip=18.232.245.220&vsn=2.0.0 HTTP/1.1
Host: presence.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://js.driftt.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: gyLcIF3KNsMfTrfFc08c/w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
cache-control: max-age=0, private, must-revalidate
connection: Upgrade
date: Mon, 30 Jan 2023 14:39:00 GMT
sec-websocket-accept: sIVw6FQZzY9uPXhuBc+ahYllXY4=
server: Cowboy
upgrade: websocket
flow.api.drift.com/flows/render_initial_v3
34.193.113.164200 OK 13 B URL HTTP/2 flow.api.drift.com/flows/render_initial_v3
IP 34.193.113.164:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /flows/render_initial_v3 HTTP/1.1
Host: flow.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:39:01 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift764cd2046549a6709bc470143a9
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
flow.api.drift.com/flows/render_initial_v3
34.193.113.164200 OK 2.1 kB URL HTTP/2 flow.api.drift.com/flows/render_initial_v3
IP 34.193.113.164:0
File type JSON data\012- , ASCII text, with very long lines (4068), with no line terminators
Hash 706a01f0377a3137e498cc3cc6c70193
513573f1914fb1abe0f56475d8aade47ca7ad2cc
018773d4cc6e7a348c0abb99f8c4a27efcc98dfabaeb212aaf6ebe366155b396
POST /flows/render_initial_v3 HTTP/1.1
Host: flow.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNzExMzk2NjcxOCIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjExNjU0NTgiLCJleHAiOjE3MDY2MjU1NDAsImlhdCI6MTY3NTA4OTU0MH0.6PNEGUB6ZAhn7vE15YLcxOUX_MLmXkXkgckaAtWHbgk8c84lr5TO3pKva6Z-bFnRiO5p1Pm4CnzZQQWm58f6XQ
Content-Length: 445
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:39:01 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 5d7449900c67315
vary: Accept-Encoding
content-encoding: gzip
content-length: 2077
x-envoy-upstream-service-time: 39
server: istio-envoy
X-Firefox-Spdy: h2
driftt.imgix.net/https%3A%2F%2Fdriftt.imgix.net%2Fhttps%253A%252F%252Fs3.us-east-1.amazonaws.com%252Fcustomer-api-avatars-prod%252F1494448%252F891ceefe55e8567f235c71be2689c8a3kh59c3vxvzfx%3Ffit%3Dmax%26fm%3Dpng%26h%3D200%26w%3D200%26s%3Dfdb553c7e1b7e033f5a9127dd7d3b7be?fit=max&fm=png&h=200&w=200&s=5e6ca268718fbcd13b4562bb8855bca9
151.101.246.208200 OK 1.3 kB URL HTTP/2 driftt.imgix.net/https%3A%2F%2Fdriftt.imgix.net%2Fhttps%253A%252F%252Fs3.us-east-1.amazonaws.com%252Fcustomer-api-avatars-prod%252F1494448%252F891ceefe55e8567f235c71be2689c8a3kh59c3vxvzfx%3Ffit%3Dmax%26fm%3Dpng%26h%3D200%26w%3D200%26s%3Dfdb553c7e1b7e033f5a9127dd7d3b7be?fit=max&fm=png&h=200&w=200&s=5e6ca268718fbcd13b4562bb8855bca9
IP 151.101.246.208:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4842), with no line terminators
Hash 3d415f0bd3685c6f1bae40c819bd9cae
637ebe1b9d23e70be761827df102412934ad2f20
e7e6817ae4d32611946f8ad6b7060367eeb9e36d4854e132470f297baa166c30
GET /https%3A%2F%2Fdriftt.imgix.net%2Fhttps%253A%252F%252Fs3.us-east-1.amazonaws.com%252Fcustomer-api-avatars-prod%252F1494448%252F891ceefe55e8567f235c71be2689c8a3kh59c3vxvzfx%3Ffit%3Dmax%26fm%3Dpng%26h%3D200%26w%3D200%26s%3Dfdb553c7e1b7e033f5a9127dd7d3b7be?fit=max&fm=png&h=200&w=200&s=5e6ca268718fbcd13b4562bb8855bca9 HTTP/1.1
Host: driftt.imgix.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=315360000
last-modified: Wed, 17 Aug 2022 17:17:52 GMT
content-encoding: gzip
server: imgix
x-imgix-id: 820d49ea25e39dd4a5bda806e0f5b0922507b5d5
x-imgix-render-farm: 01.592
date: Mon, 30 Jan 2023 14:39:01 GMT
age: 11499633
accept-ranges: bytes
content-type: image/svg+xml
access-control-allow-origin: *
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
x-served-by: cache-sjc10047-SJC, cache-hel1410023-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 1335
X-Firefox-Spdy: h2
targeting.api.drift.com/impressions/widget
34.193.113.164200 OK 13 B URL HTTP/2 targeting.api.drift.com/impressions/widget
IP 34.193.113.164:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /impressions/widget HTTP/1.1
Host: targeting.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:39:01 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drift2f70eb246afbd7cd0de2265ac2b
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/45.e483d03f.chunk.css
54.230.111.67200 OK 900 B URL HTTP/2 js.driftt.com/core/assets/css/45.e483d03f.chunk.css
IP 54.230.111.67:0
File type ASCII text, with very long lines (900), with no line terminators
Hash 0bd11a8facc0a9d41713c64ed1ba1289
23d92b5b9138666f5c33517d53451a6e2e8ec30a
12ffe3ad71f763d9057baf43e0f1c1482bb9a0372602020554c4d52f52b37981
GET /core/assets/css/45.e483d03f.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675089549858
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 900
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:59 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: "0bd11a8facc0a9d41713c64ed1ba1289"
x-amz-server-side-encryption: AES256
x-amz-version-id: lNXyJmRPPvjoX1lE7kLUDcudszdamfiT
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 26
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qtPrsGsshaEok0Mhu8AXw40at79WMHpmQjWtUdHeOCNW6K_4ODEIMQ==
age: 249242
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/45.40610f62.chunk.js
54.230.111.67200 OK 303 B URL HTTP/2 js.driftt.com/core/assets/js/45.40610f62.chunk.js
IP 54.230.111.67:0
File type ASCII text, with very long lines (303), with no line terminators
Hash 61295cbc356b9fefa3079a9a98648b8b
350aba5df828006468457b3eef924038fe007bb7
7af1e7b22d7aec8456cb192b0f0054d06dfbe937ac24d42ee0ec56fe33f6a3e8
GET /core/assets/js/45.40610f62.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675089549858
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 303
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:59 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: "61295cbc356b9fefa3079a9a98648b8b"
x-amz-server-side-encryption: AES256
x-amz-version-id: lmubNT1L2FbtlDkNH1FU_9w_RPYj50.g
accept-ranges: bytes
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qtulixPnOfMQyzKtURcgrA01aD4r9gGTwQ8E1YAOeN5QUmLkkDq8yA==
age: 249242
X-Firefox-Spdy: h2
targeting.api.drift.com/impressions/widget
34.193.113.164204 No Content 0 B URL HTTP/2 targeting.api.drift.com/impressions/widget
IP 34.193.113.164:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /impressions/widget HTTP/1.1
Host: targeting.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNzExMzk2NjcxOCIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjExNjU0NTgiLCJleHAiOjE3MDY2MjU1NDAsImlhdCI6MTY3NTA4OTU0MH0.6PNEGUB6ZAhn7vE15YLcxOUX_MLmXkXkgckaAtWHbgk8c84lr5TO3pKva6Z-bFnRiO5p1Pm4CnzZQQWm58f6XQ
Content-Length: 656
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 30 Jan 2023 14:39:01 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
requestid: bed79f4d9613c0b
x-envoy-upstream-service-time: 11
server: istio-envoy
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 136919
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://anteriad.com
access-control-allow-credentials: true
date: Mon, 30 Jan 2023 14:39:01 GMT
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/event2/bulk
34.193.113.164200 OK 13 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/event2/bulk
IP 34.193.113.164:0
File type ASCII text, with no line terminators
Hash 1424eb76249899d757e4d168341a50dc
42101e71440abd46c8112a96d4d5c0dd445120ce
16f1efa415bfdd7abcf8fdd76cc05ae6fa66ffdfdc730368ecea89ecfe5c3a12
OPTIONS /monitoring/metrics/event2/bulk HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type
Referer: https://js.driftt.com/
Origin: https://js.driftt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:39:02 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: text/plain
allow: POST,OPTIONS
requestid: drifte2ebd3643f0b9866aa200b39095
content-length: 13
x-envoy-upstream-service-time: 0
server: istio-envoy
X-Firefox-Spdy: h2
metrics.api.drift.com/monitoring/metrics/event2/bulk
34.193.113.164200 OK 25 B URL HTTP/2 metrics.api.drift.com/monitoring/metrics/event2/bulk
IP 34.193.113.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 61228f8f544358e9ea1f463f01b5853c
582766f30c82dc2df6938c8e16455fa5e329afb1
f8c91e009d219173c41b4c0b6e43ad28081f7580df6cb99a76aa0a476390ca47
POST /monitoring/metrics/event2/bulk HTTP/1.1
Host: metrics.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Authorization: Bearer eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzUxMiJ9.eyJzdWIiOiIxNzExMzk2NjcxOCIsImNsaWVudElkIjoiZjZ6dWl6ZHloeHJtN3IiLCJ1c2VySWRUeXBlIjoiTEVBRCIsInNjb3BlIjoibGVhZCIsImlzcyI6IjExNjU0NTgiLCJleHAiOjE3MDY2MjU1NDAsImlhdCI6MTY3NTA4OTU0MH0.6PNEGUB6ZAhn7vE15YLcxOUX_MLmXkXkgckaAtWHbgk8c84lr5TO3pKva6Z-bFnRiO5p1Pm4CnzZQQWm58f6XQ
Content-Length: 642
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:39:02 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 2b2df7abe759ec89
vary: Accept-Encoding
content-length: 25
x-envoy-upstream-service-time: 18
server: istio-envoy
X-Firefox-Spdy: h2
d.clarity.ms/collect
40.76.174.66204 No Content 0 B IP 40.76.174.66:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /collect HTTP/1.1
Host: d.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Content-Type: text/plain;charset=UTF-8
Content-Length: 1321
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
vary: Origin
server: Microsoft-IIS/10.0
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
access-control-allow-origin: https://anteriad.com
access-control-allow-credentials: true
date: Mon, 30 Jan 2023 14:39:03 GMT
X-Firefox-Spdy: h2
bootstrap.api.drift.com/widget_bootstrap
34.193.113.164200 OK 0 B URL HTTP/2 bootstrap.api.drift.com/widget_bootstrap
IP 34.193.113.164:0
POST /widget_bootstrap HTTP/1.1
Host: bootstrap.api.drift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 452
Origin: https://js.driftt.com
Connection: keep-alive
Referer: https://js.driftt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:59 GMT
access-control-allow-origin: *
access-control-allow-headers: origin, content-type, accept, authorization, auth-token, uber-trace-id, x-amzn-oidc-data, x-version
access-control-allow-credentials: true
access-control-expose-headers: X-Results-Total-Count,X-Page-Info
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS, HEAD, PATCH
access-control-max-age: 1209600
strict-transport-security: max-age=31536000; includeSubDomains
content-type: application/json;charset=utf-8
requestid: 31927e83b8278986
vary: Accept-Encoding
content-encoding: gzip
x-envoy-upstream-service-time: 193
server: istio-envoy
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/20.2ffef383.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/20.2ffef383.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/20.2ffef383.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"ec6e94b6cea3a27506634867a8009ded"
x-amz-server-side-encryption: AES256
x-amz-version-id: Sl_LzJMe7m6MkWEK9Fxqk3gRf.6SeAYu
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 26
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _eGqj8EL6iKMCznfxUNi2vEWQUfJYVranRS1LQxhENhdub2762FiAQ==
age: 249241
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/18.6a6d7bb4.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/18.6a6d7bb4.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/18.6a6d7bb4.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"c8c928b5996be74aaa40310b06b945d9"
x-amz-server-side-encryption: AES256
x-amz-version-id: tFYN6YpZW2SDpDXsqSHLsW1Y07JR0LZK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fpajiEgICU1UYQfnwC6nxjor78rbNYjVczxdvMsuddjIM9F1dB58AA==
age: 249241
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/35.2db13da8.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/35.2db13da8.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/35.2db13da8.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675089549858
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"b335cb429753b2c3dabe45686f46aee9"
x-amz-server-side-encryption: AES256
x-amz-version-id: cZsJMbphr0g_Rs503LmupKJPT7bBS_rp
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 19
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hUwQdn3e1GVunRAb1Bp5aSkqtcbukQo8zQtylyF22bRvS5tUb0vB5g==
age: 249242
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/15.699b0dc7.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/15.699b0dc7.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/15.699b0dc7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"43d1442a9d30453da9eaeb12b9daafff"
x-amz-server-side-encryption: AES256
x-amz-version-id: jUF4GGgcG34JdLv0MHXRHyWvmwH3OQeO
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 17
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: I_E0LSEw7b3wAS4G9meGkeMmO58r-1nVPNBizqLigWV0qJyg6YDsYw==
age: 249240
X-Firefox-Spdy: h2
meritdirect.msgfocus.com/c/1hDismMfNRirNLOopDFQZHlUXQAb
54.230.111.73302 Found 0 B URL HTTP/2 meritdirect.msgfocus.com/c/1hDismMfNRirNLOopDFQZHlUXQAb
IP 54.230.111.73:0
GET /c/1hDismMfNRirNLOopDFQZHlUXQAb HTTP/1.1
Host: meritdirect.msgfocus.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
location: https://www.meritdirect.com/privacy-policy/
server: CloudFront
date: Mon, 30 Jan 2023 14:38:56 GMT
p3p: policyref="http://www.adestra.com/w3c/p3p.xml",CP="NON DSP COR CURo ADMo DEVo TAIo IVAo IVDo OUR DELo IND UNI NAV"
set-cookie: adestra_ctrk=1hDismMfNRirNLOopDFQZHlUXQAb; path=/; expires=Mon, 27-Feb-2023 14:38:56 GMT; secure; SameSite=None
x-cache: Miss from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: qwcI96GhHkDUnpcUqUiNL58rWk1gDStbGlyUWTdmLnc0aQ7sHp37GQ==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/52.b1edaf4a.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/52.b1edaf4a.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/52.b1edaf4a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"cd29b9bc973e48a7fcd0ee7153bdf03b"
x-amz-server-side-encryption: AES256
x-amz-version-id: TtzAkuiFg5ajpar.KJembGW97mIyyYtK
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Q1IrHECFcpAceFswjsuKFG6Z1u_nyhfTupg4qpDma7OyA9S3dnmaJA==
age: 249242
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Mulish:ital,wght@0,400;0,700;0,800;0,900;1,400;1,700;1,800;1,900&display=swap
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Mulish:ital,wght@0,400;0,700;0,800;0,900;1,400;1,700;1,800;1,900&display=swap
IP 142.250.74.74:0
GET /css2?family=Mulish:ital,wght@0,400;0,700;0,800;0,900;1,400;1,700;1,800;1,900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 14:38:57 GMT
date: Mon, 30 Jan 2023 14:38:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.27.85200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.27.85:0
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:58 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 791af44d09bd0afa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/9.4a3e9801.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/9.4a3e9801.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:22 GMT
etag: W/"c6f58dd3d60f07462254b842dd4f9ca1"
x-amz-server-side-encryption: AES256
x-amz-version-id: hzm2Healt7ZjvNDM3nYQ47BRwWjFuLrw
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: a_Pr79c5YqqYFDUtMNgEkeueZKn2BD2J5FI6Z_CJXUaYgHR3sDL1vA==
age: 249242
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/main~493df0b3.bfaa8bf7.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/main~493df0b3.bfaa8bf7.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/main~493df0b3.bfaa8bf7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:22 GMT
etag: W/"f380dbfcbb0e3e9e079d70231be1cff3"
x-amz-server-side-encryption: AES256
x-amz-version-id: tVIOQ5knB_pnUIzARn2A1QNlFnrQ08ww
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 22
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: haV41TVLQfnv5rMYY1-biAPB6cFTcCrZWgr-ewOBV4rQM4D-w64gYw==
age: 249242
X-Firefox-Spdy: h2
www.clarity.ms/eus/s/0.7.1/clarity.js
13.107.238.53200 OK 0 B URL HTTP/2 www.clarity.ms/eus/s/0.7.1/clarity.js
IP 13.107.238.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
GET /eus/s/0.7.1/clarity.js HTTP/1.1
Host: www.clarity.ms
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: public,max-age=86400
content-type: application/javascript;charset=utf-8
content-encoding: br
last-modified: Wed, 01 Jun 2022 12:22:22 GMT
accept-ranges: bytes
etag: "1d933d16af8439e"
server: Microsoft-IIS/10.0
x-cache: TCP_HIT
request-context: appId=cid-v1:238681e8-7d6b-453a-acb6-7dcad74f3111
x-azure-ref-originshield: 0b8rXYwAAAACXKaxCtf+qTpdydoK8z4WCRlJBMjMxMDUwNDE4MDE3ADZjZmJlZWUwLTUwMjctNDg0Yi04OTY3LTRhMjlhZjc3ZjFlMQ==
x-azure-ref: 0gtbXYwAAAAD4Yt/V+EqCSr7WY0LadcsZQ1BIMzBFREdFMDQxNQA2Y2ZiZWVlMC01MDI3LTQ4NGItODk2Ny00YTI5YWY3N2YxZTE=
date: Mon, 30 Jan 2023 14:38:58 GMT
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/35.a3318c5e.chunk.css
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/35.a3318c5e.chunk.css
IP 54.230.111.67:0
GET /core/assets/css/35.a3318c5e.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675089549858
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"b06e02b360914b25e58305b1b9b954dc"
x-amz-server-side-encryption: AES256
x-amz-version-id: zduXhdkhoojuHNWfrJL3OG7UtCFvJe6h
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 15
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1qVexg1q44SXFUnOVI2Dp0cyM0u_-uK4ChrjnPgx_FZe8GId69cyxw==
age: 249242
X-Firefox-Spdy: h2
js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675089549858
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675089549858
IP 54.230.111.67:0
GET /core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675089549858 HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
server: istio-envoy
last-modified: Fri, 27 Jan 2023 17:24:57 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: 78ui58utbO8V2Y2gppe5S5_om99xcHdR
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
x-envoy-upstream-service-time: 18
date: Mon, 30 Jan 2023 14:38:58 GMT
cache-control: no-cache
etag: W/"7ae8f906db30d31c2c514a5b041c92a3"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G8ducA-kfNw3c7I-Homj6KLJc7FhMP4YfS-LSSJMEIimLn65mNFABA==
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.27.85200 OK 0 B URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.27.85:0
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:58 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 791af44d5a3b0afa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-3159465.js?sv=7
54.230.111.8200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-3159465.js?sv=7
IP 54.230.111.8:0
GET /c/hotjar-3159465.js?sv=7 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Mon, 30 Jan 2023 14:38:58 GMT
cache-control: max-age=60
etag: W/56886947db67c0d3397e98a0a9faf379
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3bWjM73uDDZFuLZQ-38gyWVtKnDIj4jMVi7IhRjSTY__pRXRdZ65Og==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/10.4b732e6a.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/10.4b732e6a.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/10.4b732e6a.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:19 GMT
etag: W/"fc993533bc5bb380c865a5164f1a76c0"
x-amz-server-side-encryption: AES256
x-amz-version-id: 6IO_iuOmrg_MhTuR.qaW7MVxfukyk3VL
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 20
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pXDc6HHvePpCHXBwv_mCGccq66wkxXPRnHKevinFOj2qAhu14Hs6Eg==
age: 249240
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/58.f6e1c376.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/58.f6e1c376.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/58.f6e1c376.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:58 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"5d94577ce3b6d938d566773d84bc1b78"
x-amz-server-side-encryption: AES256
x-amz-version-id: rhky18.HBXtJcoBjKs7PN1PHGKgJeUz8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 26
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ieXaAte0Sv1ua0fJk1HJVMobbmGxONya5IiURJLOqS1KRvv9CUaSqg==
age: 249243
X-Firefox-Spdy: h2
js.driftt.com/include/1675089600000/ty5fihvseg2m.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/include/1675089600000/ty5fihvseg2m.js
IP 54.230.111.67:0
GET /include/1675089600000/ty5fihvseg2m.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
last-modified: Fri, 27 Jan 2023 17:25:21 GMT
x-amz-server-side-encryption: AES256
x-amz-version-id: I6a4kWh.lpbQo9n9NyEomOPKK9TakGi2
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
x-envoy-upstream-service-time: 38
content-encoding: gzip
date: Mon, 30 Jan 2023 14:38:57 GMT
cache-control: no-cache
etag: W/"092dfc3aca0f538c52df93749d484928"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mpyDFpxTdBF-_iA1zAx5-Tn-Cxu_t7geIc_UMU5FQIyd--K3STEaBQ==
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/1.4eefb708.chunk.css
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/1.4eefb708.chunk.css
IP 54.230.111.67:0
GET /core/assets/css/1.4eefb708.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675089549858
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"7950341fc0a2aeba59b3084f03903d7f"
x-amz-server-side-encryption: AES256
x-amz-version-id: 9jzpmC8y1Tl2Ww3kHwuLiFFqJItpg2RO
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 51
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ItIRpM4J3kgNgEB4Wj6mOuPYc7_rGgOuOBX1OGTnoD0CzIFJRENCfw==
age: 249242
X-Firefox-Spdy: h2
www.cloudflare.com/cdn-cgi/trace
104.16.124.96200 OK 0 B URL HTTP/2 www.cloudflare.com/cdn-cgi/trace
IP 104.16.124.96:0
GET /cdn-cgi/trace HTTP/1.1
Host: www.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:59 GMT
content-type: text/plain
access-control-allow-origin: *
server: cloudflare
cf-ray: 791af453b9acb4eb-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/23.80529f14.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/23.80529f14.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/23.80529f14.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"97c3ca9aaa6fb76a1426ad11ca2061f7"
x-amz-server-side-encryption: AES256
x-amz-version-id: f7GnPSzVZVNA1fDLl2EjAyXSbixH0oiD
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 16
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NQFtBA1y9Zglq6509uFkJybbYCpagYdQSuNNObzQDxnX1MCyHQ4-CQ==
age: 249240
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/26.6599d9e7.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/26.6599d9e7.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/26.6599d9e7.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"9d9648b4fca20faf03591695a3bc8c9d"
x-amz-server-side-encryption: AES256
x-amz-version-id: BadURo_ZLydJaLXBEKZ9DeddMWI_zk.y
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 14
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: gxq722bKnyXcP2-6uyQ_OZFzMlN_kdy8G8TzDYe85p0tWhBaOju_MA==
age: 249241
X-Firefox-Spdy: h2
js.driftt.com/core/assets/css/38.11d2b6a7.chunk.css
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/css/38.11d2b6a7.chunk.css
IP 54.230.111.67:0
GET /core/assets/css/38.11d2b6a7.chunk.css HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675089549858
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:18 GMT
etag: W/"87532c4db85f1429fa6d759bc3332f36"
x-amz-server-side-encryption: AES256
x-amz-version-id: hzHYKpyiaZmITNnBC_LqpsxusmNF7FFl
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
content-encoding: gzip
x-envoy-upstream-service-time: 15
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RyrUoEJtjylU9xHisI9pTvtezuLYav-nHvF87k_9nczpgtSKnOSrNQ==
age: 249241
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/4.aabe6f97.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/4.aabe6f97.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/4.aabe6f97.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core/chat?d=1®ion=US&driftEnableLog=false&pageLoadStartTime=1675089549858
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"9e6f90256eeae9f2d8530b147e4694e7"
x-amz-server-side-encryption: AES256
x-amz-version-id: Fche0x0i51jw_419Uc2.RDHKx4no9Px_
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 18
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Pt05KBeuq_fjr84CbJK96yhJl4GfKLEdU_bqVXtgZok19WeXkoQLuQ==
age: 249242
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/27.f44ab9c1.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/27.f44ab9c1.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/27.f44ab9c1.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"768714622a8a2db20ece85777ba47642"
x-amz-server-side-encryption: AES256
x-amz-version-id: wrgwLo8Ut7GsYvCwhzW617Km3EuBTw6K
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 24
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jNo1Zs7RrDzBwkKQDs0Aexc8sxkZNr2saOLdL_WlRrbTupWgY6_tpA==
age: 249241
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/17.87ab68ae.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/17.87ab68ae.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/17.87ab68ae.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:56 GMT
last-modified: Fri, 27 Jan 2023 17:00:20 GMT
etag: W/"7224903e471d8c7e76d036a17509bef9"
x-amz-server-side-encryption: AES256
x-amz-version-id: cPiu7YYbRPUjAv2cw_41I39g00KKNZYL
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 14
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hVZsccVI96LsRMwZ_hCfBez4plT9fPdRktglKV1t0Wo_qukDBDHTFQ==
age: 249241
X-Firefox-Spdy: h2
js.driftt.com/core/assets/js/29.43f0ec90.chunk.js
54.230.111.67200 OK 0 B URL HTTP/2 js.driftt.com/core/assets/js/29.43f0ec90.chunk.js
IP 54.230.111.67:0
GET /core/assets/js/29.43f0ec90.chunk.js HTTP/1.1
Host: js.driftt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.driftt.com/core?d=1&embedId=ty5fihvseg2m&eId=ty5fihvseg2m®ion=US&forceShow=false&skipCampaigns=false&sessionId=e3c1b615-3307-404e-93be-5bf482a18943&sessionStarted=1675089550.432&campaignRefreshToken=f6678be1-ea5e-4e96-ad19-41f2bb6eb1b8&hideController=false&pageLoadStartTime=1675089549858&mode=CHAT&driftEnableLog=false&secureIframe=false&u=https%3A%2F%2Fanteriad.com%2F
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
server: istio-envoy
date: Fri, 27 Jan 2023 17:24:57 GMT
last-modified: Fri, 27 Jan 2023 17:00:21 GMT
etag: W/"bbca5d42d17f354ba709da59e093f2e7"
x-amz-server-side-encryption: AES256
x-amz-version-id: YttOPnMbgeCzGpP2GWR5vyLPUID5po5b
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: max-age=31536000
x-envoy-upstream-service-time: 23
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WMbiSflIIwYoHcx-V9Rf0h5NHvrc9LEtCu96EKWYIjUJIQHqPEcEMQ==
age: 249241
X-Firefox-Spdy: h2
email.hrtrnd.com/c/1hDismMfNRirNLOopDFQZHlUXQAb
54.230.111.9302 Found 0 B URL HTTP/2 email.hrtrnd.com/c/1hDismMfNRirNLOopDFQZHlUXQAb
IP 54.230.111.9:0
GET /c/1hDismMfNRirNLOopDFQZHlUXQAb HTTP/1.1
Host: email.hrtrnd.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
location: https://meritdirect.msgfocus.com/c/1hDismMfNRirNLOopDFQZHlUXQAb
server: CloudFront
date: Mon, 30 Jan 2023 14:38:56 GMT
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Xz2sh4sDVdlwVyX1SVEO5XpQaYFjc9d_jLt6zKzyZHNoRHZrdWRKvg==
X-Firefox-Spdy: h2
services.listenlayer.com/api/v1/user-geolocation?accountId=1839c28e-2303-4815-bfb8-4b0cdfa2aaea&ip=91.90.42.154
104.21.96.47200 OK 0 B URL HTTP/2 services.listenlayer.com/api/v1/user-geolocation?accountId=1839c28e-2303-4815-bfb8-4b0cdfa2aaea&ip=91.90.42.154
IP 104.21.96.47:0
GET /api/v1/user-geolocation?accountId=1839c28e-2303-4815-bfb8-4b0cdfa2aaea&ip=91.90.42.154 HTTP/1.1
Host: services.listenlayer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://anteriad.com/
Content-Type: application/json
Origin: https://anteriad.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:38:59 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
etag: W/"38e-YmOmqzLg6rbZ6JbKRgN4VGn3/wI"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kV0QZpdguIlpUCSsdf7yMiur1xj41vUAPLdrSB2HIli%2FsDnE7AK3kdJqxVRK96g2VMCGw2tHcgMwfaDg2dRNwxqEli20QXgXIP8PEZumYpztiT1MTkuAfjWHJV%2FQJ48InEPirUhn4%2FMucZo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791af455fc0bb51b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2