www.getjobber.com/summit
104.22.27.66301 Moved Permanently 0 B IP 104.22.27.66:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /summit HTTP/1.1
Host: www.getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 14 Nov 2022 20:54:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 14 Nov 2022 21:54:29 GMT
Location: https://www.getjobber.com/summit
Server-Timing: cf-q-config;dur=6.9999950937927e-06
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76a2a4827a740b41-OSL
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7786cd9bd97e024b3a1d16215defaad2
786ddbb74b0b6bd9270622dbe0258d6caee407c1
9c297ccfd178eec7e472fb64a6b2e34d4c7a6dec32870f49982353e590196ba0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13674
Expires: Tue, 15 Nov 2022 00:42:23 GMT
Date: Mon, 14 Nov 2022 20:54:29 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 832aecaba9f06ee2d39d4d4bea65f13c
7195d6ffadfdbc6fc8e92c63ae28d4a3038a72dc
a437509314a97065de6c7b9e5e2b4b61f0234b45f5f5bf2649cbdf499577bfd3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4824
Cache-Control: max-age=140232
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:29 GMT
Etag: "637218f5-1d7"
Expires: Wed, 16 Nov 2022 11:51:41 GMT
Last-Modified: Mon, 14 Nov 2022 10:31:17 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8c15cef160d1514fc977ed4c4e97086c
ffe4ce3199658a1fc7a45d1607df40ef3911621d
db1a82d8a2bacc0257b87efec0c365c1b769700fa27ce928321e082505f1d72a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB1A82D8A2BACC0257B87EFEC0C365C1B769700FA27CE928321E082505F1D72A"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17607
Expires: Tue, 15 Nov 2022 01:47:56 GMT
Date: Mon, 14 Nov 2022 20:54:29 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4736bac84ca28f2b1e961159fb4ea098
1319612979f53896fcfeacd4215c2715d4951e4c
5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 14 Nov 2022 20:44:35 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 594
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kLMkZyBXgvabsfvxgCsyELeXnvMGbZW9BEdiX+8YwxUtnZIjp3sQePpO16O0cjW88mkvLdcLyfE=
x-amz-request-id: W85Z5GH9CHN673CJ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 14 Nov 2022 20:13:59 GMT
age: 2430
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 14 Nov 2022 20:54:29 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Cache-Control, Pragma, Last-Modified, ETag, Alert, Backoff, Content-Type, Retry-After, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 14 Nov 2022 20:25:01 GMT
cache-control: public,max-age=3600
age: 1769
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3200044057cb585f1a435c0efece61c8
8305d5b5891288aa9996b4b4ca6fce2265413194
df45704534a24928e7659a6d8cd1b5ac9ffa9b224b02b34a2d6aed5ef69fd586
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2441
Cache-Control: max-age=132792
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:30 GMT
Etag: "63720535-1d7"
Expires: Wed, 16 Nov 2022 09:47:42 GMT
Last-Modified: Mon, 14 Nov 2022 09:07:01 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.161.230.192101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.230.192:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 53Z7DS1hSMOfq3F8fwnztA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: v9yx1uW+2tOrpXxihlg8V8I9nnA=
getjobber.com/wp-content/themes/jobber-bold/assets/fonts/jobber_pro_extrabold.woff2
172.67.12.54200 OK 37 kB URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/assets/fonts/jobber_pro_extrabold.woff2
IP 172.67.12.54:0
File type Web Open Font Format (Version 2), TrueType, length 37248, version 3.0\012- data
Hash 8201b21080737457aea82ae522730c5d
473ae032427578c81fb84b0e643144cc2b9cef26
63fa74aa04682bac8d82227e838a5c497b6f2a828ea309de39e8f70b0da62c7b
GET /wp-content/themes/jobber-bold/assets/fonts/jobber_pro_extrabold.woff2 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/font-woff2
content-length: 37248
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
etag: "636c09d9-9180"
expires: Tue, 14 Nov 2023 20:54:31 GMT
last-modified: Wed, 09 Nov 2022 20:13:13 GMT
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,0bca4f5cd6858a0cd5b0e9e66f9a67aaa1daa4bbccaff9b6feba10317b31b17c
ki-cache-type: CDN
ki-cf-cache-status: HIT
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QByx0D%2BCuNWorDYxrn2TkQET2ugDzgrKEqBGgTWe%2FMw5SPGpd1kjK7i3NLAe%2FXfXIlM9jmO4AakGmlrgEuF4kxA5dU32Pa%2B%2F8quBccgfCcKrv2rwAo3dvre4gkyeljs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48c6bc20b3d-OSL
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/assets/fonts/Inter.var.subset.woff2
172.67.12.54200 OK 103 kB URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/assets/fonts/Inter.var.subset.woff2
IP 172.67.12.54:0
File type Web Open Font Format (Version 2), TrueType, length 103420, version 3.1245\012- data
Size 103 kB (103420 bytes)
Hash 9b7877a586895574778a7cbab2b62b17
3b86aea10546c7e737aa4492c8787f0e2957e3c4
49adb5189c66fb9c374bb67a44f8858223b1a67279579f43f24d9938e0e6240d
GET /wp-content/themes/jobber-bold/assets/fonts/Inter.var.subset.woff2 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/font-woff2
content-length: 103420
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
etag: "636c09d7-193fc"
expires: Tue, 14 Nov 2023 20:54:31 GMT
last-modified: Wed, 09 Nov 2022 20:13:11 GMT
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,fbb027c000ffe25ed26f0e23065e557a6371d1c15b5d402e1b4e1dc994001fdc
ki-cache-type: CDN
ki-cf-cache-status: HIT
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eO64OzxzYK%2B7m7dGLAwpMO926H%2BrdPt5iI0jzoDxdwJ3lz%2Bgr%2B3IQqRw33NMPuAyYEsgaFB4kfu4aqT4T2gsP9FJ9UHaGiTnzhupdTKZfSOcxueOiYyMeGhkYDKXigA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48c6bc30b3d-OSL
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/assets/fonts/jobber_pro_black.woff2
172.67.12.54200 OK 38 kB URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/assets/fonts/jobber_pro_black.woff2
IP 172.67.12.54:0
File type Web Open Font Format (Version 2), TrueType, length 37552, version 3.0\012- data
Hash 88386c10464c31199114f7954e565063
055449c6b0dbce92f489057bba19bc5141d8c8f7
ab3f957c634730dc6d547ea9082649736a2db3bcaea77aa7945b32a99ce970dd
GET /wp-content/themes/jobber-bold/assets/fonts/jobber_pro_black.woff2 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/font-woff2
content-length: 37552
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
etag: "636c09d7-92b0"
expires: Tue, 14 Nov 2023 20:54:31 GMT
last-modified: Wed, 09 Nov 2022 20:13:11 GMT
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,a1f16b7c91a430f90a819882258f7e3a751f7b3dbfc1d4b6bfd1cb04daf6d96f
ki-cache-type: CDN
ki-cf-cache-status: HIT
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5dK2zWq0f5pWnjUxlkcKXeQ7n9QMVIl2aobYJiWBFOP0Cj07nhm4We9r2epLHjzNhRB%2B6gbpvYVLIXLxSXa6mmEasVP1tJZubMuDYjwpOimxzamEWBJpzm%2FqmBn5HpA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
accept-ranges: bytes
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48c6bc10b3d-OSL
X-Firefox-Spdy: h2
getjobber.com/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4
172.67.12.54200 OK 19 kB URL HTTP/2 getjobber.com/wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4
IP 172.67.12.54:0
Hash 5145fdb1f6dc6692ca07c6f943f37a29
751d306d05cab61380d77315d0ed11097b68f5d8
3c67ac43e956d3b7d63e562e1f89466e15a21f3fc3867a4334bc6a3c51db1084
GET /wp-includes/js/dist/vendor/moment.min.js?ver=2.29.4 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
etag: W/"6335f490-e2a8"
expires: Tue, 14 Nov 2023 20:54:31 GMT
last-modified: Thu, 29 Sep 2022 19:40:00 GMT
vary: Accept-Encoding
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,3e33ed482e717f5bad312a9631108d57eaac128d4f5708cdc5e674b051213951
ki-cache-type: CDN
ki-cf-cache-status: HIT
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V3myXl%2BQ8wkNAEXHxxAPoxy5KjNwSdwqgNuvyFD6k3Zrs6czLIxaN7wz%2BdwipRwt%2BXMbjuja%2Bqhd79GS7Zc9rgNuRj9MrDx87QWiLOlewDv2pr2k%2Ba60cjk%2BpxAnklo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48cac390b3d-OSL
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/skip-link-focus-fix.js?ver=20151215
172.67.12.54200 OK 559 B URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/skip-link-focus-fix.js?ver=20151215
IP 172.67.12.54:0
Hash fcfd23112c0178c4a7941fdade901e09
dfe9d6e54792345c07432e5b91e87ef952b443dc
861becfc04878f4f28e71a0495e818966397b922551a4bb880224259028f0aad
GET /wp-content/themes/jobber-bold/scripts/vendor/skip-link-focus-fix.js?ver=20151215 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=685
etag: W/"636c09f0-2ad"
expires: Tue, 14 Nov 2023 20:54:31 GMT
ki-cf-cache-status: HIT
ki-edge-o2o: yes
last-modified: Wed, 09 Nov 2022 20:13:36 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ck7DVXeFA0zCumUD6RTASoQKPjlzkkDtYHpjYiYu0mkEurDRu3aMfcg4CRjD%2F3Qsdv%2BY4pNklPpTYuyJeOm6y6l480K73r5reWCHJkUK6ZQ0OKJxdBuqROng3WgZz0E%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,2490ab76b6018fa95f1c7b761137a6d5a894a1263a19f9f002a547e1de4fadd2
ki-cache-type: CDN
ki-edge: v=17.8
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48cac380b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
getjobber.com/wp-content/plugins/svg-support/js/min/svgs-inline-min.js?ver=1.0.1
172.67.12.54200 OK 1.2 kB URL HTTP/2 getjobber.com/wp-content/plugins/svg-support/js/min/svgs-inline-min.js?ver=1.0.1
IP 172.67.12.54:0
Hash a6511f9d4dc0dc882e681c67f483da72
a0628fa016257b9c9458a8c38fdbccfaeefc96ae
4aa75b02bdee22e105d26ddf38ad633f28939f9e5190fdcac6559c16c22a99c9
GET /wp-content/plugins/svg-support/js/min/svgs-inline-min.js?ver=1.0.1 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
etag: W/"6335f2d4-601"
expires: Tue, 14 Nov 2023 20:54:31 GMT
last-modified: Thu, 29 Sep 2022 19:32:36 GMT
vary: Accept-Encoding
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,4372811da1da10855b2dc1e552a7ea0ce4c7bfb726052f2d895f999a53f02544
ki-cache-type: CDN
ki-cf-cache-status: HIT
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fM1TZkSOlnwh0SZNqrj%2BHaG5hWNJUKtCg26Ufu%2BJvbHJmFWMHjGWQJIbiobX8Wkg1O%2FKjmKmpTStUH8WyUYx3NqrJSkZANFsQbpIAdhvSuAh9cDHL6SVFpO11vdQzFA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48cac370b3d-OSL
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/whatwg-fetch@2.0.4/fetch.js?ver=1
151.101.85.229200 OK 3.4 kB URL HTTP/2 cdn.jsdelivr.net/npm/whatwg-fetch@2.0.4/fetch.js?ver=1
IP 151.101.85.229:0
Hash c5e63213740e8549be46aa1f9e81380e
4eebd74b284774d4b2d7dd416a554ae58753c20c
dd5ed0a70f3375d7d2d35e54017e30f909bd61e03588f5e9d8497db9308b22f2
GET /npm/whatwg-fetch@2.0.4/fetch.js?ver=1 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.0.4
x-jsd-version-type: version
etag: W/"32d4-82ky5slZqXXtXbvBK7HlyQ79Sek"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 14 Nov 2022 20:54:31 GMT
age: 3248482
x-served-by: cache-fra19140-FRA, cache-bma1661-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3420
X-Firefox-Spdy: h2
getjobber.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
172.67.12.54200 OK 1.1 kB URL HTTP/2 getjobber.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 172.67.12.54:0
Hash cfd7980fbf05c8bf5e5acb58a3bb0a26
571c95b9c404a722218a48f85931e557719381f1
728881bd43e704d3ca1f4bffd703a6aacba7b497cc99205747e26b23a5d7f14d
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/javascript
last-modified: Wed, 09 Nov 2022 12:52:00 GMT
etag: W/"636ba270-4d7"
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48c9c210b3d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Wed, 16 Nov 2022 20:54:31 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 8094f6d66cd067b92b99cc3c1ec916c6
cdb6d27ace38846e7a770dafce189f90a30db886
f07248933eddbab19c1153daaece5a2c3bcb421598bfab2c4b0f4c547d75e817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 1af800aa2b326e8af0f2640db68a7a0d
4c617814f5c705737bf4bf111c53bf40bb932af5
594f573b6e73b1d385ae75a518c18a0bb833ac4a3f894fcea377096c756f8cc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/3.1.1/jquery.min.js?ver=6.0.2
142.250.74.106200 OK 30 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/3.1.1/jquery.min.js?ver=6.0.2
IP 142.250.74.106:0
File type ASCII text, with very long lines (32030)
Hash 04ba0252a9f264db106d4eaab8df4ccb
cf52d9b3df7839c5c64fbf33aafeced74b3db750
397852429e768ffbd12a78ce4b94f14e3ab4afabf84acb07c0bb5b7798e6e0b2
GET /ajax/libs/jquery/3.1.1/jquery.min.js?ver=6.0.2 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Nov 2022 00:41:09 GMT
expires: Sun, 12 Nov 2023 00:41:09 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 245602
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?render=6LejoIIUAAAAAOTEmNZO_yjGeQhjj4jAlLDeAVfr&ver=6.0.2
142.250.74.164200 OK 584 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LejoIIUAAAAAOTEmNZO_yjGeQhjj4jAlLDeAVfr&ver=6.0.2
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 434c6031dedf5bdc308f8299f3705a2e
f67fe80fea981254b4beac629602604cb4d73fb7
3b732dfa04aac87fb8d0ac9e0502631faaad1a0d35c37dfefd5e881f299b7819
GET /recaptcha/api.js?render=6LejoIIUAAAAAOTEmNZO_yjGeQhjj4jAlLDeAVfr&ver=6.0.2 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Mon, 14 Nov 2022 20:54:31 GMT
date: Mon, 14 Nov 2022 20:54:31 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 584
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash 06d1e8d2497a0ae46f398bcb5f4eac16
023271bfd16c3f7b64625ae096efa1e7e0a72eec
db5cb2a496e9bcce491e80dd033bf853175059dab963db6ed4bb6b0e6ce1b313
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 20:54:31 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "1BCF5C5C0348C56605B6323586E9684D662DA159"
Expires: Tue, 15 Nov 2022 07:00:00 GMT
Last-Modified: Mon, 14 Nov 2022 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1725
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76a2a48d5d61b50c-OSL
www.googleoptimize.com/optimize.js?id=OPT-ND6RK45
142.250.74.46200 OK 47 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-ND6RK45
IP 142.250.74.46:0
File type Unicode text, UTF-8 text, with very long lines (3035)
Hash 7440a5c9c25c0f4f410db7d066a11492
245dc360dcf40c92166450b8816a202e016fe7f9
e5da8f73af7bc1a664109eeedda59eaecffb634da66dac014094b1ddb00de953
GET /optimize.js?id=OPT-ND6RK45 HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 14 Nov 2022 20:54:31 GMT
expires: Mon, 14 Nov 2022 20:54:31 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 47105
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-LQXS6VVFN0
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-LQXS6VVFN0
IP 142.250.74.168:0
File type ASCII text, with very long lines (19431)
Hash 5d5a2c040871951f14ecc89ecf6e1783
a906e51704d5dbaf28016c457885848bc3acbac8
ce61fbf912d9cad2cd9d85488b59701a5ed30f8af8846cce9a0b562fb22f2ab4
GET /gtag/js?id=G-LQXS6VVFN0 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 14 Nov 2022 20:54:31 GMT
expires: Mon, 14 Nov 2022 20:54:31 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76061
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash b2d6aeeb303eaefc4cc6900e30da3b1b
4c3c027013211aa1b987006d0eb6c72f18c6a657
f542eab7c032d6c5f59710ee8993a01537e0fa2bf3882a6a699de85bba020999
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 1af800aa2b326e8af0f2640db68a7a0d
4c617814f5c705737bf4bf111c53bf40bb932af5
594f573b6e73b1d385ae75a518c18a0bb833ac4a3f894fcea377096c756f8cc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 1af800aa2b326e8af0f2640db68a7a0d
4c617814f5c705737bf4bf111c53bf40bb932af5
594f573b6e73b1d385ae75a518c18a0bb833ac4a3f894fcea377096c756f8cc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 96c9e6a333b1f0fddf32f24e7b965151
647fee1eb0d6839e30115edebe8d0840e6152cdb
a2ac4ddc863a9d641d91d504db389e0116cf1699322d2391f17d5785bf5bc538
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash e16de740a4de39f5a18789c0020a6a00
1972cfc1f88c7d920cef3ffea26f107f63d4ac0b
9d7fe97aa5e74a6249574153507463692d8797d63e4232422ac8f64a249fbfe2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4262
Cache-Control: max-age=138223
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:31 GMT
Etag: "63721350-116"
Expires: Wed, 16 Nov 2022 11:18:14 GMT
Last-Modified: Mon, 14 Nov 2022 10:07:12 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 278
secure.getjobber.com/assets/static_link/source_tracking.js?ver=1
172.67.12.54200 OK 821 B URL HTTP/2 secure.getjobber.com/assets/static_link/source_tracking.js?ver=1
IP 172.67.12.54:0
File type C source, ASCII text, with very long lines (2018), with no line terminators
Hash b18c900fd6be23310c8979e26c04717f
45f58ef4d51ff80f60d10f4d637598451d2c1a4d
2b7971c6664e5e8f35d574b7a74beb2497c85e0b8b25b8ec8636657e52162a42
GET /assets/static_link/source_tracking.js?ver=1 HTTP/1.1
Host: secure.getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/javascript; charset=utf-8
content-length: 821
last-modified: Tue, 12 Jul 2022 20:08:44 GMT
cache-control: public, max-age=2592000
content-encoding: gzip
vary: Accept-Encoding, Origin
strict-transport-security: max-age=2592000; includeSubDomains
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
content-security-policy: default-src *; base-uri 'self'; child-src blob: *; connect-src *; font-src data: *; form-action *; frame-ancestors 'self'; frame-src *; img-src data: *; media-src blob: *; script-src 'unsafe-inline' 'unsafe-eval' *; style-src 'unsafe-inline' *; worker-src blob:
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76a2a48c7bd80b3d-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9fa176383e0044e51aeb96fa6e892ddb
7d01d13dcdef51bd4af7425e7dba361734e2a889
0daa241c2ef792996d285b0e4a6514a1f7151770337d71fddbd2b60e62579982
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5514
Cache-Control: max-age=112825
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:31 GMT
Etag: "6371ab36-117"
Expires: Wed, 16 Nov 2022 04:14:56 GMT
Last-Modified: Mon, 14 Nov 2022 02:43:02 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9fa176383e0044e51aeb96fa6e892ddb
7d01d13dcdef51bd4af7425e7dba361734e2a889
0daa241c2ef792996d285b0e4a6514a1f7151770337d71fddbd2b60e62579982
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5514
Cache-Control: max-age=112825
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:31 GMT
Etag: "6371ab36-117"
Expires: Wed, 16 Nov 2022 04:14:56 GMT
Last-Modified: Mon, 14 Nov 2022 02:43:02 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/jquery-cookie.js?ver=6.0.2
172.67.12.54200 OK 918 B URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/jquery-cookie.js?ver=6.0.2
IP 172.67.12.54:0
Hash 3f1828ee88eb3b373280d9b404634504
c40f23e3f88cb96e5bc58027a839caa2848a9235
861c63cafe05736f0d9a452b840d23d4aafc57eb683718b513a253524d4f597e
GET /wp-content/themes/jobber-bold/scripts/vendor/jquery-cookie.js?ver=6.0.2 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=3536
etag: W/"636c09ef-dd0"
expires: Tue, 14 Nov 2023 20:54:31 GMT
ki-cf-cache-status: HIT
ki-edge-o2o: yes
last-modified: Wed, 09 Nov 2022 20:13:35 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=89%2BqlnX0hdD5UTmQarTaaKw0%2FA6wcm86HOBTiDvtmdK0%2Buq4bPX7PMN7fIRCScJ0LyK7W%2BjbwhhUKHz1qtwX8LvxvCTIyHBxVM2wmYYcLyNKyeEg%2BC7J%2FRzqdJlnfxQ%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,35a35ae1c5177c3194f90e593cf21a37578e9390ae3ed48a49e4641019667cc5
ki-cache-type: CDN
ki-edge: v=17.8
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48c7bd00b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14392
Expires: Tue, 15 Nov 2022 00:54:24 GMT
Date: Mon, 14 Nov 2022 20:54:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14392
Expires: Tue, 15 Nov 2022 00:54:24 GMT
Date: Mon, 14 Nov 2022 20:54:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14392
Expires: Tue, 15 Nov 2022 00:54:24 GMT
Date: Mon, 14 Nov 2022 20:54:32 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 29b1503232a9cf0843bd9f0d01c0a9a5
620b3b98a58cd32175d40534dca81ef4a26d880f
1f54c0fa57ea62f131e173d4a365d6d2d4d10e0993eb69eaf9e27d3788a5daf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14392
Expires: Tue, 15 Nov 2022 00:54:24 GMT
Date: Mon, 14 Nov 2022 20:54:32 GMT
Connection: keep-alive
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
104.16.57.101200 OK 16 kB URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP 104.16.57.101:0
Hash 8cb85cdf4779c423a70935ccb1fc21c0
868fb26d59e25f5b7a2e0ed607e14176da87f395
d41dac888cca3a2ef099ae2ab64c3c62c9b9245b8abcfa3d013ff943e92f858b
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a2a48d0ebcb523-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd5bdc050716bb76afe8090fc81617e7
5109c156b180727767fc03c411190ccc0d3fb5fc
9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: X3SUo1LP97TxraRav0ftskBhzWkTJInHaS44PW26yloF-dgD-bHBuA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:45:57 GMT
age: 83315
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ac5583760066002adcbba078f6dd1be4
39ca30395586cf1a0a0fa739f7279af807f548a3
cb5986e3330858716cd290297a81d77e371b838637fc57eece94810211715a7c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68733d52-6c87-4ac4-ba56-bc5f74ff782b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9921
x-amzn-requestid: 933f6aa6-3bec-4f71-aba8-ef9e77942ae9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjycgGB-oAMFsDQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371644f-47d26359464b62b7276316e6;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:40:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: cl4CvcuSz4XqydcANekLjl49PkkKUuMs_EsPwEK0pu_VF57S3szecA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:52:20 GMT
age: 82932
etag: "39ca30395586cf1a0a0fa739f7279af807f548a3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfc7286992b2cebdf1ebb58f85576e61
a49a1bf9716e32979810931d04d1f84216d096c1
7c5288d4ae39202e00c7fd482faa10b5610d31edf0bba9fc69fa4fc1f422b837
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F03b751df-18d0-4e56-8d74-5d8e8d02f241.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7494
x-amzn-requestid: b07e424a-c11e-442f-8636-e0670cb6f864
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bd8heGBtoAMFYQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636f0e09-7dcda14e5077563d726752ae;Sampled=0
x-amzn-remapped-date: Sat, 12 Nov 2022 03:07:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -7x_52WsOuP18MV9Q9oJFOdpvIm35aZngCAjZvWFau3P3fMY5NkElg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 04:11:16 GMT
age: 60196
etag: "a49a1bf9716e32979810931d04d1f84216d096c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a0db3498954921b58948ad8a4e7fd49f
6b618c3ff6e589f9e01650bd0a619acb70d8004e
fa3baa9e32e455ab2eeefab0c76714bf0ff5f67a5ccd7c10b3f5c21d8138c5cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5797e726-229b-4f42-9376-00ae67e14407.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6535
x-amzn-requestid: 3333aa65-c0c7-4704-9af1-fb0a49f830fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bjyDtHbhoAMFSsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637163b1-51c3e4513240b7e5662b8e6e;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 21:37:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 6dTOcWIKFuo-Thf3zUH_1WY70yFyQkj3w2xPrb6Ntjf8TUFPVG-_lA==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Sun, 13 Nov 2022 21:54:01 GMT
age: 82831
etag: "6b618c3ff6e589f9e01650bd0a619acb70d8004e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 08cb146fa2f70704e0dadbc7b6c23d79
69edfe0abff4c478447147804b7faaa1f56db20f
869957ff4ba2a9c2b1d590a53cec34fbbdbe0a97fa64abf99250cb41fbc0bc5b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2384
Cache-Control: max-age=153612
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:32 GMT
Etag: "637256c4-116"
Expires: Wed, 16 Nov 2022 15:34:44 GMT
Last-Modified: Mon, 14 Nov 2022 14:55:00 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 278
getjobber.com/wp-content/plugins/svg-support/vendor/DOMPurify/DOMPurify.min.js?ver=1.0.1
172.67.12.54200 OK 13 kB URL HTTP/2 getjobber.com/wp-content/plugins/svg-support/vendor/DOMPurify/DOMPurify.min.js?ver=1.0.1
IP 172.67.12.54:0
Hash 1630be28a0e9b7c050a27c60306688ec
57c91a5ee74ce9516e0e11967c6f91c61ced814e
e16fdbe3ed294b8425cdd6c0f8ff37fc41fb810afe3db0b222f66f4f5bcb3d08
GET /wp-content/plugins/svg-support/vendor/DOMPurify/DOMPurify.min.js?ver=1.0.1 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
content-encoding: gzip
etag: W/"6335f2d4-52b1"
expires: Thu, 11 Nov 2032 20:54:31 GMT
last-modified: Thu, 29 Sep 2022 19:32:36 GMT
vary: Accept-Encoding
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,61dbaaca4fd4e6143e0d0e5321a061b1103c887f1a1aeef17c67cfce0152d8cd
ki-cache-type: CDN
ki-cf-cache-status: SAVING
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w6RG%2BEGiphzlKUja01SUjRZcO%2Bns1B4qsEMIgrcr6ZWIeUvapjDAabuMxRjMGA2nizVVaXsINyxiqdXzF09jSp%2F5gDICgKbQLJ7z3cIlG2lN5bVixH%2FT7g%2B2JnobqSA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
cf-cache-status: EXPIRED
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48cac350b3d-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 5475f223bd58f4f5b84e5f2acd7b93fc
d5f2365bab4bff1e32a4529b9798217db39ff956
3a0200f99634fce12a0f5ff9d119d7dae20f242660bc136bc078cf44144b79f6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4542
Cache-Control: max-age=127673
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:32 GMT
Etag: "6371e903-117"
Expires: Wed, 16 Nov 2022 08:22:25 GMT
Last-Modified: Mon, 14 Nov 2022 07:06:43 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash a8aafcb67a5626c3014d259aee1f9d7b
c04f892a942caaecd76ad761eb3975730322f137
d445787b34a6c4ac1d475a507b47d283a5c113cfd3826668768df2ade2cfb907
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1273
Cache-Control: max-age=138814
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:32 GMT
Etag: "6372214d-139"
Expires: Wed, 16 Nov 2022 11:28:06 GMT
Last-Modified: Mon, 14 Nov 2022 11:06:53 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C7Q5I8D0NM9PPK6K6R40&lib=ttq
23.36.79.32200 OK 45 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C7Q5I8D0NM9PPK6K6R40&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65467)
Hash a85df01b5bcf7a62bc8b29f63342c80c
defa6b90d66968900ce60462026c078b2fa62d67
7d78710770364faab1f730ab151131c31df1b6aa6c4bbdf8cc3546c38fdac1fa
GET /i18n/pixel/events.js?sdkid=C7Q5I8D0NM9PPK6K6R40&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022111420543232EE87932906968F7B9A
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b98c996f42f4ed1d95d2c564926d3ba8ec7189dada8a9928a0c27f4a85bdfddc3f00df4b5e4d82009b0145b0952ab6277
content-encoding: gzip
expires: Mon, 14 Nov 2022 20:54:32 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 14 Nov 2022 20:54:32 GMT
content-length: 45272
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=4, cdn-cache; desc=MISS, edge; dur=11, origin; dur=129
x-origin-response-time: 129,23.36.79.28
x-akamai-request-id: 317fd15b
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 4a3dae50781a95d9769d4a4d30c47a45
a4f52481de86b38ff4813114fbc58b3cdb699b3d
26f8ea1147ba62099a7eca7cea742ad20062daaa346f95d7b10c0770e2f64560
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=116797
Date: Mon, 14 Nov 2022 20:54:32 GMT
Etag: "6371b92e-1d7"
Expires: Wed, 16 Nov 2022 05:21:09 GMT
Last-Modified: Mon, 14 Nov 2022 03:42:38 GMT
Server: ECS (nyb/1D2A)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9GTQAkSKY1jDePXZHJBfnMmWlzw6KNKIfB7VGTHD18K_68uUDA6rfQ==
Age: 5911
analytics.tiktok.com/i18n/pixel/config.js?sdkid=C7Q5I8D0NM9PPK6K6R40&hostname=getjobber.com
23.36.79.32200 OK 20 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=C7Q5I8D0NM9PPK6K6R40&hostname=getjobber.com
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type C source, Unicode text, UTF-8 text, with very long lines (58149)
Hash 8fb72bd0dc8967a7d4f3e0a12ebe055e
41e5d8af0c88f028615b7cc154529d587b925243
f34050323a524687a6f6920e9982feeeb13cf4016105ac53ccc49db0012219c5
GET /i18n/pixel/config.js?sdkid=C7Q5I8D0NM9PPK6K6R40&hostname=getjobber.com HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211142054320C6CFCDC98BEBF9CDC99
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1beb84234e43fbff6eef50274829762e9867f90889062fe55ee996192e84d134682367f4f30bca22e08a6d408dfe8007f62a30513df1f688ad617fc971defe21d5d5
content-encoding: gzip
x-origin-response-time: 7,23.218.220.155
x-akamai-request-id: 95a119d.317fd475
expires: Mon, 14 Nov 2022 20:54:32 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 14 Nov 2022 20:54:32 GMT
content-length: 19713
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
set-cookie: _ttp=2HYPvLnLVMiPcmGfEhM9BDjcFCm; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-218-220-155.deploy.akamaitechnologies.com (AkamaiGHost/10.10.2-45048955) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=106, origin; dur=7, inner; dur=4
x-parent-response-time: 112,23.36.79.28
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.41200 OK 1.8 kB IP 192.124.249.41:0
Hash c35fd0f81f672d1bca1e981f224f5d74
4f2543eee54723aef2680670c341029fdd2dccbf
3da39e6e1102c58e321fc04cb318275114a00239df1371552384f1957421e970
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 14 Nov 2022 20:54:33 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 14 Nov 2022 20:22:28 GMT
Expires: Tue, 15 Nov 2022 20:22:28 GMT
ETag: "4f2543eee54723aef2680670c341029fdd2dccbf"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
collector-21052.us.tvsquared.com/tv2track.js
3.19.148.38200 OK 8.5 kB URL HTTP/1.1 collector-21052.us.tvsquared.com/tv2track.js
IP 3.19.148.38:0
File type ASCII text, with very long lines (1162)
Hash 0dfa43ce95b39a456eae5449442aff6e
f5a7a9573c38d97cb3c7d8d811b8b6707a7f2d88
3135834b3c8b03e052d94f9b63cf3f796ff4a3077256dd1daddc16d5c204306a
GET /tv2track.js HTTP/1.1
Host: collector-21052.us.tvsquared.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=600
Content-Encoding: gzip
Content-Type: application/javascript
Date: Mon, 14 Nov 2022 20:54:32 GMT
ETag: "6306051b-2133"
Expires: Mon, 14 Nov 2022 21:04:32 GMT
Last-Modified: Wed, 24 Aug 2022 11:01:47 GMT
Server: nginx
X-Robots-Tag: noindex
Content-Length: 8499
Connection: keep-alive
fast.ssqt.io/squatch-js@2
151.101.194.133200 OK 34 kB URL HTTP/2 fast.ssqt.io/squatch-js@2
IP 151.101.194.133:0
File type Unicode text, UTF-8 text, with very long lines (48721)
Hash e02e3571cdbf39eb0511a537309a111d
44414b057383a2551dd2da854c2b0a8f59de350c
9a2fbf1eb273c564a959b9a49a25114bf92a389aa32f007f870d0c845367984f
GET /squatch-js@2 HTTP/1.1
Host: fast.ssqt.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 2.4.0
x-jsd-version-type: version
etag: W/"1b239-VvPyg+k1yNokc6Id1sbTOsp+G34"
content-encoding: gzip
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rwU%2Btjxji%2F8RyKy%2BbESk8hT0pgJdGHe%2FuGQSijzW7v1RcqMX18GkcCAofAV7uJtVwxWPXo8tgx9yIMfRAtxpbUQnVwRiwpZLfrdLq5i6YBmH%2FR693QgZnK3%2FNFqwnbVZ9e0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 764801d93c8895f1-ARN
accept-ranges: bytes
date: Mon, 14 Nov 2022 20:54:32 GMT
via: 1.1 varnish
age: 42949
x-served-by: cache-fra19137-FRA, cache-iad-kiad7000122-IAD, cache-bma1683-BMA
x-cache: HIT, HIT, HIT
x-cache-hits: 99
x-timer: S1668459273.534291,VS0,VE0
vary: Accept-Encoding
content-length: 34017
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 765
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2HYPvLnLVMiPcmGfEhM9BDjcFCm
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 20221114205432CEB568F066736586BB5F
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b37c68b021be14b3fb4371b9a5b962a46ef617ec5ecace815734b05d9b610ff54a4b0e7fd6ebc63c078ce15f22125f967
expires: Mon, 14 Nov 2022 20:54:32 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 14 Nov 2022 20:54:32 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=21, cdn-cache; desc=MISS, edge; dur=10, origin; dur=123
x-origin-response-time: 123,23.36.79.28
x-akamai-request-id: 317fd683
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/MnFebHYcqxY
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/MnFebHYcqxY
IP 142.250.74.35:0
Hash 4a7b4de9cf2f6e175392519c648ac7b3
dfb6ebd6456235aba2029719920ec7c3355a3918
95c618bf5d07dd697834a6565350757a971904ffc9ce56259742985d43bd4bf4
POST /s/gts1d4/MnFebHYcqxY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:32 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/MnFebHYcqxY
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/MnFebHYcqxY
IP 142.250.74.35:0
Hash 4a7b4de9cf2f6e175392519c648ac7b3
dfb6ebd6456235aba2029719920ec7c3355a3918
95c618bf5d07dd697834a6565350757a971904ffc9ce56259742985d43bd4bf4
POST /s/gts1d4/MnFebHYcqxY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:32 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
collector-21052.us.tvsquared.com/tv2track.php?action_name=summit%20-%20Jobber&idsite=TV-7281904572-1&rec=1&r=067622&h=20&m=54&s=32&url=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&_id=11b35a341db9022a&_idts=1668459273&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=651
3.19.148.38200 OK 42 B URL HTTP/1.1 collector-21052.us.tvsquared.com/tv2track.php?action_name=summit%20-%20Jobber&idsite=TV-7281904572-1&rec=1&r=067622&h=20&m=54&s=32&url=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&_id=11b35a341db9022a&_idts=1668459273&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=651
IP 3.19.148.38:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 00657dd79637a8daf5e6196ca17f1887
3e064855d1fe7c6eac52981a646ec5840ba7efb5
f0c71e3da5b3fcab3c66af1cf0cdbf262c97b9330b7b37116f1ae2ab18bdc660
GET /tv2track.php?action_name=summit%20-%20Jobber&idsite=TV-7281904572-1&rec=1&r=067622&h=20&m=54&s=32&url=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&_id=11b35a341db9022a&_idts=1668459273&_idvc=0&_idn=1&_viewts=&cookie=1&res=1280x1024>_ms=651 HTTP/1.1
Host: collector-21052.us.tvsquared.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: image/gif
Date: Mon, 14 Nov 2022 20:54:32 GMT
P3p: CP='OTI DSP COR NID STP UNI OTPa OUR'
Request-Id: 9c42722e-9710-42d2-8c6c-1e2aa993ad53
Server: nginx
Content-Length: 42
Connection: keep-alive
region1.analytics.google.com/g/collect?v=2&tid=G-LQXS6VVFN0>m=2oeb90&_p=1596149449&_gaz=1&cid=529287274.1668459272&ul=en-us&sr=1280x1024&_s=1&sid=1668459272&sct=1&seg=0&dl=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&dt=summit%20-%20Jobber&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-LQXS6VVFN0>m=2oeb90&_p=1596149449&_gaz=1&cid=529287274.1668459272&ul=en-us&sr=1280x1024&_s=1&sid=1668459272&sct=1&seg=0&dl=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&dt=summit%20-%20Jobber&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-LQXS6VVFN0>m=2oeb90&_p=1596149449&_gaz=1&cid=529287274.1668459272&ul=en-us&sr=1280x1024&_s=1&sid=1668459272&sct=1&seg=0&dl=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&dt=summit%20-%20Jobber&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://getjobber.com
date: Mon, 14 Nov 2022 20:54:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c1abc90e3b0a3418b27aa617d9e6f6eb
ec09eabd2f48a4013c6ae13d0145d5cd5823aa96
57905b7c1951f7340d51107297e02bd848abecfcf701ea8bc1befa105ee0178f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-LQXS6VVFN0&cid=529287274.1668459272>m=2oeb90&aip=1
142.250.150.157204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-LQXS6VVFN0&cid=529287274.1668459272>m=2oeb90&aip=1
IP 142.250.150.157:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-LQXS6VVFN0&cid=529287274.1668459272>m=2oeb90&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://getjobber.com
date: Mon, 14 Nov 2022 20:54:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c1abc90e3b0a3418b27aa617d9e6f6eb
ec09eabd2f48a4013c6ae13d0145d5cd5823aa96
57905b7c1951f7340d51107297e02bd848abecfcf701ea8bc1befa105ee0178f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
app.referralsaasquatch.com/a/test_abs5xl6i2g3a9/widgets/squatchcookiejson
34.107.142.212200 OK 0 B URL HTTP/2 app.referralsaasquatch.com/a/test_abs5xl6i2g3a9/widgets/squatchcookiejson
IP 34.107.142.212:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /a/test_abs5xl6i2g3a9/widgets/squatchcookiejson HTTP/1.1
Host: app.referralsaasquatch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://getjobber.com/
Origin: https://getjobber.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
request-time: 1
x-request-id: 6372ab083b4de11ab17dcdb3
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
access-control-allow-origin: https://getjobber.com
access-control-allow-headers: Origin, Content-Type, Accept
access-control-allow-methods: GET
access-control-allow-credentials: true
date: Mon, 14 Nov 2022 20:54:32 GMT
content-length: 0
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 970d01c4441cd49be2405b84108f92e0
76d266f9c4fdff5c92bc8c59623306b5793921eb
cc4cbd38314118232f6afdc6d111be42f816982f5e35b44a13e1b5ff8ec703fd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1419
Cache-Control: max-age=162746
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:32 GMT
Etag: "63727e37-138"
Expires: Wed, 16 Nov 2022 18:06:58 GMT
Last-Modified: Mon, 14 Nov 2022 17:43:19 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 312
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash d7715501764cad5c443b3cd4b50ab326
5ad5f81be25fcc6827c6c9ac9d60189cc8bb30a1
a20300a7c6481ef409e8cb5ee27ea70921a183ef775e9b1fa600d856939eb4cb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=159847
Date: Mon, 14 Nov 2022 20:54:32 GMT
Etag: "6372786f-1d7"
Expires: Wed, 16 Nov 2022 17:18:39 GMT
Last-Modified: Mon, 14 Nov 2022 17:18:39 GMT
Server: nginx
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UX-pfHX2g3ntm_g-KfuqYncXyUXbZQPfcWn2z07d6IwD-Az9641YeA==
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 2ff34b34c4e73273316b66d13ebaa44a
7de822504b89b11aad28ff3da75cbc9175018f58
a4e1789f9fce700856fdb781567b8b8732916b41134507c0eddb56afe35016cc
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 20:54:32 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 13 Nov 2022 09:46:08 GMT
Expires: Sun, 20 Nov 2022 09:46:07 GMT
Etag: "7de822504b89b11aad28ff3da75cbc9175018f58"
Cache-Control: max-age=477694,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a2a495dd49b4f4-OSL
po.joshuarms.com/i/e99b250219e75cf8a7c0538a5f132600.js
54.230.111.86200 OK 30 kB URL HTTP/2 po.joshuarms.com/i/e99b250219e75cf8a7c0538a5f132600.js
IP 54.230.111.86:0
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 755baf8f50644c2a79a597803e6be2bb
8ff28a645b39f27f3ea68866a8f2c0e12a43ea1b
a5e850618ff7fb48fc18e6496dba635b125220070f74686bd127f5a031db9fab
Analyzer Verdict Alert fortinet Phishing
GET /i/e99b250219e75cf8a7c0538a5f132600.js HTTP/1.1
Host: po.joshuarms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 30240
cache-control: max-age=43200
content-encoding: gzip
date: Mon, 14 Nov 2022 12:15:27 GMT
etag: "1434a-+7vXbKo7+JthfuRuQSQ+WRlkfjQ"
expires: Tue, 15 Nov 2022 00:15:27 GMT
server: Caddy
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: urT_VZQs7OAFSWhlkbA7tvCXL2Fdd0_Np1jOMgzW9I_a3n8EqjiVkw==
age: 31145
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/MnFebHYcqxY
142.250.74.35200 OK 472 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/MnFebHYcqxY
IP 142.250.74.35:0
Hash 4a7b4de9cf2f6e175392519c648ac7b3
dfb6ebd6456235aba2029719920ec7c3355a3918
95c618bf5d07dd697834a6565350757a971904ffc9ce56259742985d43bd4bf4
POST /s/gts1d4/MnFebHYcqxY HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:32 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
my.hellobar.com/modules.js
104.22.14.23200 OK 80 kB URL HTTP/2 my.hellobar.com/modules.js
IP 104.22.14.23:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 658f661d945a90b3f082e07b9e0cb258
27237dc2c5eaa3d1a057be4413760e0847165085
c78a8eb963ff134101e136bcdb0afecf814b8fc9909e7be49a4ee324529b1774
GET /modules.js HTTP/1.1
Host: my.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:32 GMT
content-type: text/javascript
cf-bgj: minify
cf-polished: origSize=260007
etag: W/"27c9b022c4d05919f58888137e2283e1"
last-modified: Wed, 02 Nov 2022 18:32:06 GMT
x-amz-id-2: pkFX3slapMtw5WitUt+4RFlvwyLlLnooL5NsZOVZCCgm/ES5K6sXJoscP+7LZVSQYxB5hoKtsCI=
x-amz-request-id: SWYHQATQ98YP98Z2
cache-control: max-age=14400
cf-cache-status: HIT
age: 5902
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a2a4946983b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 090c8a06c4ee2fe3c53e0e46661dcac5
cbd23d6076f417a6298d634da8ff5d3387c97499
c48b089d38c48ded38ab7a17e4deb067ff1241c71ad0ad2cd58b0e781e1bf70b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3038
Cache-Control: max-age=136632
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:32 GMT
Etag: "637211e2-138"
Expires: Wed, 16 Nov 2022 10:51:44 GMT
Last-Modified: Mon, 14 Nov 2022 10:01:06 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 312
app.referralsaasquatch.com/a/test_abs5xl6i2g3a9/widgets/squatchcookiejson
34.107.142.212200 OK 24 B URL HTTP/2 app.referralsaasquatch.com/a/test_abs5xl6i2g3a9/widgets/squatchcookiejson
IP 34.107.142.212:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2aba3b7f1ae59b3a5bf3f4d7df7c5988
74701ff4965ad81db48996f09424df6f55c197ba
aac85df03a6d6a6b1e8a9805e62ed6d995bce447cf5e5893b1ce36f98a8dc343
GET /a/test_abs5xl6i2g3a9/widgets/squatchcookiejson HTTP/1.1
Host: app.referralsaasquatch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
request-time: 3
x-request-id: 6372ab0849a6b44fbb9050c3
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
access-control-allow-origin: https://getjobber.com
access-control-allow-credentials: true
date: Mon, 14 Nov 2022 20:54:32 GMT
content-type: application/json
content-length: 24
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 090c8a06c4ee2fe3c53e0e46661dcac5
cbd23d6076f417a6298d634da8ff5d3387c97499
c48b089d38c48ded38ab7a17e4deb067ff1241c71ad0ad2cd58b0e781e1bf70b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3023
Cache-Control: max-age=136617
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:32 GMT
Etag: "637211e2-138"
Expires: Wed, 16 Nov 2022 10:51:29 GMT
Last-Modified: Mon, 14 Nov 2022 10:01:06 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 312
api.ipify.org/?format=json
54.91.59.199200 OK 21 B URL HTTP/1.1 api.ipify.org/?format=json
IP 54.91.59.199:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7d69c71af0f191e9a72db6153f8018d1
f67c5f2887bc05654b47f76e9621e53a4091aed1
5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65
GET /?format=json HTTP/1.1
Host: api.ipify.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
Access-Control-Allow-Origin: https://getjobber.com
Content-Type: application/json
Vary: Origin
Date: Mon, 14 Nov 2022 20:54:32 GMT
Content-Length: 21
Via: 1.1 vegur
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 1d0194232d8a77755c53991365041460
56f430dfa94f179c556d75abf297f40128bf60e0
22cc60d25a658dd530082628169875b674ca84094561fa5a0ae92d2661b2f2c2
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 20:54:33 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 14:54:25 GMT
Expires: Sat, 19 Nov 2022 14:54:24 GMT
Etag: "56f430dfa94f179c556d75abf297f40128bf60e0"
Cache-Control: max-age=409790,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a2a499394cb4f4-OSL
ag.gbc.criteo.com/newidsd
178.250.6.249200 OK 2.2 kB URL HTTP/2 ag.gbc.criteo.com/newidsd
IP 178.250.6.249:0
File type JSON data\012- HTML document, ASCII text, with very long lines (4928), with no line terminators
Hash f6a0525d04925e75d1ed683f6fb46afb
c04573f1aa25cce3d5b490ced5eb05ff26c460f8
78e9fb9be785e8a71fb9ff6572915aa8b2efb8548e9b2f27f449f5364f42d06a
GET /newidsd HTTP/1.1
Host: ag.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:32 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 64510
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
dnacdn.net/dna
178.250.0.157200 OK 69 kB IP 178.250.0.157:0
Hash ebfd444ca1d15ec9ab2adaab51a227ad
a860228ab3a35466bff01d6edff48f6bd60a2f98
a00af72ebb081fe4781968a82238b5bb7001a6249b6e2999acf0682d9c975d85
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=IdxV6F80M0RITmhlJTJCZkMwOUJGQlhaMUN2czZtQU1sOENuSXE3aVVHWFJZUkclMkJma3AxcUVPQVFZRzdrMVBZRDZFJTJCRDFU
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:32 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=SNVCE180M0RITmhlJTJCZkMwOUJGQlhaMUN2czZtQU1sOENuSXE3aVVHWFJZUkclMkJma3hPbmNhT2wyZGNyYVFpYURmVUxmMg; expires=Sat, 09 Dec 2023 20:54:33 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 529198
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
dynamic.criteo.com/js/ld/ld.js?a=97881
178.250.0.147200 OK 15 kB URL HTTP/2 dynamic.criteo.com/js/ld/ld.js?a=97881
IP 178.250.0.147:0
File type ASCII text, with very long lines (43225)
Hash 2cef288ddcc54f4d021470b2b5f7db22
ce15775f0cd09b4ccdba70a05a37641c8667bb8a
0ad78c4bfffb0eace681c18b7bcd8dcff482622e08f790066e2aa257d379a7d1
GET /js/ld/ld.js?a=97881 HTTP/1.1
Host: dynamic.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/javascript; charset=utf-8
server: Kestrel
cache-control: public,max-age=10800
content-encoding: br
vary: Origin, Accept-Encoding
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
bat.bing.com/bat.js
204.79.197.200200 OK 11 kB IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 text, with very long lines (39007), with no line terminators
Hash 22e2e3226eb5ada04929a2e43307eeda
04615fa88f80567974bdeb0f103ca5909746ebd7
41feebdfb0b03cd7fee2eb886adef6f3f1f85d3f14215e9a388d2a50e42efb9b
GET /bat.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: private,max-age=1800
content-length: 11421
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 09 Nov 2022 21:23:50 GMT
accept-ranges: bytes
etag: "077538f81f4d81:0"
vary: Accept-Encoding
set-cookie: MUID=329B5CB4F2E1667E3BB44EE8F314674F; domain=.bing.com; expires=Sat, 09-Dec-2023 20:54:33 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: A4DA77CC1AFB4D77BF5962F956C3E728 Ref B: OSL30EDGE0208 Ref C: 2022-11-14T20:54:33Z
date: Mon, 14 Nov 2022 20:54:32 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash 7ac53f5545f87fd18074d17386f98b16
1792092f698a9ee02e91a1e611dbd3457847bb75
352456273421d57a712f8444e073297a87c2c91ced93d71f220af246945611df
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3206
Cache-Control: max-age=92496
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:33 GMT
Etag: "637164d3-139"
Expires: Tue, 15 Nov 2022 22:36:09 GMT
Last-Modified: Sun, 13 Nov 2022 21:42:43 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 313
cdn.amplitude.com/libs/amplitude-8.18.4-min.gz.js
54.230.245.120200 OK 28 kB URL HTTP/2 cdn.amplitude.com/libs/amplitude-8.18.4-min.gz.js
IP 54.230.245.120:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d76b4e698be937f34bc26e49a5afec96
176cf9dabfb6d3661dc4116092fc793c59408237
ac67ce33d5e180e4e0de7730638764be06ecc17b651eee9b43a43abb48aa9b7e
GET /libs/amplitude-8.18.4-min.gz.js HTTP/1.1
Host: cdn.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 27625
date: Sat, 03 Sep 2022 00:56:39 GMT
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
access-control-max-age: 3000
last-modified: Tue, 31 May 2022 21:20:34 GMT
etag: "d76b4e698be937f34bc26e49a5afec96"
x-amz-server-side-encryption: AES256
cache-control: max-age=31536000
content-encoding: gzip
x-amz-version-id: G4.ApCZE8wECxdKs43_nSPjMhlx_Lj0f
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: SqAim_wWSCMQ-Sn0GJTspBeYxNiLPFD26GG-wCNwNWksys3qJUaCCg==
age: 6292675
X-Firefox-Spdy: h2
gem.gbc.criteo.com/newidsd
178.250.6.187200 OK 17 kB URL HTTP/2 gem.gbc.criteo.com/newidsd
IP 178.250.6.187:0
File type JSON data\012- , ASCII text, with very long lines (43246)
Hash e56bb7ca553e20254f8ef9208cc9e4d3
bbf18135f8982ba2ed189c5e00fb1565e0ea2a34
e7c28444b44716f739dcffd22d18e060fd58151183aee16b59014a6ccdba23b2
GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:32 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 99726
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
bat.bing.com/action/0?ti=142003240&Ver=2&mid=ca664759-7882-4a06-98fc-19d493808ff2&sid=8acfb790645e11ed804a37ea61f743ac&vid=8acfd620645e11edb00b9362d95c3bd1&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&p=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&r=<=22&evt=pageLoad&ifm=1&sv=1&rn=276325
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/action/0?ti=142003240&Ver=2&mid=ca664759-7882-4a06-98fc-19d493808ff2&sid=8acfb790645e11ed804a37ea61f743ac&vid=8acfd620645e11edb00b9362d95c3bd1&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&p=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&r=<=22&evt=pageLoad&ifm=1&sv=1&rn=276325
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /action/0?ti=142003240&Ver=2&mid=ca664759-7882-4a06-98fc-19d493808ff2&sid=8acfb790645e11ed804a37ea61f743ac&vid=8acfd620645e11edb00b9362d95c3bd1&vids=1&msclkid=N&pi=0&lg=en-US&sw=1280&sh=1024&sc=24&p=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&r=<=22&evt=pageLoad&ifm=1&sv=1&rn=276325 HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
set-cookie: MUID=3D89CC0900576618048ADE5501A26709; domain=.bing.com; expires=Sat, 09-Dec-2023 20:54:33 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: FC6F87BAC4314B768BBD2A4A47E51035 Ref B: OSL30EDGE0208 Ref C: 2022-11-14T20:54:33Z
date: Mon, 14 Nov 2022 20:54:32 GMT
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/assets/images/appstore.svg
172.67.12.54200 OK 23 kB URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/assets/images/appstore.svg
IP 172.67.12.54:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (7333)
Hash 93c11afacfac5db10443f75a688b8dfc
504f7bff28942e47654b88e07b2ec239e92c891c
f2eded7754390541de29a78b83366cee41cea01c921458996b3880a38698547a
GET /wp-content/themes/jobber-bold/assets/images/appstore.svg HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0xNFQyMDo1NDozMS41NjlaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vc3VtbWl0LyIsInV0bV9wYXJhbXMiOiJ1dG1jY249ZGlyZWN0In0=; _gcl_au=1.1.877628633.1668459272; _ga_LQXS6VVFN0=GS1.1.1668459272.1.0.1668459272.60.0.0; _ga=GA1.1.529287274.1668459272
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:32 GMT
content-type: image/svg+xml
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000
etag: W/"636c09db-1ca6"
expires: Tue, 14 Nov 2023 20:54:31 GMT
last-modified: Wed, 09 Nov 2022 20:13:15 GMT
vary: Accept-Encoding
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,35375f6de9b287143e8c4c6b256898ba7f16b58d4cbefbaeaf7056163f4c6c6c
ki-cache-type: CDN
ki-cf-cache-status: HIT
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WpbyHO9x%2BG8ucR3eiLBliKD6qc3t8roF8%2B5thGgPheokQxbPkjEcMHNVEYrkSQ6wbad88vlihunTe5X2337OED2fg1kaZ%2BA11bebXq0jOFlUEe8SpMuMju8foJQX%2Ffw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a4943cdb0b3d-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0f51a4efc7b43562164a21fac2f92dc3
ddeb9f8256d698f43e662029986c9032da79db9f
c60ba648b021d2c754eba4a6ace4758bb5a2c2b651586a6952128d0ad78045b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 872
Cache-Control: max-age=115014
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:33 GMT
Etag: "6371c5e7-1d7"
Expires: Wed, 16 Nov 2022 04:51:27 GMT
Last-Modified: Mon, 14 Nov 2022 04:36:55 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
googleads.g.doubleclick.net/pagead/viewthroughconversion/933084093/?random=1668459273607&cv=11&fst=1668459273607&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&tiba=summit%20-%20Jobber&auid=877628633.1668459272&data=event%3Dgtag.config&rfmt=3&fmt=4
216.58.211.2200 OK 876 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/933084093/?random=1668459273607&cv=11&fst=1668459273607&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&tiba=summit%20-%20Jobber&auid=877628633.1668459272&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 216.58.211.2:0
File type ASCII text, with very long lines (1851), with no line terminators
Hash ca9e212cbaf521deff78679ca9c28c32
33e756b42f15d1cf41d266fcc4fad9b10855da81
17fc04ea58aaeff62aa84052ae7180c811ade28af1333bab825d7cd138089e0b
GET /pagead/viewthroughconversion/933084093/?random=1668459273607&cv=11&fst=1668459273607&bg=ffffff&guid=ON&async=1>m=2oab90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&tiba=summit%20-%20Jobber&auid=877628633.1668459272&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 14 Nov 2022 20:54:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 876
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 14-Nov-2022 21:09:33 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/assets/theme.bundle.css?ver=1668458674
172.67.12.54200 OK 16 kB URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/assets/theme.bundle.css?ver=1668458674
IP 172.67.12.54:0
Hash 152b32b3d63c1f6e2a33bd72a3f8bc32
af009d70544222e1ad03945257c01aa9736e5c40
dfacf16fd7b94ae6b6f0dda26234de2591d748c355c0e466eb987cfe0acfa72b
GET /wp-content/themes/jobber-bold/assets/theme.bundle.css?ver=1668458674 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:32 GMT
content-type: text/css; charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000
cf-bgj: minify
cf-polished: origSize=108066
etag: W/"6372a8b2-1a622"
expires: Thu, 11 Nov 2032 20:54:31 GMT
ki-cf-cache-status: SAVING
ki-edge-o2o: yes
last-modified: Mon, 14 Nov 2022 20:44:34 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V7GOp0mb%2FtBykqzzDVhMQ2suAD2NSIV1aL%2B6Dn3QwU4%2BmI5X9niePq%2FWw2QT%2B4rWYzpFXxFr%2Ftg6uUfUQTT8HF84VJUtMkg008Po96cKWAnrthviSYKAg8rnKDl5Oc0%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,8100c7b5bc9563f12f825087f5a032ad8bc063555314587d05380b74152c055f
ki-cache-type: CDN
ki-edge: v=17.8
cf-cache-status: HIT
age: 1
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48c6bc80b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1021945940/?random=1668459271962&cv=11&fst=1668459271962&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=hCN9CKyV-QcQ1NCm5wM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&tiba=summit%20-%20Jobber&auid=877628633.1668459272&rfmt=3&fmt=4
216.58.211.2200 OK 47 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1021945940/?random=1668459271962&cv=11&fst=1668459271962&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=hCN9CKyV-QcQ1NCm5wM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&tiba=summit%20-%20Jobber&auid=877628633.1668459272&rfmt=3&fmt=4
IP 216.58.211.2:0
Hash 69df9ddde5b9f347cfd7b090e1302442
6ff27fcba3f2804ae9f60754bc4572f42e4e339e
8644e3299e88a20d62df07e84c48356d8f19bc39aa5674b1a420569c404074e7
GET /pagead/viewthroughconversion/1021945940/?random=1668459271962&cv=11&fst=1668459271962&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&label=hCN9CKyV-QcQ1NCm5wM&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&tiba=summit%20-%20Jobber&auid=877628633.1668459272&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 14 Nov 2022 20:54:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 911
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 14-Nov-2022 21:09:33 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 3ed64b41b0a432ed6f8763fb24643390
a706034f8eaca414f20e2bde40ff84dde5509515
f5486847b03849b009bebe64683cd107ac2427ffbf109786938be5e06e620aea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 35ad471bf7f157abedbe322e59bb00ae
6f8c57f1c20377b6a1f74fd06849705a6370e291
b51251f347677a52f08a4a7c0d9ff0effed121992b6dc7fa709e33c400042e63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/933084093/?random=1668459271967&cv=11&fst=1668459271967&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&tiba=summit%20-%20Jobber&auid=877628633.1668459272&rfmt=3&fmt=4
216.58.211.2200 OK 856 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/933084093/?random=1668459271967&cv=11&fst=1668459271967&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&tiba=summit%20-%20Jobber&auid=877628633.1668459272&rfmt=3&fmt=4
IP 216.58.211.2:0
File type ASCII text, with very long lines (1787), with no line terminators
Hash eae9defb713e1208b283be80cdd61d32
c55f421167c1b7a786e71956a3d9270fcf6f7d6c
36c1568d71446492b9f1919b51974fa0a5dbf4ce3d9b525e18b2459af3821ee2
GET /pagead/viewthroughconversion/933084093/?random=1668459271967&cv=11&fst=1668459271967&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&tiba=summit%20-%20Jobber&auid=877628633.1668459272&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 14 Nov 2022 20:54:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 856
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 14-Nov-2022 21:09:33 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bat.bing.com/p/action/142003240.js
204.79.197.200204 No Content 0 B URL HTTP/2 bat.bing.com/p/action/142003240.js
IP 204.79.197.200:0
ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /p/action/142003240.js HTTP/1.1
Host: bat.bing.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
cache-control: private,max-age=1800
set-cookie: MUID=32B60EB7C3F06C6D0B9B1CEBC2056D69; domain=.bing.com; expires=Sat, 09-Dec-2023 20:54:33 GMT; path=/; SameSite=None; Secure; Priority=High;
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
x-cache: CONFIG_NOCACHE
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
x-msedge-ref: Ref A: 63A9D62BD330488BACFA491080C89F62 Ref B: OSL30EDGE0208 Ref C: 2022-11-14T20:54:33Z
date: Mon, 14 Nov 2022 20:54:32 GMT
X-Firefox-Spdy: h2
getjobber.com/wp-json/api/industries-list/
172.67.12.54200 OK 28 kB URL HTTP/2 getjobber.com/wp-json/api/industries-list/
IP 172.67.12.54:0
File type JSON data\012- , ASCII text, with very long lines (59045)
Hash 2510282c7d3b2770a52126cccc9b28d6
1d0df4bb8ea6ff00a62e7821e6132e8d64982ecf
e5d43426dee78b6dcf854241c24e7b51a64794c6c5264d0c32dc912771e64064
GET /wp-json/api/industries-list/ HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0xNFQyMDo1NDozMS41NjlaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vc3VtbWl0LyIsInV0bV9wYXJhbXMiOiJ1dG1jY249ZGlyZWN0In0=; _gcl_au=1.1.877628633.1668459272; _ga_LQXS6VVFN0=GS1.1.1668459272.1.0.1668459272.60.0.0; _ga=GA1.1.529287274.1668459272
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:32 GMT
content-type: application/json; charset=UTF-8
allow: GET
content-encoding: gzip
link: <https://getjobber.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding, Origin
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
ki-cache-type: None
ki-cf-cache-status: BYPASS
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
x-kinsta-cache: HIT
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KvTPfvBmN4TSW9wEMWDz%2BoO7fJP%2B3sUJ883hM%2FCwjSWYYxVgzpHSdDnsabvUm42NuckJDlH81LunZYZSLJVVSq%2F7Nl9BOLh4RsXjCkkdKoIrrSgDSma7V3UO0eRKueg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Mon, 14 Nov 2022 18:32:50 GMT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a4943cd90b3d-OSL
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LQXS6VVFN0&cid=529287274.1668459272>m=2oeb90&aip=1&z=213188930
142.250.74.35200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LQXS6VVFN0&cid=529287274.1668459272>m=2oeb90&aip=1&z=213188930
IP 142.250.74.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-LQXS6VVFN0&cid=529287274.1668459272>m=2oeb90&aip=1&z=213188930 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Mon, 14 Nov 2022 20:54:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/assets/images/googleplay.svg
172.67.12.54200 OK 165 kB URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/assets/images/googleplay.svg
IP 172.67.12.54:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (6666)
Size 165 kB (164959 bytes)
Hash ebcd693f3885014b7cc450799fe2e10a
5e86b5a1a02130e5286d744462d84d5a92b9fb74
a88a00212f90cb9b8596c32081ce7206aaed361ebf8c0545d7809a1a936076e2
GET /wp-content/themes/jobber-bold/assets/images/googleplay.svg HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0xNFQyMDo1NDozMS41NjlaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vc3VtbWl0LyIsInV0bV9wYXJhbXMiOiJ1dG1jY249ZGlyZWN0In0=; _gcl_au=1.1.877628633.1668459272; _ga_LQXS6VVFN0=GS1.1.1668459272.1.0.1668459272.60.0.0; _ga=GA1.1.529287274.1668459272
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:32 GMT
content-type: image/svg+xml
access-control-allow-origin: *
age: 1
cache-control: public, max-age=31536000
etag: W/"636c09db-1a0b"
expires: Tue, 14 Nov 2023 20:54:31 GMT
last-modified: Wed, 09 Nov 2022 20:13:15 GMT
vary: Accept-Encoding
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,b272a5f8e01ccda456f4e4dba9f5e8214f2afde9b0523879e1bac6e43b5078d0
ki-cache-type: CDN
ki-cf-cache-status: HIT
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zp27c7I7oRwehgjot1w%2FSWo31jayksnYvd9W0b6%2FC5TXczyqEw18Vrkddkbq66uujiof%2BKtE9nmT7R4i%2FzZAVBrzqXIHmFZw%2BtCwXvZOqVkzmqDdiUv3lLsuMf3GK04%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a4943cdc0b3d-OSL
X-Firefox-Spdy: h2
sslwidget.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252Fsummit%252F&dtycbr=71063
178.250.0.163302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252Fsummit%252F&dtycbr=71063
IP 178.250.0.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252Fsummit%252F&dtycbr=71063 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 14 Nov 2022 20:54:33 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252Fsummit%252F&dtycbr=71063
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 7737631
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
sslwidget.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd%26ui_traffic%3D1&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&tld=getjobber.com&fu=https%253A%252F%252Fgetjobber.com%252Fsummit%252F&dtycbr=33636
178.250.0.163302 Found 0 B URL HTTP/2 sslwidget.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd%26ui_traffic%3D1&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&tld=getjobber.com&fu=https%253A%252F%252Fgetjobber.com%252Fsummit%252F&dtycbr=33636
IP 178.250.0.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd%26ui_traffic%3D1&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&tld=getjobber.com&fu=https%253A%252F%252Fgetjobber.com%252Fsummit%252F&dtycbr=33636 HTTP/1.1
Host: sslwidget.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 14 Nov 2022 20:54:33 GMT
server: Kestrel
content-length: 0
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
location: https://widget.us.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd%26ui_traffic%3D1&p1=e%3Dvh&p2=e%3Ddis&adce=1&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&tld=getjobber.com&fu=https%253A%252F%252Fgetjobber.com%252Fsummit%252F&dtycbr=33636
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
server-processing-duration-in-ticks: 11329398
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0f51a4efc7b43562164a21fac2f92dc3
ddeb9f8256d698f43e662029986c9032da79db9f
c60ba648b021d2c754eba4a6ace4758bb5a2c2b651586a6952128d0ad78045b2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 872
Cache-Control: max-age=115014
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:33 GMT
Etag: "6371c5e7-1d7"
Expires: Wed, 16 Nov 2022 04:51:27 GMT
Last-Modified: Mon, 14 Nov 2022 04:36:55 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 35ad471bf7f157abedbe322e59bb00ae
6f8c57f1c20377b6a1f74fd06849705a6370e291
b51251f347677a52f08a4a7c0d9ff0effed121992b6dc7fa709e33c400042e63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 3ed64b41b0a432ed6f8763fb24643390
a706034f8eaca414f20e2bde40ff84dde5509515
f5486847b03849b009bebe64683cd107ac2427ffbf109786938be5e06e620aea
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dnacdn.net/dna
178.250.0.157200 OK 209 B IP 178.250.0.157:0
Hash 3263741ac61211752274e90549174f29
6ed2146dd2d0464ee651fefc950ca3828e2b367f
66f790acb26b897b47801af400f72694df2c69e6764f023377b9d1750f19c3e7
GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=SNVCE180M0RITmhlJTJCZkMwOUJGQlhaMUN2czZtQU1sOENuSXE3aVVHWFJZUkclMkJma3hPbmNhT2wyZGNyYVFpYURmVUxmMg
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:33 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=zfBzP180M0RITmhlJTJCZkMwOUJGQlhaMUN2czZtQU1sOENuSXE3aVVHWFJZUkclMkJma3ZTc2V2QjdIV28wRzBISkZIenNaYQ; expires=Sat, 09 Dec 2023 20:54:33 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 346671
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
getjobber.com/wp-json/api/ipstack/?bypass_cache=true&ip=91.90.42.154
172.67.12.54200 OK 525 B URL HTTP/2 getjobber.com/wp-json/api/ipstack/?bypass_cache=true&ip=91.90.42.154
IP 172.67.12.54:0
Hash 1afe2bda54d162fa7d458de4824b7084
0931c0d526a426f455524c1bdf9d12e7418a3733
7b4dad14318ab02cef1b0185af486a9db6a7ddcfb8b56a0fb8ba5e8a31744904
GET /wp-json/api/ipstack/?bypass_cache=true&ip=91.90.42.154 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0xNFQyMDo1NDozMS41NjlaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vc3VtbWl0LyIsInV0bV9wYXJhbXMiOiJ1dG1jY249ZGlyZWN0In0=; _gcl_au=1.1.877628633.1668459272; _ga_LQXS6VVFN0=GS1.1.1668459272.1.0.1668459272.60.0.0; _ga=GA1.1.529287274.1668459272; _tt_enable_cookie=1; _ttp=5feced96-7c6d-4304-a1f5-8b5c38f83395; _tq_id.TV-7281904572-1.6f05=11b35a341db9022a.1668459273.0.1668459273..; _cq_duid=1.1668459273.ka3gMRFsii99kGAx; _cq_suid=1.1668459273.9bqqrMLza9sapahx
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:33 GMT
content-type: application/json; charset=UTF-8
allow: GET
content-encoding: gzip
link: <https://getjobber.com/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding, Origin
cf-cache-status: DYNAMIC
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
ki-cache-type: None
ki-cf-cache-status: BYPASS
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
x-kinsta-cache: BYPASS
x-robots-tag: noindex
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2B0CTe007BBN5giFdaWASNibIWFaqF5339VKGc%2FoHlkwmqH%2B%2FAvaQ5VA%2FKM4fCW6xprKnxzk50JK6RIfaFJ1lyKRiC99%2FG9sY3jNWKx%2BYOwRNjDWaZKL2rPZKqA2W1A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a498d9140b3d-OSL
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/identify.js
23.36.79.32200 OK 31 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/identify.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Hash 70c54ed5e985899f93d994cda8d7669c
cea054dfa8411aec1b56ab1a46830482bcbd4842
524e1c61e10b4be9800b12f7f35d084dad18d5b2ba287ed4c14eea64c4e1487d
GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2HYPvLnLVMiPcmGfEhM9BDjcFCm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 202211142054330BD55B563FF1B594E36F
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1beb78f461edea52c08d6017cfa79fc0b9d330dd69f25409c491d2ee08d2b1d9ed019644798ed65a8a079aa1f218fabc2b2945662bbe922d345f128523eb5092d9b3
content-encoding: gzip
x-origin-response-time: 8,23.218.220.133
x-akamai-request-id: 8e599aa1.317fe5ba
expires: Mon, 14 Nov 2022 20:54:33 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 14 Nov 2022 20:54:33 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a23-218-220-133.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=8, inner; dur=3
x-parent-response-time: 109,23.36.79.28
X-Firefox-Spdy: h2
secure.getjobber.com/website_details
172.67.12.54200 OK 133 B URL HTTP/2 secure.getjobber.com/website_details
IP 172.67.12.54:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 2c0012aa9b27ece17b78ed2b7efcfda5
f9c4bd3a42ed7f9e0316728db8fa6a3d78215385
8004e8a73dc8a6bf1d9f7f2956a5bc5963d9d91563eedefe0a9210eeea18baec
GET /website_details HTTP/1.1
Host: secure.getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0xNFQyMDo1NDozMS41NjlaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vc3VtbWl0LyIsInV0bV9wYXJhbXMiOiJ1dG1jY249ZGlyZWN0In0=; _gcl_au=1.1.877628633.1668459272; _ga_LQXS6VVFN0=GS1.1.1668459272.1.0.1668459272.60.0.0; _ga=GA1.1.529287274.1668459272; _tt_enable_cookie=1; _ttp=5feced96-7c6d-4304-a1f5-8b5c38f83395; _cq_duid=1.1668459273.ka3gMRFsii99kGAx; _cq_suid=1.1668459273.9bqqrMLza9sapahx; cto_bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA; _uetsid=8acfb790645e11ed804a37ea61f743ac; _uetvid=8acfd620645e11edb00b9362d95c3bd1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:34 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://getjobber.com
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 7200
access-control-allow-credentials: true
cache-control: no-cache, no-store
pragma: no-cache
vary: Accept-Encoding, Origin
content-encoding: gzip
etag: W/"8004e8a73dc8a6bf1d9f7f2956a5bc59"
x-request-id: 3f1854f5-abae-4472-a6b2-6344cae8a539
x-runtime: 0.015825
strict-transport-security: max-age=2592000; includeSubDomains
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
content-security-policy: default-src *; base-uri 'self'; child-src blob: *; connect-src *; font-src data: *; form-action *; frame-ancestors 'self'; frame-src *; img-src data: *; media-src blob: *; script-src 'unsafe-inline' 'unsafe-eval' *; style-src 'unsafe-inline' *; worker-src blob:
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76a2a49dde3b0b3d-OSL
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 765
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2HYPvLnLVMiPcmGfEhM9BDjcFCm
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202211142054349D6853F89D087D8ED819
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1beb29a903d51f2fcf63164750b3b6180ca46c3b211c60da74b414e4b27a0878d7d6cbde312fb144954e0567337d1180743e72a0be934370ac0efa7ee75bc1c42842
x-origin-response-time: 26,23.218.220.137
x-akamai-request-id: 1a3bf9bd.317fe860
expires: Mon, 14 Nov 2022 20:54:34 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 14 Nov 2022 20:54:34 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=102, origin; dur=26, inner; dur=18
x-parent-response-time: 125,23.36.79.28
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 786
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2HYPvLnLVMiPcmGfEhM9BDjcFCm
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 202211142054342D9336F733B4B595CBED
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465b37c68b021be14b3fb4371b9a5b962a466bfb41dfa02b9851cd6cde393966101b0d883f5b643dbe54f51bd3d92873c7c1
expires: Mon, 14 Nov 2022 20:54:34 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 14 Nov 2022 20:54:34 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=18, cdn-cache; desc=MISS, edge; dur=3, origin; dur=114
x-origin-response-time: 114,23.36.79.28
x-akamai-request-id: 317fe874
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 4b498893e1f4abbb28089d53094126fa
0c8ea27d2292b6ab903dfe792a18b47b565b2f4f
1349a38392059f298aee7cb0a045aadca474fbba38b0732335dc5995ef14b5ec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5200
Cache-Control: max-age=116086
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:34 GMT
Etag: "6371b930-138"
Expires: Wed, 16 Nov 2022 05:09:20 GMT
Last-Modified: Mon, 14 Nov 2022 03:42:40 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 4b498893e1f4abbb28089d53094126fa
0c8ea27d2292b6ab903dfe792a18b47b565b2f4f
1349a38392059f298aee7cb0a045aadca474fbba38b0732335dc5995ef14b5ec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4050
Cache-Control: max-age=114935
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:34 GMT
Etag: "6371b930-138"
Expires: Wed, 16 Nov 2022 04:50:09 GMT
Last-Modified: Mon, 14 Nov 2022 03:42:40 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 312
gum.criteo.com/sid/json?origin=onetag&domain=getjobber.com&sn=FirefoxSyncframe&so=3&topUrl=getjobber.com&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&info=zfBzP180M0RITmhlJTJCZkMwOUJGQlhaMUN2czZtQU1sOENuSXE3aVVHWFJZUkclMkJma3ZTc2V2QjdIV28wRzBISkZIenNaYQ&idsd=1714445960,674233582&cw=1&lsw=1
178.250.2.146200 OK 317 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=getjobber.com&sn=FirefoxSyncframe&so=3&topUrl=getjobber.com&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&info=zfBzP180M0RITmhlJTJCZkMwOUJGQlhaMUN2czZtQU1sOENuSXE3aVVHWFJZUkclMkJma3ZTc2V2QjdIV28wRzBISkZIenNaYQ&idsd=1714445960,674233582&cw=1&lsw=1
IP 178.250.2.146:0
File type JSON data\012- , ASCII text, with very long lines (401), with no line terminators
Hash 874d65f76240533143e5ff8f6c00d96b
f44f24b7babe731ba7eb6da0ac06f51eda5b3100
6878034af1fb8c3dd636b57e3e1bbb2f3b8ffeee5773a14956c170ee33b402ef
GET /sid/json?origin=onetag&domain=getjobber.com&sn=FirefoxSyncframe&so=3&topUrl=getjobber.com&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&info=zfBzP180M0RITmhlJTJCZkMwOUJGQlhaMUN2czZtQU1sOENuSXE3aVVHWFJZUkclMkJma3ZTc2V2QjdIV28wRzBISkZIenNaYQ&idsd=1714445960,674233582&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=getjobber.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:34 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1547576
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=953815214693708&ev=PageView&dl=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&rl=&if=false&ts=1668459274180&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668459274179.1575342682&it=1668459273957&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=953815214693708&ev=PageView&dl=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&rl=&if=false&ts=1668459274180&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668459274179.1575342682&it=1668459273957&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=953815214693708&ev=PageView&dl=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&rl=&if=false&ts=1668459274180&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.1.1668459274179.1575342682&it=1668459273957&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Mon, 14 Nov 2022 20:54:34 GMT
X-Firefox-Spdy: h2
ocsp.comodoca.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash 3924f33b4f19db426a09b24f6afa4c07
e73df8ce697e5ae5acad02a7ddcea11ff63ce810
4439cf2763c1ca4780b4f34dbeedda4bf0686df625bb9d1f7700c96f121322dd
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 20:54:34 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 15:38:21 GMT
Expires: Sat, 19 Nov 2022 15:38:20 GMT
Etag: "e73df8ce697e5ae5acad02a7ddcea11ff63ce810"
Cache-Control: max-age=603112,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 689
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76a2a4a11867b51e-OSL
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 12 Nov 2022 12:31:58 GMT
expires: Sun, 12 Nov 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 202956
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 21:46:16 GMT
expires: Fri, 10 Nov 2023 21:46:16 GMT
cache-control: public, max-age=31536000
age: 342498
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-ocDzpTqIzvdOP-wCc58PQpyqhO00nMGQ_ebOfw&google_cm&google_hm=ay1vY0R6cFRxSXp2ZE9QLXdDYzU4UFFweXFoTzAwbk1HUV9lYk9mdw
216.58.207.194302 Found 440 B URL HTTP/2 cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-ocDzpTqIzvdOP-wCc58PQpyqhO00nMGQ_ebOfw&google_cm&google_hm=ay1vY0R6cFRxSXp2ZE9QLXdDYzU4UFFweXFoTzAwbk1HUV9lYk9mdw
IP 216.58.207.194:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash fbe4bb8b5ecafb1ba45bb588a5ab668b
a346544ddc604f83f8bbf937735322ae65e0128d
c844a5d8909116dd9552d277a40e922803afc669d592fee0e80519d8651532ed
GET /pixel?google_nid=cjp&google_sc&google_ula=913071&CriteoUserId=k-ocDzpTqIzvdOP-wCc58PQpyqhO00nMGQ_ebOfw&google_cm&google_hm=ay1vY0R6cFRxSXp2ZE9QLXdDYzU4UFFweXFoTzAwbk1HUV9lYk9mdw HTTP/1.1
Host: cm.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
location: https://cm.g.doubleclick.net/pixel?google_nid=cjp&google_sc=&google_ula=913071&CriteoUserId=k-ocDzpTqIzvdOP-wCc58PQpyqhO00nMGQ_ebOfw&google_cm=&google_hm=ay1vY0R6cFRxSXp2ZE9QLXdDYzU4UFFweXFoTzAwbk1HUV9lYk9mdw&google_tc=
date: Mon, 14 Nov 2022 20:54:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
server: HTTP server (unknown)
content-length: 440
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 14-Nov-2022 21:09:34 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5d2eea59de379caed817263e9fa0287c
61d9525817307bc0139fa89f32760cacded0386b
ddcafa328d3c394c2c7cefef973ef4570eaf800f0ecf7118218d4241248c7a36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DDCAFA328D3C394C2C7CEFEF973EF4570EAF800F0ECF7118218D4241248C7A36"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9017
Expires: Mon, 14 Nov 2022 23:24:51 GMT
Date: Mon, 14 Nov 2022 20:54:34 GMT
Connection: keep-alive
matching.ivitrack.com/sync?realm=criteo&uid=k-9xY1JTqIzvdOP-wCc58PQpyqhO3P7GDLJWD3LQ
34.117.157.22200 OK 42 B URL HTTP/2 matching.ivitrack.com/sync?realm=criteo&uid=k-9xY1JTqIzvdOP-wCc58PQpyqhO3P7GDLJWD3LQ
IP 34.117.157.22:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /sync?realm=criteo&uid=k-9xY1JTqIzvdOP-wCc58PQpyqhO3P7GDLJWD3LQ HTTP/1.1
Host: matching.ivitrack.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: istio-envoy
date: Mon, 14 Nov 2022 20:54:33 GMT
content-type: image/gif
content-length: 42
cache-control: public, max-age=86400
x-envoy-upstream-service-time: 0
x-envoy-decorator-operation: tag-manager.programmatic.svc.cluster.local:3000/*
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5d2eea59de379caed817263e9fa0287c
61d9525817307bc0139fa89f32760cacded0386b
ddcafa328d3c394c2c7cefef973ef4570eaf800f0ecf7118218d4241248c7a36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DDCAFA328D3C394C2C7CEFEF973EF4570EAF800F0ECF7118218D4241248C7A36"
Last-Modified: Sun, 13 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9017
Expires: Mon, 14 Nov 2022 23:24:51 GMT
Date: Mon, 14 Nov 2022 20:54:34 GMT
Connection: keep-alive
der.joshuarms.com/mon
50.16.211.97200 OK 0 B IP 50.16.211.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
POST /mon HTTP/1.1
Host: der.joshuarms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1385
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: cg_uuid=d113ccc00f6fdb370bb978a2be35c1dc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://getjobber.com
content-type: application/json
date: Mon, 14 Nov 2022 20:54:34 GMT
content-length: 0
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 80d1a1bb8f3b68aa27b05b82c5c31faf
4bee53143492b5916e2989c197bf671be43eef72
356ce00b11f4a191ff9d305587a16a2916249aed598701e300fe5ffce816c972
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=117824
Date: Mon, 14 Nov 2022 20:54:34 GMT
Etag: "6371cfa7-1d7"
Expires: Wed, 16 Nov 2022 05:38:18 GMT
Last-Modified: Mon, 14 Nov 2022 05:18:31 GMT
Server: ECS (nyb/1D11)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 33P6jK9Ic262UE9cRGqWjez6NsRHcr5JWpHrwOzmsQpXaHzz6xdNug==
Age: 1187
api.amplitude.com/
50.112.175.36200 OK 0 B IP 50.112.175.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: api.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: cross-origin-resource-policy
Referer: https://getjobber.com/
Origin: https://getjobber.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:34 GMT
content-length: 0
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: cross-origin-resource-policy
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=8&r=1&a=1&u=https%3A%2F%2Fdpm.demdex.net%2Fibs%3Adpid%3D28645%26dpuuid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 14 Nov 2022 20:54:33 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://dpm.demdex.net/ibs:dpid=28645&dpuuid=
server-processing-duration-in-ticks: 962639
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
der.joshuarms.com/mon
50.16.211.97200 OK 0 B IP 50.16.211.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
POST /mon HTTP/1.1
Host: der.joshuarms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1380
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: cg_uuid=d113ccc00f6fdb370bb978a2be35c1dc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://getjobber.com
content-type: application/json
date: Mon, 14 Nov 2022 20:54:34 GMT
content-length: 0
X-Firefox-Spdy: h2
contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-6PcNvDqIzvdOP-wCc58PQpyqhO3K-Nrjig2eYg
23.38.200.22200 OK 45 B URL HTTP/2 contextual.media.net/cksync.php?cs=3&type=crt&ovsid=k-6PcNvDqIzvdOP-wCc58PQpyqhO3K-Nrjig2eYg
IP 23.38.200.22:0
File type GIF image data, version 87a, 1 x 1\012- data
Hash 99cceceaed4d575484b69ddaf9ed66a7
1e3a3b15296b585833a22d987a387aa58aa1642d
832f63f4187160c195b04f1911c2e623a75e805f4b23abb9b0bea214b4283a43
GET /cksync.php?cs=3&type=crt&ovsid=k-6PcNvDqIzvdOP-wCc58PQpyqhO3K-Nrjig2eYg HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Apache
content-length: 45
content-type: image/gif
set-cookie: visitor-id=3114608743580251000V10; Expires=Tue, 14 Nov 2023 20:54:34 GMT; domain=.media.net; Path=/;
data-c-ts=1668459274;Expires=Wed, 14 Dec 2022 20:54:34 GMT;path=/;domain=.media.net;
data-c=k-6PcNvDqIzvdOP-wCc58PQpyqhO3K-Nrjig2eYg~~3;Expires=Wed, 14 Dec 2022 20:54:34 GMT;path=/;domain=.media.net;
p3p: CP="NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA", CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA, CP: NON DSP COR NID CUR ADMa DEVo TAI PSA PSDo HIS OUR BUS COM NAV INT STA
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-mnet-hl2: E
expires: Mon, 14 Nov 2022 20:54:34 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 14 Nov 2022 20:54:34 GMT
X-Firefox-Spdy: h2
my.hellobar.com/a2cdf622765dc8808ab345938db82e6ab2f77a5e.js
104.22.14.23200 OK 6.2 kB URL HTTP/2 my.hellobar.com/a2cdf622765dc8808ab345938db82e6ab2f77a5e.js
IP 104.22.14.23:0
File type ASCII text, with very long lines (51768), with no line terminators
Hash 9963ba016cb95032da0d205f039c6811
35e99994ee91855472df374099f0111c9064761a
708789fd457a6be70e14504b829a6d5221228c26c52c2486fe8eae8ddf969597
GET /a2cdf622765dc8808ab345938db82e6ab2f77a5e.js HTTP/1.1
Host: my.hellobar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:32 GMT
content-type: text/javascript
cache-control: max-age=86400, must-revalidate, proxy-revalidate, s-maxage=10
cf-bgj: minify
etag: W/"bce4852c8b2a99ab4036c8af61d6f378"
last-modified: Mon, 14 Nov 2022 12:21:19 GMT
x-amz-id-2: 5RtE+g7iUQcZAy/eLgRNGsoafxU0jHT2MBmL6mIV+XDUMEcPNFbTnD39JV/1gZ7YqNtvR7VGpG4=
x-amz-request-id: N6K80EWGAH6Y98QT
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 76a2a492aefdb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash e12d3f103485b049a6f85b2c577b618a
7efba475e4bfae257fbef2f7b5c14fbfcd3cf0a4
677017b3c2ef173bcb5d7ed8cb3fab9e8b9a43c6e14a57367380faace8c81dd3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2008
Cache-Control: max-age=156812
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:34 GMT
Etag: "637264be-138"
Expires: Wed, 16 Nov 2022 16:28:06 GMT
Last-Modified: Mon, 14 Nov 2022 15:54:38 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 312
api.amplitude.com/
50.112.175.36200 OK 7 B IP 50.112.175.36:0
File type ASCII text, with no line terminators
Hash 260ca9dd8a4577fc00b7bd5810298076
53a5687cb26dc41f2ab4033e97e13adefd3740d6
aee408847d35e44e99430f0979c3357b85fe8dbb4535a494301198adbee85f27
POST / HTTP/1.1
Host: api.amplitude.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Cross-Origin-Resource-Policy: cross-origin
Content-Length: 1127
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:34 GMT
content-type: text/html;charset=utf-8
content-length: 7
access-control-allow-origin: *
access-control-allow-methods: GET, POST
trace-id: Root=1-6372ab0a-13d2a3e70f9a9199778b77aa
strict-transport-security: max-age=15768000
X-Firefox-Spdy: h2
r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-XVI8PzqIzvdOP-wCc58PQpyqhO3w4BTIZxlBmA&C=1
104.18.33.19200 OK 43 B URL HTTP/2 r.casalemedia.com/rum?cm_dsp_id=20&external_user_id=k-XVI8PzqIzvdOP-wCc58PQpyqhO3w4BTIZxlBmA&C=1
IP 104.18.33.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /rum?cm_dsp_id=20&external_user_id=k-XVI8PzqIzvdOP-wCc58PQpyqhO3w4BTIZxlBmA&C=1 HTTP/1.1
Host: r.casalemedia.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:34 GMT
content-type: image/gif
content-length: 43
cf-ray: 76a2a4a41ad7fac0-OSL
cache-control: no-cache
expires: 0
cf-cache-status: DYNAMIC
pragma: no-cache
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=A6agfJORF2ir%2BQAcw7ipOORwlbH5JVxzHAc%2B2P1jhPQPuDF60XkzrRPAtrRK9Cvn%2B6LheEFbB87np5Glvlu94gw4WcFvX4GnGAD75Q01Z8vcO4tGA6mppt7eKBHVT%2BE4UhO3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
dx.mountain.com/spx?dxver=4.0.0&shaid=32677&tdr=&plh=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&cb=48436427006788150term=value
52.88.179.26200 4.0 kB URL HTTP/1.1 dx.mountain.com/spx?dxver=4.0.0&shaid=32677&tdr=&plh=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&cb=48436427006788150term=value
IP 52.88.179.26:0
File type ASCII text, with very long lines (15280), with no line terminators
Hash ba0866b649abed0fe3994721d87b1289
2406d513ebb8f7afb92f98d7baec302975e53cd2
8737c06a33a436b729037e6acfa9ed0d65b1df50dfd7a4911a32245b8c1cd7b2
GET /spx?dxver=4.0.0&shaid=32677&tdr=&plh=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&cb=48436427006788150term=value HTTP/1.1
Host: dx.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: origin,access-control-request-method,access-control-request-headers,accept-encoding
expires: Thu, 01 Jan 1970 00:00:00 GMT
content-encoding: gzip
content-type: application/javascript;charset=utf-8
date: Mon, 14 Nov 2022 20:54:32 GMT
connection: close
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ed9f54bc601c267b0eb88dea9fa92763
a40597e005cb649efddc1807afba167cf714c721
afff95c5d1863adc27084c005457ca11ddf71b9a41f585b2fc2f1bd259a3ee65
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4247
Cache-Control: max-age=105787
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:34 GMT
Etag: "637194ae-1d7"
Expires: Wed, 16 Nov 2022 02:17:41 GMT
Last-Modified: Mon, 14 Nov 2022 01:06:54 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-T-55zzqIzvdOP-wCc58PQpyqhO2F05pt5tVnWA
185.86.137.131200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-T-55zzqIzvdOP-wCc58PQpyqhO2F05pt5tVnWA
IP 185.86.137.131:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-T-55zzqIzvdOP-wCc58PQpyqhO2F05pt5tVnWA HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Mon, 14 Nov 2022 20:54:34 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=3189973074137835210; expires=Thu, 14 Dec 2023 20:54:34 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Thu, 14 Dec 2023 20:54:34 GMT; domain=smartadserver.com; path=/
csync=79:k-T-55zzqIzvdOP-wCc58PQpyqhO2F05pt5tVnWA; expires=Tue, 14 Nov 2023 20:54:34 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4b008aefbc7e2f5f166e22b327c04b80
4137f5b5a12fd982a7f42bd2f144a61b53620501
4de2299e85824e9ff61023c9ec7682bf3f3c65c1ac7990402c6d005f3e7bb26b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3525
Cache-Control: max-age=135639
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:34 GMT
Etag: "63720c1c-1d7"
Expires: Wed, 16 Nov 2022 10:35:13 GMT
Last-Modified: Mon, 14 Nov 2022 09:36:28 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-jFWPOTqIzvdOP-wCc58PQpyqhO28A643y4MHXQ&expires=30
213.19.162.90204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-jFWPOTqIzvdOP-wCc58PQpyqhO28A643y4MHXQ&expires=30
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-jFWPOTqIzvdOP-wCc58PQpyqhO28A643y4MHXQ&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 7c5d24517ee193cc868994bc18883d1d
Content-Type: image/gif
criteo-sync.teads.tv/um?eid=80&uid=k-Z2vsUDqIzvdOP-wCc58PQpyqhO1GSenAyvDnFg
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-Z2vsUDqIzvdOP-wCc58PQpyqhO1GSenAyvDnFg
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-Z2vsUDqIzvdOP-wCc58PQpyqhO1GSenAyvDnFg HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Mon, 14 Nov 2022 20:54:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 14 Nov 2022 20:54:35 GMT
X-Firefox-Spdy: h2
widget.us.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252Fsummit%252F&dtycbr=71063
74.119.119.150200 OK 3.7 kB URL HTTP/2 widget.us.criteo.com/event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252Fsummit%252F&dtycbr=71063
IP 74.119.119.150:0
Hash a4f6443a0873a7990effeef847a84f2d
c4205c02142b094889bf121195e603c5210228cd
3e909eab21cd8b14f2f7b3d3d7d82ff6479657899e4f2b0a66722b4009e774da
GET /event?a=97881&v=5.12.3&p0=e%3Dexd%26site_type%3Dd&p1=e%3Dvh%26tms%3Dcustom-guide&p2=e%3Ddis&adce=1&bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA&tld=getjobber.com&dy=1&fu=https%253A%252F%252Fgetjobber.com%252Fsummit%252F&dtycbr=71063 HTTP/1.1
Host: widget.us.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getjobber.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:34 GMT
content-type: application/x-javascript
server: Kestrel
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
expires: 0
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
p3p: NON DSP COR CURa PSA PSD OUR BUS NAV STA
timing-allow-origin: *
server-processing-duration-in-ticks: 11270309
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash aa58940abc6648e06f52799500127ab6
f601daf50496233c8e509bb79363edc0c2adc934
c2d3810d11b63d212d06fe26c202c658150d1b07d63314e93c2c11da67fcf36e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1767
Cache-Control: max-age=152962
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:35 GMT
Etag: "637256a6-1d7"
Expires: Wed, 16 Nov 2022 15:23:57 GMT
Last-Modified: Mon, 14 Nov 2022 14:54:30 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
37.252.171.21302 Found 0 B URL HTTP/1.1 ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
IP 37.252.171.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Server: nginx/1.21.3
Date: Mon, 14 Nov 2022 20:54:35 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
AN-X-Request-Uuid: fd80ed78-a459-42cc-8eba-9bd629f84d5f
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1004.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash ce4e508120ccc7a289feb203006dac93
13d6e09cb2ea439b0d3ff00b165cdd90776eb4d1
a058745f8ae18e2b883213483a50de493d78f5561cf51b099da90893b554dd90
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 20:54:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 01:56:50 GMT
Expires: Sat, 19 Nov 2022 01:56:49 GMT
Etag: "13d6e09cb2ea439b0d3ff00b165cdd90776eb4d1"
Cache-Control: max-age=363133,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a2a4a4caddb4f4-OSL
cm.adform.net/pixel?adform_pid=15&adform_pc=k-xBHr3DqIzvdOP-wCc58PQpyqhO0Zgf_IAqtyTA
37.157.4.29200 OK 43 B URL HTTP/2 cm.adform.net/pixel?adform_pid=15&adform_pc=k-xBHr3DqIzvdOP-wCc58PQpyqhO0Zgf_IAqtyTA
IP 37.157.4.29:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /pixel?adform_pid=15&adform_pc=k-xBHr3DqIzvdOP-wCc58PQpyqhO0Zgf_IAqtyTA HTTP/1.1
Host: cm.adform.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 14 Nov 2022 20:54:35 GMT
content-type: image/gif
content-length: 43
last-modified: Wed, 10 Apr 2019 11:14:34 GMT
etag: "5cadd01a-2b"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash df37c6f34027e31deb952b015ef66b3a
6b76415197099e03f98de8cc09487e72a0a102e7
d238e105b115c424b6e4991e6206348b73fd0db8787b792054eac59c62f70539
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=106070
Date: Mon, 14 Nov 2022 20:54:35 GMT
Etag: "63718db7-1d7"
Expires: Wed, 16 Nov 2022 02:22:25 GMT
Last-Modified: Mon, 14 Nov 2022 00:37:11 GMT
Server: ECS (nyb/1D2C)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ZAXqScgF7yvtJRfqsOhJasrI9Xu7L5xEufEAW7it_HEGbuGOW9GrnA==
Age: 6314
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 884aaa2023967644a3991957b32a144a
45e4fc1734da80ce2897896852313730e4f75964
2c3c1bec39dbeb3e9ac92ed750f28ed5de134b1756b3efcab866608657ef866c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2C3C1BEC39DBEB3E9AC92ED750F28ED5DE134B1756B3EFCAB866608657EF866C"
Last-Modified: Mon, 14 Nov 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3068
Expires: Mon, 14 Nov 2022 21:45:43 GMT
Date: Mon, 14 Nov 2022 20:54:35 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c40d96573e3018746437854c6bbc7b52
0cb1607057789a6290c408db7cc6397929ee58e5
4da062579da7fa979788fa4b274785c70e33ec59f67f0ab9e5cca16031b6f353
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6019
Cache-Control: max-age=158292
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:35 GMT
Etag: "63725adc-1d7"
Expires: Wed, 16 Nov 2022 16:52:47 GMT
Last-Modified: Mon, 14 Nov 2022 15:12:28 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 2effd87df22ca73be78f36170dd8b7df
55d1567a658c942650ef14b171ec6e3e2f78b113
1155a26c0e2db9812faba493ab1e2cb3b36c07342b1495439c03e5ae7cdd669f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=119871
Date: Mon, 14 Nov 2022 20:54:35 GMT
Etag: "6371cb7c-1d7"
Expires: Wed, 16 Nov 2022 06:12:26 GMT
Last-Modified: Mon, 14 Nov 2022 05:00:44 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tYYgeSZYj63adgt-FIZzKyBWyjWJsuf2lZngwikJTkIzk1PAVzSS7g==
Age: 4302
x.bidswitch.net/sync?dsp_id=46&user_id=k-ob1ARjqIzvdOP-wCc58PQpyqhO3WkYED6ajwrw&expires=30
35.158.226.123200 OK 43 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-ob1ARjqIzvdOP-wCc58PQpyqhO3WkYED6ajwrw&expires=30
IP 35.158.226.123:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?dsp_id=46&user_id=k-ob1ARjqIzvdOP-wCc58PQpyqhO3WkYED6ajwrw&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:35 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 21dfe0127614ed425f94459aa75f5720
ec393ffcb14559e95b22b8d8e52df2878ed67ccb
9806ae7c4a15ba38a9bf6b89e7f20648116d9065ccc91cbd984a63b1f68a4606
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3666
Cache-Control: max-age=123209
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:35 GMT
Etag: "6371db02-1d7"
Expires: Wed, 16 Nov 2022 07:08:04 GMT
Last-Modified: Mon, 14 Nov 2022 06:06:58 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg
18.159.151.3302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg
IP 18.159.151.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 14 Nov 2022 20:54:35 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg
set-cookie: tuuid=93f1387f-e852-4d5b-ac63-3d8cf4332560; Expires=Sun, 12 Feb 2023 20:54:35 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1668459275; Expires=Sun, 12 Feb 2023 20:54:35 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
ad.yieldlab.net/m?dt_id=8664&ext_id=k-QsxEAzqIzvdOP-wCc58PQpyqhO0CnSo_hAQ_VQ
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-QsxEAzqIzvdOP-wCc58PQpyqhO0CnSo_hAQ_VQ
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-QsxEAzqIzvdOP-wCc58PQpyqhO0CnSo_hAQ_VQ HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Sun, 13 Nov 2022 20:54:35 GMT
Date: Mon, 14 Nov 2022 20:54:35 GMT
Connection: keep-alive
Set-Cookie: id=93c1b0b9-4a89-4651-8dc4-cbe572acd5b7; Path=/; Domain=yieldlab.net; Expires=Tue, 14-Nov-2023 20:54:35 GMT; Max-Age=31536000; Secure; SameSite=None
id5-sync.com/s/966/9.gif?puid=k-MjOLGTqIzvdOP-wCc58PQpyqhO14TvROg2597g
162.19.138.117200 43 B URL HTTP/1.1 id5-sync.com/s/966/9.gif?puid=k-MjOLGTqIzvdOP-wCc58PQpyqhO14TvROg2597g
IP 162.19.138.117:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7
GET /s/966/9.gif?puid=k-MjOLGTqIzvdOP-wCc58PQpyqhO14TvROg2597g HTTP/1.1
Host: id5-sync.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
p3p: CP="CAO PSA OUR"
set-cookie: cf=; Max-Age=300; Expires=Mon, 14-Nov-2022 20:59:35 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cip=; Max-Age=300; Expires=Mon, 14-Nov-2022 20:59:35 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
cnac=; Max-Age=300; Expires=Mon, 14-Nov-2022 20:59:35 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
car=; Max-Age=300; Expires=Mon, 14-Nov-2022 20:59:35 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
gdpr=; Max-Age=300; Expires=Mon, 14-Nov-2022 20:59:35 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
callback=; Max-Age=300; Expires=Mon, 14-Nov-2022 20:59:35 GMT; Domain=id5-sync.com; Path=/; SameSite=None; Secure
content-type: image/gif;charset=UTF-8
transfer-encoding: chunked
date: Mon, 14 Nov 2022 20:54:34 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-2L17kjqIzvdOP-wCc58PQpyqhO3h0Hjkb6NXrA
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-2L17kjqIzvdOP-wCc58PQpyqhO3h0Hjkb6NXrA
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-2L17kjqIzvdOP-wCc58PQpyqhO3h0Hjkb6NXrA HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 14 Nov 2022 20:54:35 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-2L17kjqIzvdOP-wCc58PQpyqhO3h0Hjkb6NXrA&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBAurcmMCEMp2BUfxw7r4v0fKwRjJHVAFEgEBAQH8c2N8YwAAAAAA_eMAAA&S=AQAAAgfgAm_EknpYWsDhAaChH7E; Expires=Wed, 15 Nov 2023 02:54:35 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d636f930cb447d1c244e7f4e2355dca2
a6ab1c666cdf0bbb4da50232f4b432442a231ee2
5f76a123263377828f00756bcf42652fd92d322467b2e666f7c391dd49182be8
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5093
Cache-Control: max-age=92613
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:35 GMT
Etag: "63715deb-1d7"
Expires: Tue, 15 Nov 2022 22:38:08 GMT
Last-Modified: Sun, 13 Nov 2022 21:13:15 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
getjobber.com/summit/
172.67.12.54200 OK 32 kB IP 172.67.12.54:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (48080)
Hash d0369bc6fe0f2d5a73f4ccff690a2eb5
e57b29930a3b4884e81b0f36c4701f83b16e38e5
a50fd5c11cc0e8f60ffa37ed8e0f3e54fafdb191967e1f83f68e61b5bea91af3
GET /summit/ HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: text/html; charset=UTF-8
link: <https://getjobber.com/wp-json/>; rel="https://api.w.org/", <https://getjobber.com/wp-json/wp/v2/pages/18108>; rel="alternate"; type="application/json", <https://getjobber.com/?p=18108>; rel=shortlink
vary: Accept-Encoding
ki-cache-type: None
ki-cf-cache-status: BYPASS
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
x-kinsta-cache: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WQ97l5R9Y%2FtH4aXGeDfu3aABCSs%2FKMk5dPDhGyaXRIGBMBjKOGH07ImJABgzEN%2B7mPv1SpSaJQYSHOr61vIsJrTajFhv89AWjy5Ezno9c1wVu8pz0LaUnSXALGsaFm8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
cache-control: max-age=14400
cf-cache-status: MISS
last-modified: Mon, 14 Nov 2022 20:54:30 GMT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a487cf270b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash f6504402334c06a611acf267fba1816f
2e282dee1e236cce0cc51684f7dfda779ae78702
81cb7b6165a5b8ede11fb556a0b4d5f323b9956484cee66b883c23b13c11c77e
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=148273
Date: Mon, 14 Nov 2022 20:54:35 GMT
Etag: "63723c2f-1d7"
Expires: Wed, 16 Nov 2022 14:05:48 GMT
Last-Modified: Mon, 14 Nov 2022 13:01:35 GMT
Server: ECS (bsa/EB1A)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: t7Y_2pH9SlwdzHTbkpoaRMo3hYihFsvSrWentjSmczxGJ3l9PuGyew==
Age: 3854
dpm.demdex.net/ibs:dpid=28645&dpuuid=
34.248.152.242302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 34.248.152.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-0eab94181.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=25216015390505881261279155474056258650; Max-Age=15552000; Expires=Sat, 13 May 2023 20:54:35 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: dOxz7EWQTXo=
Content-Length: 0
Connection: keep-alive
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg
18.159.151.3200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg
IP 18.159.151.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:35 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
eb2.3lift.com/xuid?mid=2711&xuid=k-CE_cUjqIzvdOP-wCc58PQpyqhO3BkUbbwYcJ2A&dongle=013b
76.223.111.18200 OK 37 B URL HTTP/2 eb2.3lift.com/xuid?mid=2711&xuid=k-CE_cUjqIzvdOP-wCc58PQpyqhO3BkUbbwYcJ2A&dongle=013b
IP 76.223.111.18:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3eacd0132310ea44cad756b378a3bc07
e2216a7e9b73f5cb0279351c78ce61c33475cea7
bb229a48bee31f5d54ca12dc9bd960c63a671f0d4be86a054c1d324a44499d96
GET /xuid?mid=2711&xuid=k-CE_cUjqIzvdOP-wCc58PQpyqhO3BkUbbwYcJ2A&dongle=013b HTTP/1.1
Host: eb2.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:35 GMT
content-type: image/gif
content-length: 37
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
34.248.152.242200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 34.248.152.242:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-1-v045-0a637d725.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: yBfZDdVmS14=
Content-Length: 59
Connection: keep-alive
gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=83&r=1&a=1&u=https%3A%2F%2Fbeacon.krxd.net%2Fusermatch.gif%3Fpartner%3Dcriteo%26partner_uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 14 Nov 2022 20:54:34 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
server-processing-duration-in-ticks: 987122
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash ca94d7e5cd462471d4f3aed80abddf5f
7d74b505766e111b6350b539afbe376dfb5e1f30
02f41c015271492ad6fd63c4e883058b7be6fc0590ea893822a82849ea4be853
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=145023
Date: Mon, 14 Nov 2022 20:54:35 GMT
Etag: "63722e0f-1d7"
Expires: Wed, 16 Nov 2022 13:11:38 GMT
Last-Modified: Mon, 14 Nov 2022 12:01:19 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: CMvfGa5Qbbm5BHqbXT-diWD0dCtFbKp2v648gAKdyTC1L4QBKmCjAg==
Age: 4219
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 3b84c1844448240a6ff24fbe6f1effcd
655ca3714ed3673766ec83895cc32f525903ae6e
387ad1585892c4a4a5fad5e2b2b084970b1b6620701c6350d9156c682eb1a167
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=161430
Date: Mon, 14 Nov 2022 20:54:35 GMT
Etag: "63727733-1d7"
Expires: Wed, 16 Nov 2022 17:45:05 GMT
Last-Modified: Mon, 14 Nov 2022 17:13:23 GMT
Server: ECS (nyb/1D0F)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OXWdeTfi0kk3GTjviYW5fDWDxYhnK9g8TSdE7jlCJ3wrJjKJx8xHeg==
Age: 1902
sync.outbrain.com/cookie-sync?p=criteo&uid=k-E8b6XzqIzvdOP-wCc58PQpyqhO1phNoxiEyDtA
70.42.32.159200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-E8b6XzqIzvdOP-wCc58PQpyqhO1phNoxiEyDtA
IP 70.42.32.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-E8b6XzqIzvdOP-wCc58PQpyqhO1phNoxiEyDtA HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 20:54:35 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: 4a61af3d8bd53ac52e450e4c9399c9ab
sync-criteo.ads.yieldmo.com/sync?id=k-1HSCxjqIzvdOP-wCc58PQpyqhO1hCflKKkGATA&pn_id=criteo&ext=1
54.229.162.197200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-1HSCxjqIzvdOP-wCc58PQpyqhO1hCflKKkGATA&pn_id=criteo&ext=1
IP 54.229.162.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-1HSCxjqIzvdOP-wCc58PQpyqhO1hCflKKkGATA&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:35 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=g7de0c1a9849f0d265ec%7C1668459275242%7C0%7C; Domain=.yieldmo.com; Expires=Tue, 14-Nov-2023 20:54:35 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-1HSCxjqIzvdOP-wCc58PQpyqhO1hCflKKkGATA; Domain=ads.yieldmo.com; Expires=Tue, 14-Nov-2023 20:54:35 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash aa2265e0c3577b169a255bf4c8ade2c3
5c2fb085c9633aa2cffb2829e8d0d3a2ccac44a3
5128ed70f6a7ecb49fb1c451805c947df58e9e487e50066f6e45fa43ccbe6555
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 20:54:35 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Sat, 12 Nov 2022 15:11:55 GMT
Expires: Sat, 19 Nov 2022 15:11:54 GMT
Etag: "5c2fb085c9633aa2cffb2829e8d0d3a2ccac44a3"
Cache-Control: max-age=410838,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76a2a4a56bc8b4f4-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 569fcf15d1763ed2ab6cbb8abf9215f8
2ac564692524f7b07aed25caa19d7b7ff44df5ea
db7dd4a25fe5e1663c8cdacd2519b838732c4640e2a599b661e6fb85513cc6bf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4190
Cache-Control: max-age=144990
Content-Type: application/ocsp-response
Date: Mon, 14 Nov 2022 20:54:35 GMT
Etag: "63722e0c-1d7"
Expires: Wed, 16 Nov 2022 13:11:05 GMT
Last-Modified: Mon, 14 Nov 2022 12:01:16 GMT
Server: ECS (ska/F71D)
X-Cache: HIT
Content-Length: 471
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
52.210.36.224204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 52.210.36.224:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Mon, 14 Nov 2022 20:54:35 GMT
set-cookie: _kuid_=PMvHw--T; Expires=Sat, 13-May-23 20:54:35 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n016-dub-prod.krxd.net
x-request-time: D=34 t=1668459275
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 14 Nov 2022 20:54:35 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 496669
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-3lfMCDqIzvdOP-wCc58PQpyqhO35oTHiu4aJGQ
185.255.84.153200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-3lfMCDqIzvdOP-wCc58PQpyqhO35oTHiu4aJGQ
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-3lfMCDqIzvdOP-wCc58PQpyqhO35oTHiu4aJGQ HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=f357ea319a29aed9a853f8b7f2b3da3c; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Mon, 14 Nov 2022 20:54:35 GMT
content-length: 49
x-envoy-upstream-service-time: 83
server: ayl-lb-fra02
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-19381044-3&ga_client_id=529287274.1668459272&shpt=summit%20-%20Jobber&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-19381044-3%22%2C%22ga_client_id%22%3A%22529287274.1668459272%22%2C%22shpt%22%3A%22summit%20-%20Jobber%22%2C%22dcm_cid%22%3A%221668459272.1%22%2C%22dcm_gid%22%3A%221993770817.1668459274%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A9%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1668459272.1&dcm_gid=1993770817.1668459274&dxver=4.0.0&shaid=32677&plh=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&cb=48436427006788150term%3Dvalue&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue
52.42.124.195200 OK 1.3 kB URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-19381044-3&ga_client_id=529287274.1668459272&shpt=summit%20-%20Jobber&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-19381044-3%22%2C%22ga_client_id%22%3A%22529287274.1668459272%22%2C%22shpt%22%3A%22summit%20-%20Jobber%22%2C%22dcm_cid%22%3A%221668459272.1%22%2C%22dcm_gid%22%3A%221993770817.1668459274%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A9%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1668459272.1&dcm_gid=1993770817.1668459274&dxver=4.0.0&shaid=32677&plh=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&cb=48436427006788150term%3Dvalue&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue
IP 52.42.124.195:0
Hash 263b61182855c45523be3a427fbdf3b9
bf95ca350e8885fb843868093e42098de2fe7d00
00cf906e7a9776f73e4e4e4f141ef2005ca723ba3c7ede258c26948b30fc8266
GET /st?ga_tracking_id=UA-19381044-3&ga_client_id=529287274.1668459272&shpt=summit%20-%20Jobber&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-19381044-3%22%2C%22ga_client_id%22%3A%22529287274.1668459272%22%2C%22shpt%22%3A%22summit%20-%20Jobber%22%2C%22dcm_cid%22%3A%221668459272.1%22%2C%22dcm_gid%22%3A%221993770817.1668459274%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A9%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1668459272.1&dcm_gid=1993770817.1668459274&dxver=4.0.0&shaid=32677&plh=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&cb=48436427006788150term%3Dvalue&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 14 Nov 2022 20:54:34 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: guid=8b6293b1-645e-11ed-ba76-ad89807fe809;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
ocsp.entrust.net/
104.110.10.32200 OK 1.6 kB IP 104.110.10.32:0
Hash a581a26f04d42a2aef1cd8fe869da727
155f558962b4043e650ed07e582877c32e38085a
0e7f9ed3d5c324e470468fb06b26cbf6fdb66121bb0ec427651784ff460610d1
POST / HTTP/1.1
Host: ocsp.entrust.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
ETag: "0E7F9ED3D5C324E470468FB06B26CBF6FDB66121BB0EC427651784FF460610D1"
Last-Modified: Mon, 14 Nov 2022 20:00:00 UTC
Content-Length: 1588
Cache-Control: public, no-transform, must-revalidate, max-age=3599
Expires: Mon, 14 Nov 2022 21:54:34 GMT
Date: Mon, 14 Nov 2022 20:54:35 GMT
Connection: keep-alive
s.thebrighttag.com/cs?btt=0&tp=cr&uid=
13.59.93.104200 OK 35 B URL HTTP/2 s.thebrighttag.com/cs?btt=0&tp=cr&uid=
IP 13.59.93.104:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /cs?btt=0&tp=cr&uid= HTTP/1.1
Host: s.thebrighttag.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:35 GMT
content-type: image/gif
content-length: 35
x-bt-requestid: 8c101100-645e-11ed-a81c-0000ac170305
cache-control: private, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
access-control-allow-origin:
server: nginx
p3p: CP=NOI DSP COR NID
X-Firefox-Spdy: h2
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 6a7d482c422bab08ff9d70d8177ecfca
c1d5c276637738e73dc686e3a5fb528e045d3e37
55eab2aa45fd4165a471e09f552586a25b29edf33b503b8d0afe0e5abf8f12f6
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 20:54:36 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Fri, 18 Nov 2022 17:51:52 GMT
ETag: "c1d5c276637738e73dc686e3a5fb528e045d3e37"
Last-Modified: Mon, 14 Nov 2022 17:51:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3341
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76a2a4ac9fd0b50c-OSL
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 6a7d482c422bab08ff9d70d8177ecfca
c1d5c276637738e73dc686e3a5fb528e045d3e37
55eab2aa45fd4165a471e09f552586a25b29edf33b503b8d0afe0e5abf8f12f6
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 20:54:36 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Fri, 18 Nov 2022 17:51:52 GMT
ETag: "c1d5c276637738e73dc686e3a5fb528e045d3e37"
Last-Modified: Mon, 14 Nov 2022 17:51:53 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3341
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76a2a4acacbf1bfe-OSL
match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=8b6293b1-645e-11ed-ba76-ad89807fe809&gdpr=&gdpr_consent=
3.33.220.150302 Found 305 B URL HTTP/2 match.adsrvr.org/track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=8b6293b1-645e-11ed-ba76-ad89807fe809&gdpr=&gdpr_consent=
IP 3.33.220.150:0
File type HTML document, ASCII text, with very long lines (305), with no line terminators
Hash 7b3803a50ead58fef085ed0b2e266d7f
c0b1ac525e76cde39eb8bc9975a58013c11c6ea7
3931754ccf57c1aa341b010fa319a9a4843137bb807f3d73cf241b62742bfc32
GET /track/cmf/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=8b6293b1-645e-11ed-ba76-ad89807fe809&gdpr=&gdpr_consent= HTTP/1.1
Host: match.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 14 Nov 2022 20:54:36 GMT
content-type: text/html
content-length: 305
location: https://match.adsrvr.org/track/cmb/generic?ttd_pid=steelhouse&ttd_tpi=1&ttd_puid=8b6293b1-645e-11ed-ba76-ad89807fe809&gdpr=&gdpr_consent=
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
set-cookie: TDID=ec8693ec-f04c-4351-9fc9-bd83bc86965c; domain=.adsrvr.org; expires=Tue, 14-Nov-2023 20:54:36 GMT; path=/; secure; SameSite=None
TDCPM=CAEYBSgCMgsIluWFvqWjozsQBTgB; domain=.adsrvr.org; expires=Tue, 14-Nov-2023 20:54:36 GMT; path=/; secure; SameSite=None
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
insight.adsrvr.org/track/evnt/?adv=j66p0o5&ct=0:m3slopv&fmt=3
3.33.220.150200 OK 140 B URL HTTP/2 insight.adsrvr.org/track/evnt/?adv=j66p0o5&ct=0:m3slopv&fmt=3
IP 3.33.220.150:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d721cdfd5904142971ff3b4e8c519db0
33e349f39dec8aebd7dc463f8f04dab28ad641d9
c887ade7d6adc3bc396918fbfb165eaad31ceab2f7a5a41f907cd62e4b92beaf
GET /track/evnt/?adv=j66p0o5&ct=0:m3slopv&fmt=3 HTTP/1.1
Host: insight.adsrvr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:36 GMT
content-type: image/gif
cache-control: private,no-cache, must-revalidate
pragma: no-cache
x-aspnet-version: 4.0.30319
p3p: CP="NOI DSP COR CUR ADMo DEVo PSAo PSDo OUR SAMo BUS UNI NAV"
X-Firefox-Spdy: h2
widget.intercom.io/widget/mq44cv6t
54.230.111.86302 Found 0 B URL HTTP/2 widget.intercom.io/widget/mq44cv6t
IP 54.230.111.86:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /widget/mq44cv6t HTTP/1.1
Host: widget.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
content-length: 0
location: https://js.intercomcdn.com/shim.latest.js
date: Mon, 14 Nov 2022 20:02:18 GMT
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: tBAcZBg_i2b7h7AxNrg9pTThArD105Kt6tl0vX5tlBHNXPZhfaZMvQ==
age: 3139
cache-control: max-age=86400
X-Firefox-Spdy: h2
getjobber.com/cdn-cgi/rum?
172.67.12.54204 No Content 0 B URL HTTP/2 getjobber.com/cdn-cgi/rum?
IP 172.67.12.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 37362
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/summit/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0xNFQyMDo1NDozMS41NjlaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vc3VtbWl0LyIsInV0bV9wYXJhbXMiOiJ1dG1jY249ZGlyZWN0In0=; _gcl_au=1.1.877628633.1668459272; _ga_LQXS6VVFN0=GS1.1.1668459272.1.0.1668459272.60.0.0; _ga=GA1.2.529287274.1668459272; _tt_enable_cookie=1; _ttp=5feced96-7c6d-4304-a1f5-8b5c38f83395; _tq_id.TV-7281904572-1.6f05=11b35a341db9022a.1668459273.0.1668459273..; _cq_duid=1.1668459273.ka3gMRFsii99kGAx; _cq_suid=1.1668459273.9bqqrMLza9sapahx; cto_bundle=Rl_j319kJTJGNmdRYyUyRnczRVhwVmEzOEdUR2dZY0NNQW9BNHdBN3RjU1Z3NmZnazF3bzNCcHVCTjU2ZDhobTVmYTM1U2FvYTBnQ0xzWjZ2NDJOOE1zJTJGaGZVY0pjQm53NGd4VDRSU3JlVm0xZkJ3eUJoM0FGOHdob05vdXZ0UTFOR1RqU3ozUEh0dXZ0OEY2cDh5RU1FV0ZadEJVV1ElM0QlM0Q; _uetsid=8acfb790645e11ed804a37ea61f743ac; _uetvid=8acfd620645e11edb00b9362d95c3bd1; amp_06c82b=TFq_AuzGqA9rU8FstqcsmP...1ghruo7kv.1ghruo7nq.1.0.1; _gid=GA1.2.1993770817.1668459274; _gat=1; _fbp=fb.1.1668459274179.1575342682
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Mon, 14 Nov 2022 20:54:36 GMT
access-control-allow-origin: https://getjobber.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 76a2a4adc9240b3d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
js.intercomcdn.com/shim.latest.js
54.230.111.84200 OK 6.2 kB URL HTTP/2 js.intercomcdn.com/shim.latest.js
IP 54.230.111.84:0
File type Unicode text, UTF-8 text, with very long lines (18920), with no line terminators
Hash 5df5091e9ec1e9162360cb88cd0878bc
74c46f1808d63370914afc4265f0acd9ed6df09d
a1122158308e9a23f818d1bb6bc0fb9cffeabd869dd32ac67c515af85f1b9b21
GET /shim.latest.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getjobber.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 6172
last-modified: Mon, 14 Nov 2022 16:43:59 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: 0ats6hJRfynqUNQ2G3SU28kGqGtwdUg6
accept-ranges: bytes
server: AmazonS3
date: Mon, 14 Nov 2022 20:54:20 GMT
cache-control: max-age=300, s-maxage=300, public
etag: "5df5091e9ec1e9162360cb88cd0878bc"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: XPUbTlu15Jgk34M9-lLg1zvp2iGwjnLipwSFU4S9kodfN3bmW1NoKA==
age: 17
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-ocDzpTqIzvdOP-wCc58PQpyqhO00nMGQ_ebOfw&google_error=3
178.250.2.151200 OK 80 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-ocDzpTqIzvdOP-wCc58PQpyqhO00nMGQ_ebOfw&google_error=3
IP 178.250.2.151:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 3d0ba5a1f74eb97cef53ffd1d81ff8a6
eb7594b4b54370a2a5b1e57d8845af6ddac9230e
1e499d91377a6917a4bc1e64f5678d206e6f0cb290b7a05044bfaf0fdf2d4057
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-ocDzpTqIzvdOP-wCc58PQpyqhO00nMGQ_ebOfw&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:34 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 184117
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-jFWPOTqIzvdOP-wCc58PQpyqhO28A643y4MHXQ&expires=30
213.19.162.90204 No Content 0 B URL HTTP/1.1 pixel.rubiconproject.com/tap.php?v=6434&nid=2149&put=k-jFWPOTqIzvdOP-wCc58PQpyqhO28A643y4MHXQ&expires=30
IP 213.19.162.90:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tap.php?v=6434&nid=2149&put=k-jFWPOTqIzvdOP-wCc58PQpyqhO28A643y4MHXQ&expires=30 HTTP/1.1
Host: pixel.rubiconproject.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
P3P: CP="NOI CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
Pragma: no-cache
Cache-Control: no-cache,no-store,must-revalidate
Expires: 0
X-RPHost: 7c5d24517ee193cc868994bc18883d1d
Content-Type: image/gif
ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
37.252.171.21307 Redirection 0 B URL HTTP/1.1 ib.adnxs.com/getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID
IP 37.252.171.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /getuid?https://dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=$UID HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Mon, 14 Nov 2022 20:54:36 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Location: https://ib.adnxs.com/bounce?%2Fgetuid%3Fhttps%3A%2F%2Fdis.criteo.com%2Fdis%2Frtb%2Fappnexus%2Fcookiematch.aspx%3Fappnxsid%3D%24UID
AN-X-Request-Uuid: 4ba8e078-acc5-449f-a10b-deb4906c7a28
Set-Cookie: uuid2=8099490620994301062; SameSite=None; Path=/; Max-Age=7776000; Expires=Sun, 12-Feb-2023 20:54:36 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 1004.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com
criteo-partners.tremorhub.com/sync?UICR=k-Gf1YpTqIzvdOP-wCc58PQpyqhO1CIa9nqEJ7aQ
54.145.88.28200 OK 88 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-Gf1YpTqIzvdOP-wCc58PQpyqhO1CIa9nqEJ7aQ
IP 54.145.88.28:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash e6f927b7e130699e1c65b516718d7f33
dc79a562d61c11bb84fbb4587c17a46ff99234a1
8810c1286602c991fcfd2e7ff38f822c85524b83b2fecd1ef71fad8040650334
GET /sync?UICR=k-Gf1YpTqIzvdOP-wCc58PQpyqhO1CIa9nqEJ7aQ HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:35 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg
18.159.151.3302 Found 0 B URL HTTP/2 ad.360yield.com/match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg
IP 18.159.151.3:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 14 Nov 2022 20:54:36 GMT
content-type: text/plain
content-length: 0
location: https://ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg
set-cookie: tuuid=c9c3895a-6b0c-4045-9ca1-96c3f60745ab; Expires=Sun, 12 Feb 2023 20:54:36 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
tuuid_lu=1668459276; Expires=Sun, 12 Feb 2023 20:54:36 GMT; Domain=.360yield.com; Path=/; SameSite=None; Secure
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
x.bidswitch.net/sync?dsp_id=46&user_id=k-ob1ARjqIzvdOP-wCc58PQpyqhO3WkYED6ajwrw&expires=30
35.158.226.123200 OK 43 B URL HTTP/2 x.bidswitch.net/sync?dsp_id=46&user_id=k-ob1ARjqIzvdOP-wCc58PQpyqhO3WkYED6ajwrw&expires=30
IP 35.158.226.123:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?dsp_id=46&user_id=k-ob1ARjqIzvdOP-wCc58PQpyqhO3WkYED6ajwrw&expires=30 HTTP/1.1
Host: x.bidswitch.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:36 GMT
content-type: image/gif
content-length: 43
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-YR8mjTqIzvdOP-wCc58PQpyqhO2ghXc0zDBUkw
35.157.236.74204 No Content 0 B URL HTTP/2 match.sharethrough.com/sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-YR8mjTqIzvdOP-wCc58PQpyqhO2ghXc0zDBUkw
IP 35.157.236.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync/v1?source_id=7658cb1d77a660882b48db06&source_user_id=k-YR8mjTqIzvdOP-wCc58PQpyqhO2ghXc0zDBUkw HTTP/1.1
Host: match.sharethrough.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 14 Nov 2022 20:54:36 GMT
X-Firefox-Spdy: h2
rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-T-55zzqIzvdOP-wCc58PQpyqhO2F05pt5tVnWA
185.86.137.131200 OK 43 B URL HTTP/1.1 rtb-csync.smartadserver.com/redir/?partnerid=79&partneruserid=k-T-55zzqIzvdOP-wCc58PQpyqhO2F05pt5tVnWA
IP 185.86.137.131:0
ASN #201081 SmartAdServer SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 221d8352905f2c38b3cb2bd191d630b0
d804b495cb9b84b9007a25b5d85f9ae674004cde
89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
GET /redir/?partnerid=79&partneruserid=k-T-55zzqIzvdOP-wCc58PQpyqhO2F05pt5tVnWA HTTP/1.1
Host: rtb-csync.smartadserver.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
content-type: image/gif
date: Mon, 14 Nov 2022 20:54:36 GMT
cache-control: no-cache,no-store
pragma: no-cache
set-cookie: pid=3480901080593458920; expires=Thu, 14 Dec 2023 20:54:36 GMT; domain=smartadserver.com; path=/
TestIfCookieP=ok; expires=Thu, 14 Dec 2023 20:54:36 GMT; domain=smartadserver.com; path=/
csync=79:k-T-55zzqIzvdOP-wCc58PQpyqhO2F05pt5tVnWA; expires=Tue, 14 Nov 2023 20:54:36 GMT; domain=smartadserver.com; path=/
transfer-encoding: chunked
p3p: CP="BUS CUR CONo FIN IVDo ONL OUR PHY SAMo TELo"
simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-0_6KgzqIzvdOP-wCc58PQpyqhO1NNUkH4Wxdfw
185.64.189.110200 OK 42 B URL HTTP/2 simage2.pubmatic.com/AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-0_6KgzqIzvdOP-wCc58PQpyqhO1NNUkH4Wxdfw
IP 185.64.189.110:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /AdServer/Pug?vcode=bz0yJnR5cGU9MSZjb2RlPTE5MjgmdGw9NDMyMDA=&piggybackCookie=uid:k-0_6KgzqIzvdOP-wCc58PQpyqhO1NNUkH4Wxdfw HTTP/1.1
Host: simage2.pubmatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 14 Nov 2022 20:54:35 GMT
content-type: image/gif; charset=utf-8
content-length: 42
set-cookie: KRTBCOOKIE_97=3385-uid:k-0_6KgzqIzvdOP-wCc58PQpyqhO1NNUkH4Wxdfw&KRTB&23144-uid:k-0_6KgzqIzvdOP-wCc58PQpyqhO1NNUkH4Wxdfw&KRTB&23286-uid:k-0_6KgzqIzvdOP-wCc58PQpyqhO1NNUkH4Wxdfw&KRTB&23287-uid:k-0_6KgzqIzvdOP-wCc58PQpyqhO1NNUkH4Wxdfw; domain=pubmatic.com; secure; expires=Wed, 14-Dec-2022 20:54:35 GMT; path=/
PugT=1668459275; domain=pubmatic.com; secure; expires=Wed, 14-Dec-2022 20:54:35 GMT; path=/
p3p: CP="NOI DSP COR LAW CUR ADMo DEVo TAIo PSAo PSDo IVAo IVDo HISo OTPo OUR SAMo BUS UNI COM NAV INT DEM CNT STA PRE LOC"
cache-control: no-store, no-cache, private
X-Firefox-Spdy: h2
ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-2L17kjqIzvdOP-wCc58PQpyqhO3h0Hjkb6NXrA
3.126.56.137302 Found 0 B URL HTTP/2 ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-2L17kjqIzvdOP-wCc58PQpyqhO3h0Hjkb6NXrA
IP 3.126.56.137:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ups/58301/sync?_origin=1&uid=k-2L17kjqIzvdOP-wCc58PQpyqhO3h0Hjkb6NXrA HTTP/1.1
Host: ups.analytics.yahoo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 14 Nov 2022 20:54:36 GMT
content-length: 0
strict-transport-security: max-age=31536000
p3p: CP=NOI DSP COR LAW CURa DEVa TAIa PSAa PSDa OUR BUS UNI COM NAV
location: https://ups.analytics.yahoo.com/ups/58301/sync?_origin=1&uid=k-2L17kjqIzvdOP-wCc58PQpyqhO3h0Hjkb6NXrA&verify=true
age: 0
server: ATS/9.1.10.25
set-cookie: A3=d=AQABBAyrcmMCECuiCeyTo629bwevlnZieXsFEgEBAQH8c2N8YwAAAAAA_eMAAA&S=AQAAAoQlrcTZxdTldWuRoose0yA; Expires=Wed, 15 Nov 2023 02:54:36 GMT; Max-Age=31557600; Domain=.yahoo.com; Path=/; SameSite=None; Secure; HttpOnly
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash a382a7e2fefe8065a4f88a745b6d4948
a040461f3f2461d267ef33aaf055bbea7680b259
1b6f0abbba143f1cbd4c089de6c671c198c9f5e0ce010490dfbce87de03d61da
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=162576
Date: Mon, 14 Nov 2022 20:54:36 GMT
Etag: "63726bda-1d7"
Expires: Wed, 16 Nov 2022 18:04:12 GMT
Last-Modified: Mon, 14 Nov 2022 16:24:58 GMT
Server: ECS (nyb/1D1C)
X-Cache: Miss from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: -iGXFZKVJ77dHX-s0lcVXGPcsckzBYKR-DNIppf4zUE4Ns6kLu1NTg==
Age: 5954
analytics.tiktok.com/i18n/pixel/events.js?sdkid=C7Q5I8D0NM9PPK6K6R40&lib=ttq
23.36.79.32200 OK 45 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=C7Q5I8D0NM9PPK6K6R40&lib=ttq
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65467)
Hash 9750d5e5c8956f58d2b7ddf50ac0fc19
d9ce109d4403ceb1ac61bd58779e732994b21987
015ccbcb5e63de0c167b5949d11d5d0ec819ece836980b1f5454311e776f78df
GET /i18n/pixel/events.js?sdkid=C7Q5I8D0NM9PPK6K6R40&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2HYPvLnLVMiPcmGfEhM9BDjcFCm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022111420543506B13C29A4C274983343
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf60459c918a449af51d55daa38da0f8465bb314846c5181f306c45b84d5b9a944d881d2608bad44ca7e8ed760ee198c271a14fa3dbbba52569b4c40f6642d78dc96
content-encoding: gzip
expires: Mon, 14 Nov 2022 20:54:35 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 14 Nov 2022 20:54:35 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=2, cdn-cache; desc=MISS, edge; dur=0, origin; dur=105
x-origin-response-time: 105,23.36.79.28
x-akamai-request-id: 317ff233
X-Firefox-Spdy: h2
criteo-sync.teads.tv/um?eid=80&uid=k-Z2vsUDqIzvdOP-wCc58PQpyqhO1GSenAyvDnFg
23.195.255.234200 OK 23 B URL HTTP/2 criteo-sync.teads.tv/um?eid=80&uid=k-Z2vsUDqIzvdOP-wCc58PQpyqhO1GSenAyvDnFg
IP 23.195.255.234:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash da5b449fff36752a93779fa4067cd2eb
71a96eea77f21ab5f1819b96c4cedd5cd34476ca
328e90a318268aea96180cc31666ae6d6f79d90d078c123bc3d98ee08a192fb7
GET /um?eid=80&uid=k-Z2vsUDqIzvdOP-wCc58PQpyqhO1GSenAyvDnFg HTTP/1.1
Host: criteo-sync.teads.tv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/gif
server: akka-http/10.2.9
content-length: 23
expires: Mon, 14 Nov 2022 20:54:36 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 14 Nov 2022 20:54:36 GMT
X-Firefox-Spdy: h2
ad.yieldlab.net/m?dt_id=8664&ext_id=k-QsxEAzqIzvdOP-wCc58PQpyqhO0CnSo_hAQ_VQ
23.13.245.180204 No Content 0 B URL HTTP/1.1 ad.yieldlab.net/m?dt_id=8664&ext_id=k-QsxEAzqIzvdOP-wCc58PQpyqhO0CnSo_hAQ_VQ
IP 23.13.245.180:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /m?dt_id=8664&ext_id=k-QsxEAzqIzvdOP-wCc58PQpyqhO0CnSo_hAQ_VQ HTTP/1.1
Host: ad.yieldlab.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-frame-options: DENY
x-application-context: application
Cache-Control: no-store,no-cache,max-age=-3600,must-revalidate,post-check=0,pre-check=0
Pragma: no-cache
Expires: Sun, 13 Nov 2022 20:54:36 GMT
Date: Mon, 14 Nov 2022 20:54:36 GMT
Connection: keep-alive
Set-Cookie: id=455201f9-bf65-48c6-be65-43926827e1ee; Path=/; Domain=yieldlab.net; Expires=Tue, 14-Nov-2023 20:54:36 GMT; Max-Age=31536000; Secure; SameSite=None
visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-3lfMCDqIzvdOP-wCc58PQpyqhO35oTHiu4aJGQ
185.255.84.153200 OK 49 B URL HTTP/2 visitor.omnitagjs.com/visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-3lfMCDqIzvdOP-wCc58PQpyqhO35oTHiu4aJGQ
IP 185.255.84.153:0
ASN #200271 Iguane Solutions SAS
File type GIF image data, version 89a, 1 x 1\012- data
Hash 4408efc0174f07ad685c456f1de521ca
e3bc3250f8f32bd98dc7b05fd8940b74617eb8d1
d1371feb0512d700cf724b05a588ce79f8d8dfbb0991ae5f45ecd3ab08983a38
GET /visitor/sync?uid=732efe97317e6352de4c1caf24b5064b&name=CRITEO&visitor=k-3lfMCDqIzvdOP-wCc58PQpyqhO35oTHiu4aJGQ HTTP/1.1
Host: visitor.omnitagjs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
expires: 0
p3p: CP="CAO PSA OUR"
pragma: no-cache
set-cookie: ayl_visitor=8647d6eebf193d71159239d5b0b31375; Path=/; Domain=omnitagjs.com; Max-Age=2592000; Secure; SameSite=None
vary: Accept-Encoding
x-content-type-options: nosniff
date: Mon, 14 Nov 2022 20:54:36 GMT
content-length: 49
x-envoy-upstream-service-time: 5
server: ayl-lb-fra02
X-Firefox-Spdy: h2
sync-criteo.ads.yieldmo.com/sync?id=k-1HSCxjqIzvdOP-wCc58PQpyqhO1hCflKKkGATA&pn_id=criteo&ext=1
54.229.162.197200 OK 43 B URL HTTP/2 sync-criteo.ads.yieldmo.com/sync?id=k-1HSCxjqIzvdOP-wCc58PQpyqhO1hCflKKkGATA&pn_id=criteo&ext=1
IP 54.229.162.197:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /sync?id=k-1HSCxjqIzvdOP-wCc58PQpyqhO1hCflKKkGATA&pn_id=criteo&ext=1 HTTP/1.1
Host: sync-criteo.ads.yieldmo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:36 GMT
content-type: image/gif
content-length: 43
set-cookie: yieldmo_id=g875c88e782f32e6db15%7C1668459276529%7C0%7C; Domain=.yieldmo.com; Expires=Tue, 14-Nov-2023 20:54:36 GMT; Path=/; Secure; SameSite=None; Secure
ptrcriteo=k-1HSCxjqIzvdOP-wCc58PQpyqhO1hCflKKkGATA; Domain=ads.yieldmo.com; Expires=Tue, 14-Nov-2023 20:54:36 GMT; Path=/; Secure; SameSite=None; Secure
access-control-allow-origin: *
access-control-request-headers: Cache-Control, Pragma
access-control-allow-methods: GET, OPTIONS
pragma: no-cache
X-Firefox-Spdy: h2
js.intercomcdn.com/frame.73050b33.js
54.230.111.84200 OK 136 kB URL HTTP/2 js.intercomcdn.com/frame.73050b33.js
IP 54.230.111.84:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 136 kB (136239 bytes)
Hash ae55b6f7db13aa795f0b646e1c300418
f1cbd556a6b8a6271c6e31e069f9547b790c6be0
592cf3d3de60debb5243667f20f9ffba0069c255443eae28ec4f5fcb80dd5f90
GET /frame.73050b33.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 136239
last-modified: Mon, 14 Nov 2022 16:42:25 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: NhhtPasxvMlcT.X9tWBeC.vp7WZrbDTq
accept-ranges: bytes
server: AmazonS3
date: Mon, 14 Nov 2022 20:44:05 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "ae55b6f7db13aa795f0b646e1c300418"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 16TjoEACI2bulZ_vTcjccSTzDMRSUY0W5Bwo3TjonhuRFRQfc98yFA==
age: 632
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
sync.outbrain.com/cookie-sync?p=criteo&uid=k-E8b6XzqIzvdOP-wCc58PQpyqhO1phNoxiEyDtA
70.42.32.159200 OK 0 B URL HTTP/1.1 sync.outbrain.com/cookie-sync?p=criteo&uid=k-E8b6XzqIzvdOP-wCc58PQpyqhO1phNoxiEyDtA
IP 70.42.32.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cookie-sync?p=criteo&uid=k-E8b6XzqIzvdOP-wCc58PQpyqhO1phNoxiEyDtA HTTP/1.1
Host: sync.outbrain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Mon, 14 Nov 2022 20:54:36 GMT
Content-Length: 0
Cache-Control: no-cache
X-TraceId: 77aba209621b5676fc8164c5ec11ae90
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash 3e5ea8542e4f1225d2b212d9a0a4e5be
8679135c34c46c0eb6186d4c7ec5e49409fc10d8
e2f1cc3cd30082383fd75d61aa61caccefc4cfe9514aef9378bf2a03c57c2ad2
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=145336
Date: Mon, 14 Nov 2022 20:54:36 GMT
Etag: "63722b53-1d7"
Expires: Wed, 16 Nov 2022 13:16:52 GMT
Last-Modified: Mon, 14 Nov 2022 11:49:39 GMT
Server: ECS (bsa/EB1E)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: OmAhLJIeUyuNyXCaI2JXroZUBkWeEpAmd0DsCAsrFBEd6XhpNHz8bQ==
Age: 5233
e2ab129449a2437ba6962334de724de8.js.ubembed.com/
151.101.85.131200 OK 482 B URL HTTP/2 e2ab129449a2437ba6962334de724de8.js.ubembed.com/
IP 151.101.85.131:0
File type ASCII text, with very long lines (477), with no line terminators
Hash c2d74fdfe50f7c6af024d426f729ecff
07d57529aec10810486394295277796c116d1f49
c3249d20fd88abfacedf7985e8d31532c068032a387afdfce60edede8c08f1d0
GET / HTTP/1.1
Host: e2ab129449a2437ba6962334de724de8.js.ubembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
x-amz-apigw-id: bm39ZE6hDoEFkVA=
x-amz-cf-pop: ARN54-C1
x-backend-region: eu_west_1
date: Mon, 14 Nov 2022 20:54:36 GMT
age: 2743
x-cache: Miss from cloudfront, HIT
access-control-allow-origin: *
cache-control: max-age=0, must-revalidate
vary: Accept-Encoding, Referer
etag: W/9dc5144c311648fe71b3e353b0de442a-v0.179.2
content-encoding: br
accept-ranges: none
X-Firefox-Spdy: h2
ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg
18.159.151.3200 OK 43 B URL HTTP/2 ad.360yield.com/ul_cb/match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg
IP 18.159.151.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /ul_cb/match?publisher_dsp_id=38&external_user_id=k-a6QACjqIzvdOP-wCc58PQpyqhO0Gv8mYA-66Bg HTTP/1.1
Host: ad.360yield.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:36 GMT
content-type: image/gif
content-length: 43
access-control-allow-origin: *
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAa PSDa OUR BUS COM INT OTC PUR STA"
X-Firefox-Spdy: h2
js.intercomcdn.com/vendor.576e5309.js
54.230.111.84200 OK 0 B URL HTTP/2 js.intercomcdn.com/vendor.576e5309.js
IP 54.230.111.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /vendor.576e5309.js HTTP/1.1
Host: js.intercomcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 108145
last-modified: Mon, 14 Nov 2022 16:42:25 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
x-amz-version-id: A6l_H_.7PI_x9TSup1Jsc2CoGJQee_ww
accept-ranges: bytes
server: AmazonS3
date: Mon, 14 Nov 2022 20:44:05 GMT
cache-control: max-age=31536000, s-maxage=7200, public
etag: "4fddf9bcf84d396b3d5e362ff10abd4a"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: Cwfm0zyltHcgwtJeWEkwdfMAWwK-1Mm5FtN7223sGwNZudugOzzzQg==
age: 632
strict-transport-security: max-age=31536000; includeSubDomains; preload
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-Pe2vGzqIzvdOP-wCc58PQpyqhO13rD0jT4HkFYDV96b8p-H1
52.29.221.128200 OK 63 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-Pe2vGzqIzvdOP-wCc58PQpyqhO13rD0jT4HkFYDV96b8p-H1
IP 52.29.221.128:0
Hash fb72ce257bb4fb36a4741b2016a2e64d
a08a70b85d4a175f496728526d4a38e3bf36f9c3
519ba183fd3f4b47612077896e8e2378b35f7b8816098a5255c0127eae22fbe2
GET /usersync/push?partner=criteo&partnerId=k-Pe2vGzqIzvdOP-wCc58PQpyqhO13rD0jT4HkFYDV96b8p-H1 HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: mv_tokens=%7B%22mv_uuid%22%3A%228b71ae20-645e-11ed-b019-75583a2c6742%22%2C%22version%22%3A%22eu-v1%22%7D; mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%228b71ae20-645e-11ed-b019-75583a2c6742%22%2C%22version%22%3A%22eu-v1%22%7D; am_tokens=%7B%22mv_uuid%22%3A%228b71ae20-645e-11ed-b019-75583a2c6742%22%2C%22version%22%3A%22eu-v1%22%7D; am_tokens_eu-v1=%7B%22mv_uuid%22%3A%228b71ae20-645e-11ed-b019-75583a2c6742%22%2C%22version%22%3A%22eu-v1%22%7D; criteo=%7B%22id%22%3A%22k-Pe2vGzqIzvdOP-wCc58PQpyqhO13rD0jT4HkFYDV96b8p-H1%22%2C%22version%22%3A%22criteo%22%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:36 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%228b71ae20-645e-11ed-b019-75583a2c6742%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Mon, 28 Nov 2022 20:54:36 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%228b71ae20-645e-11ed-b019-75583a2c6742%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Mon, 28 Nov 2022 20:54:36 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%228b71ae20-645e-11ed-b019-75583a2c6742%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Mon, 28 Nov 2022 20:54:36 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%228b71ae20-645e-11ed-b019-75583a2c6742%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Mon, 28 Nov 2022 20:54:36 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-Pe2vGzqIzvdOP-wCc58PQpyqhO13rD0jT4HkFYDV96b8p-H1%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Mon, 28 Nov 2022 20:54:36 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
dpm.demdex.net/ibs:dpid=28645&dpuuid=
34.248.152.242302 Found 0 B URL HTTP/1.1 dpm.demdex.net/ibs:dpid=28645&dpuuid=
IP 34.248.152.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ibs:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-2-v045-02b96ccc8.edge-irl1.demdex.com 5 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=17559909377467549061331023940543780061; Max-Age=15552000; Expires=Sat, 13 May 2023 20:54:36 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: euE96CZ4QJA=
Content-Length: 0
Connection: keep-alive
der.joshuarms.com/mon
50.16.211.97200 OK 0 B IP 50.16.211.97:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
POST /mon HTTP/1.1
Host: der.joshuarms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 1380
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: cg_uuid=d113ccc00f6fdb370bb978a2be35c1dc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: https://getjobber.com
content-type: application/json
date: Mon, 14 Nov 2022 20:54:36 GMT
content-length: 0
X-Firefox-Spdy: h2
dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
34.248.152.242200 OK 59 B URL HTTP/1.1 dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid=
IP 34.248.152.242:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 1251cd5e5c2def4c046309375f87c1c1
e02d6b0c6a5c495c15985e2832e335eda8528c80
4e7010cc46fa361c88e57e3346d27421cf3b8a8bf5f39b43fc45997c60cb1c13
GET /demconf.jpg?et:ibs%7cdata:dpid=28645&dpuuid= HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: image/gif
DCS: dcs-prod-irl1-2-v045-0284b356a.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: jEUWF6RkTZ0=
Content-Length: 59
Connection: keep-alive
dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-ocDzpTqIzvdOP-wCc58PQpyqhO00nMGQ_ebOfw&google_error=3
178.250.2.151200 OK 43 B URL HTTP/2 dis.criteo.com/dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-ocDzpTqIzvdOP-wCc58PQpyqhO00nMGQ_ebOfw&google_error=3
IP 178.250.2.151:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /dis/rtb/google/cookiematch.aspx?id=&CriteoUserId=k-ocDzpTqIzvdOP-wCc58PQpyqhO00nMGQ_ebOfw&google_error=3 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:36 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 304124
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
52.210.36.224204 No Content 0 B URL HTTP/2 beacon.krxd.net/usermatch.gif?partner=criteo&partner_uid=
IP 52.210.36.224:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /usermatch.gif?partner=criteo&partner_uid= HTTP/1.1
Host: beacon.krxd.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Mon, 14 Nov 2022 20:54:36 GMT
set-cookie: _kuid_=PMvHxnSG; Expires=Sat, 13-May-23 20:54:36 GMT; Max-Age=15552000; Domain=.krxd.net; Path=/
cache-control: private, no-cache, no-store
p3p: policyref="https://cdn.krxd.net/kruxcontent/p3p.xml", CP="NON DSP COR NID OUR DEL SAM OTR UNR COM NAV INT DEM CNT STA PRE LOC OTC"
x-served-by: beacon-n016-dub-prod.krxd.net
x-request-time: D=19 t=1668459276
X-Firefox-Spdy: h2
gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
178.250.2.146302 Found 0 B URL HTTP/2 gum.criteo.com/sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40
IP 178.250.2.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sync?c=10&r=1&u=https%3A%2F%2Fs.thebrighttag.com%2Fcs%3Fbtt%3D0%26tp%3Dcr%26uid%3D%40USERID%40 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
date: Mon, 14 Nov 2022 20:54:36 GMT
server: Kestrel
content-length: 0
cache-control: private, max-age=0, no-cache, no-store, must-revalidate
location: https://s.thebrighttag.com/cs?btt=0&tp=cr&uid=
server-processing-duration-in-ticks: 558653
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.2.151200 OK 78 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.2.151:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash a74ce6ad6744cf7bd8d8d68a20ec2f92
342afded6f706a42f00130e4fb22433c022c1f4e
8194aabb4fa472bc9c3d692aff70219fe7483733c8016fa34a2a1fd1fd8ad033
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:36 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 620751
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
api-iam.intercom.io/messenger/web/ping
54.160.171.83200 OK 2.4 kB URL HTTP/2 api-iam.intercom.io/messenger/web/ping
IP 54.160.171.83:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (8833), with no line terminators
Hash ca1e5b99c340cb710d21db767dd4fa2b
44f77d2a53dcaff2fa5980eb6b7bb77bbd437557
edce38a41db60ce5fb3e5f6e4533b9bb763dfc127c01a1022ddf1cc5ba01ba78
POST /messenger/web/ping HTTP/1.1
Host: api-iam.intercom.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 354
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:37 GMT
content-type: application/json; charset=utf-8
status: 200 OK
cache-control: max-age=0, private, must-revalidate
x-ratelimit-limit: 13333
x-ratelimit-reset: 1668459280
strict-transport-security: max-age=31556952; includeSubDomains; preload
x-ratelimit-remaining: 12894
access-control-allow-origin: https://getjobber.com
vary: Accept,Accept-Encoding
x-intercom-version: 83103b5f659d23848957d82c50b642b8a1556482
x-xss-protection: 1; mode=block
content-encoding: gzip
x-request-id: 0004utanter2p01tpm3g
access-control-allow-headers: Content-Type, Idempotency-Key, X-INTERCOM-APP, X-INTERCOM-PAGE-TITLE, X-INTERCOM-USER-DATA
access-control-allow-credentials: true
access-control-allow-methods: POST, GET, OPTIONS
etag: W/"51947310ddb06b47db6c51b9854c6ef0"
x-runtime: 0.339825
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
server: nginx
x-ami-version: ami-0105828999b935d42
X-Firefox-Spdy: h2
getjobber.com/cdn-cgi/rum?
172.67.12.54204 No Content 0 B URL HTTP/2 getjobber.com/cdn-cgi/rum?
IP 172.67.12.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 616
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/summit/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0xNFQyMDo1NDozMS41NjlaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vc3VtbWl0LyIsInV0bV9wYXJhbXMiOiJ1dG1jY249ZGlyZWN0In0=; _gcl_au=1.1.877628633.1668459272; _ga_LQXS6VVFN0=GS1.1.1668459272.1.0.1668459278.54.0.0; _ga=GA1.2.529287274.1668459272; _tt_enable_cookie=1; _ttp=5feced96-7c6d-4304-a1f5-8b5c38f83395; _tq_id.TV-7281904572-1.6f05=11b35a341db9022a.1668459273.0.1668459273..; _cq_duid=1.1668459273.ka3gMRFsii99kGAx; _cq_suid=1.1668459273.9bqqrMLza9sapahx; cto_bundle=Rl_j319kJTJGNmdRYyUyRnczRVhwVmEzOEdUR2dZY0NNQW9BNHdBN3RjU1Z3NmZnazF3bzNCcHVCTjU2ZDhobTVmYTM1U2FvYTBnQ0xzWjZ2NDJOOE1zJTJGaGZVY0pjQm53NGd4VDRSU3JlVm0xZkJ3eUJoM0FGOHdob05vdXZ0UTFOR1RqU3ozUEh0dXZ0OEY2cDh5RU1FV0ZadEJVV1ElM0QlM0Q; _uetsid=8acfb790645e11ed804a37ea61f743ac; _uetvid=8acfd620645e11edb00b9362d95c3bd1; amp_06c82b=TFq_AuzGqA9rU8FstqcsmP...1ghruo7kv.1ghruo7nq.1.0.1; _gid=GA1.2.1993770817.1668459274; _gat=1; _fbp=fb.1.1668459274179.1575342682; intercom-id-mq44cv6t=28074c95-463a-4ee0-b539-f5067c13e2d7; intercom-session-mq44cv6t=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Mon, 14 Nov 2022 20:54:38 GMT
access-control-allow-origin: https://getjobber.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 76a2a4bbdf090b3d-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
px.mountain.com/st?ga_tracking_id=UA-19381044-3&ga_client_id=529287274.1668459272&shpt=summit%20-%20Jobber&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-19381044-3%22%2C%22ga_client_id%22%3A%22529287274.1668459272%22%2C%22shpt%22%3A%22summit%20-%20Jobber%22%2C%22dcm_cid%22%3A%221668459272.1%22%2C%22dcm_gid%22%3A%221993770817.1668459274%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A9%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1668459272.1&dcm_gid=1993770817.1668459274&dxver=4.0.0&shaid=32677&plh=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1668459274655648&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1668459275373
52.42.124.195200 OK 0 B URL HTTP/1.1 px.mountain.com/st?ga_tracking_id=UA-19381044-3&ga_client_id=529287274.1668459272&shpt=summit%20-%20Jobber&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-19381044-3%22%2C%22ga_client_id%22%3A%22529287274.1668459272%22%2C%22shpt%22%3A%22summit%20-%20Jobber%22%2C%22dcm_cid%22%3A%221668459272.1%22%2C%22dcm_gid%22%3A%221993770817.1668459274%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A9%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1668459272.1&dcm_gid=1993770817.1668459274&dxver=4.0.0&shaid=32677&plh=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1668459274655648&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1668459275373
IP 52.42.124.195:0
GET /st?ga_tracking_id=UA-19381044-3&ga_client_id=529287274.1668459272&shpt=summit%20-%20Jobber&ga_info=%7B%22status%22%3A%22OK%22%2C%22ga_tracking_id%22%3A%22UA-19381044-3%22%2C%22ga_client_id%22%3A%22529287274.1668459272%22%2C%22shpt%22%3A%22summit%20-%20Jobber%22%2C%22dcm_cid%22%3A%221668459272.1%22%2C%22dcm_gid%22%3A%221993770817.1668459274%22%2C%22mntnis%22%3A%7B%7D%2C%22execution_workflow%22%3A%7B%22iteration%22%3A9%2C%22getClientIdByGA%22%3A%22FAILED%22%2C%22getClientIdByTracker%22%3A%22FAILED%22%2C%22getClientIdByGAData%22%3A%22FAILED%22%2C%22getClientIdByCookie%22%3A%22FAILED%22%2C%22shpt%22%3A%22OK%22%2C%22dcm_cid%22%3A%22OK%22%2C%22dcm_gid%22%3A%22OK%22%7D%2C%22message%22%3A%7B%7D%7D&dcm_cid=1668459272.1&dcm_gid=1993770817.1668459274&dxver=4.0.0&shaid=32677&plh=https%3A%2F%2Fgetjobber.com%2Fsummit%2F&shadditional=sh_conversion%3DSHBLOCK%2Cgoogletagmanager%3Dtrue%2Cga4%3Dtrue%2Ccriteo%3Dtrue&cb=1668459274655648&shguid=35b0bce9-d250-329d-b012-c0426f88d0bd&shgts=1668459275373 HTTP/1.1
Host: px.mountain.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: guid=8b6293b1-645e-11ed-ba76-ad89807fe809
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
date: Mon, 14 Nov 2022 20:54:36 GMT
content-type: application/javascript;charset=utf-8
access-control-allow-origin: *
p3p: CP="NON DSP COR NID CURa ADMa DEVa PSAa PSDa OUR STP UNI COM NAV INT STA PRE"
set-cookie: tt=H4sIAAAAAAAAAKtWMjYyMzePN7IwtlCyMjQzszAxtTQyNzMwNddR8guKh8qaWxorWRnoKJUpWRkhi4N1GdQCAPkVVuNGAAAA;Domain=px.mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
rt="MzI2Nzc6MTY2ODQ1OTI3Ng==";Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
guid=8b6293b1-645e-11ed-ba76-ad89807fe809;Domain=mountain.com;Max-Age=63113852;Path=/;SameSite=None;Secure
content-encoding: gzip
connection: close
getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/ResizeSensor.js?ver=1
172.67.12.54200 OK 0 B URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/ResizeSensor.js?ver=1
IP 172.67.12.54:0
GET /wp-content/themes/jobber-bold/scripts/vendor/ResizeSensor.js?ver=1 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=10104
etag: W/"636c09ef-2778"
expires: Tue, 14 Nov 2023 20:54:31 GMT
ki-cf-cache-status: HIT
ki-edge-o2o: yes
last-modified: Wed, 09 Nov 2022 20:13:35 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZyTztZAtDtdyOC3YzhPiTsOiNl%2B48gHqL1SbqOa6O80EXPRqtGI9yiB7Xn%2BDFtLnDfKBa44ADgCRb8RI%2FAToD6B2IbrkMZzdrTlOXQ8VfhrvDXUtCdtVnaza8GNy1uE%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,660fc71ee93f12bb6b214cc1f84619cc92ac132f468125212f8ba4e693354ad9
ki-cache-type: CDN
ki-edge: v=17.8
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48c7bd50b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-Pe2vGzqIzvdOP-wCc58PQpyqhO13rD0jT4HkFYDV96b8p-H1
52.29.221.128200 OK 0 B URL HTTP/2 exchange.mediavine.com/usersync/push?partner=criteo&partnerId=k-Pe2vGzqIzvdOP-wCc58PQpyqhO13rD0jT4HkFYDV96b8p-H1
IP 52.29.221.128:0
GET /usersync/push?partner=criteo&partnerId=k-Pe2vGzqIzvdOP-wCc58PQpyqhO13rD0jT4HkFYDV96b8p-H1 HTTP/1.1
Host: exchange.mediavine.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:34 GMT
content-type: text/html; charset=utf-8
vary: Origin, Accept-Encoding
access-control-allow-credentials: true
cache-control: private, no-cache
set-cookie: mv_tokens=%7B%22mv_uuid%22%3A%228b71ae20-645e-11ed-b019-75583a2c6742%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Mon, 28 Nov 2022 20:54:34 GMT; Secure; SameSite=None
mv_tokens_eu-v1=%7B%22mv_uuid%22%3A%228b71ae20-645e-11ed-b019-75583a2c6742%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Mon, 28 Nov 2022 20:54:34 GMT; Secure; SameSite=None
am_tokens=%7B%22mv_uuid%22%3A%228b71ae20-645e-11ed-b019-75583a2c6742%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Mon, 28 Nov 2022 20:54:34 GMT; Secure; SameSite=None
am_tokens_eu-v1=%7B%22mv_uuid%22%3A%228b71ae20-645e-11ed-b019-75583a2c6742%22%2C%22version%22%3A%22eu-v1%22%7D; Path=/; Expires=Mon, 28 Nov 2022 20:54:34 GMT; Secure; SameSite=None
criteo=%7B%22id%22%3A%22k-Pe2vGzqIzvdOP-wCc58PQpyqhO13rD0jT4HkFYDV96b8p-H1%22%2C%22version%22%3A%22criteo%22%7D; Path=/; Expires=Mon, 28 Nov 2022 20:54:34 GMT; Secure; SameSite=None
content-encoding: gzip
X-Firefox-Spdy: h2
getjobber.com/wp-content/uploads/jobber-assets/icon-login.ee285b38.svg
172.67.12.54200 OK 0 B URL HTTP/2 getjobber.com/wp-content/uploads/jobber-assets/icon-login.ee285b38.svg
IP 172.67.12.54:0
GET /wp-content/uploads/jobber-assets/icon-login.ee285b38.svg HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0xNFQyMDo1NDozMS41NjlaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vc3VtbWl0LyIsInV0bV9wYXJhbXMiOiJ1dG1jY249ZGlyZWN0In0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: image/svg+xml
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
etag: W/"636c098d-1db"
expires: Tue, 14 Nov 2023 20:54:31 GMT
last-modified: Wed, 09 Nov 2022 20:11:57 GMT
vary: Accept-Encoding
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,df381785c91f3f98e2e54e8a83de60d6253da053476342690605956dda0e67e7
ki-cache-type: CDN
ki-cf-cache-status: HIT
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PBi6ZtWZZFmjOYGcM3WAHM3KwvSwF5TveY2wA3rFz7qoWhlwWvjrNVBunFDAp6T2nswaT%2F5f9ERs5I52np6XVBKjepSme%2FXmA47GHy%2FIYFekHpr3updvgDmtRqJHhFY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48fd8750b3d-OSL
X-Firefox-Spdy: h2
www.getjobber.com/summit
172.67.12.54301 Moved Permanently 0 B IP 172.67.12.54:0
GET /summit HTTP/1.1
Host: www.getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Mon, 14 Nov 2022 20:54:30 GMT
content-type: text/html; charset=UTF-8
location: https://getjobber.com/summit/
cf-cache-status: DYNAMIC
ki-cache-type: None
ki-cf-cache-status: BYPASS
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
x-kinsta-cache: HIT
x-redirect-by: WordPress
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Hu8b0SAtD0onXgkSVAEZsLMcLwHjSj04EzmUuB8IY9U%2FjhSscYfbaSnSBigdAMWeZNAfdnOXs%2FW%2BFB1r%2F%2BvoVeJX6mdrrUsJVC35el1hlDX%2BqpGcrEYchpVX6kMG3azgpKCq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a4842b060b3d-OSL
X-Firefox-Spdy: h2
unpkg.com/web-vitals@3.0.4/dist/web-vitals.iife.js
104.16.125.175200 OK 0 B URL HTTP/2 unpkg.com/web-vitals@3.0.4/dist/web-vitals.iife.js
IP 104.16.125.175:0
GET /web-vitals@3.0.4/dist/web-vitals.iife.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://getjobber.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:32 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"1a3a-hcVpXUspBNC1/NAQABcyCbLFezA"
via: 1.1 fly.io
fly-request-id: 01GFPZA6T5KD2XCZ3MFZS5JH21-ams
cf-cache-status: HIT
age: 2314665
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76a2a492ff340b59-OSL
content-encoding: br
X-Firefox-Spdy: h2
getjobber.com/favicon.ico
172.67.12.54200 OK 0 B URL HTTP/2 getjobber.com/favicon.ico
IP 172.67.12.54:0
GET /favicon.ico HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0xNFQyMDo1NDozMS41NjlaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vc3VtbWl0LyIsInV0bV9wYXJhbXMiOiJ1dG1jY249ZGlyZWN0In0=; _gcl_au=1.1.877628633.1668459272; _ga_LQXS6VVFN0=GS1.1.1668459272.1.0.1668459272.60.0.0; _ga=GA1.1.529287274.1668459272; _tt_enable_cookie=1; _ttp=5feced96-7c6d-4304-a1f5-8b5c38f83395; _tq_id.TV-7281904572-1.6f05=11b35a341db9022a.1668459273.0.1668459273..; _cq_duid=1.1668459273.ka3gMRFsii99kGAx; _cq_suid=1.1668459273.9bqqrMLza9sapahx; cto_bundle=Z7mrMV9wOTBjaUx1OVRLNWdTTzExTiUyRkRlVlQ4NU9xTWprMnU0SWlZSzlDMzZad0ZYWjRsazY5U1Q0JTJGS2JBdkVCU1ViQXc1U1gxdFZtZ250cG0xVHdtcSUyQldPNWE4eGlJMEdIVThKSTQzcHR0eiUyRjhReUtIMXBGb1RBSmNnaSUyRndvUUtjSGNtaWo4ajk3R1MlMkY2TlVxVXZkJTJCUWF2QSUzRCUzRA; _uetsid=8acfb790645e11ed804a37ea61f743ac; _uetvid=8acfd620645e11edb00b9362d95c3bd1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:33 GMT
content-type: image/x-icon
access-control-allow-origin: *
cache-control: public, max-age=31536000
etag: W/"58adc683-4ce"
expires: Tue, 14 Nov 2023 20:54:33 GMT
last-modified: Wed, 22 Feb 2017 17:12:35 GMT
vary: Accept-Encoding
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,f07c145e3679034196b34239da9c7003786dd6655e5c882df6bbada7df5a1fc5
ki-cache-type: CDN
ki-cf-cache-status: HIT
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dhrGU%2FuRgs950uC%2FtHs%2F5VzpQ2X1OqQhBCvu2RIFdDdR6pEZh8H4fPezl1jCi%2FstKTejHQrZWuhQPEbSsLh97FrH6Sn4TqcJd4KVdsa2UsMx5rwAD1Yj%2BnteMCHJGRA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
content-encoding: gzip
cf-cache-status: EXPIRED
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a49d0d5c0b3d-OSL
X-Firefox-Spdy: h2
gum.criteo.com/sid/json?origin=onetag&domain=getjobber.com&sn=FirefoxSyncframe&so=0&topUrl=getjobber.com&info=SNVCE180M0RITmhlJTJCZkMwOUJGQlhaMUN2czZtQU1sOENuSXE3aVVHWFJZUkclMkJma3hPbmNhT2wyZGNyYVFpYURmVUxmMg&idsd=1714445960,674233582&cw=1&lsw=1
178.250.2.146200 OK 0 B URL HTTP/2 gum.criteo.com/sid/json?origin=onetag&domain=getjobber.com&sn=FirefoxSyncframe&so=0&topUrl=getjobber.com&info=SNVCE180M0RITmhlJTJCZkMwOUJGQlhaMUN2czZtQU1sOENuSXE3aVVHWFJZUkclMkJma3hPbmNhT2wyZGNyYVFpYURmVUxmMg&idsd=1714445960,674233582&cw=1&lsw=1
IP 178.250.2.146:0
GET /sid/json?origin=onetag&domain=getjobber.com&sn=FirefoxSyncframe&so=0&topUrl=getjobber.com&info=SNVCE180M0RITmhlJTJCZkMwOUJGQlhaMUN2czZtQU1sOENuSXE3aVVHWFJZUkclMkJma3hPbmNhT2wyZGNyYVFpYURmVUxmMg&idsd=1714445960,674233582&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?topUrl=getjobber.com&origin=onetag
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:33 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 975532
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/moment-timezone-with-data.js?ver=6.0.2
172.67.12.54200 OK 0 B URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/moment-timezone-with-data.js?ver=6.0.2
IP 172.67.12.54:0
GET /wp-content/themes/jobber-bold/scripts/vendor/moment-timezone-with-data.js?ver=6.0.2 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=184187
etag: W/"636c09f0-2cf7b"
expires: Tue, 14 Nov 2023 20:54:31 GMT
ki-cf-cache-status: HIT
ki-edge-o2o: yes
last-modified: Wed, 09 Nov 2022 20:13:36 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8VLKTH0%2BnqWFZ8ZofdDYtzkrjry9gIKcQIPXuHq7x4RGRW7FyccHJOCLl6pFI92pbse3ILOxqc3i0A0K48j3pUa9AXH7plncyYvpzOBFpw7kaYKc0RO2FBYLrZcTInI%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,28bb2de585e0f7b9254d1c7e6da4d4b66bd07901fc16622f859b92e246f89121
ki-cache-type: CDN
ki-edge: v=17.8
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48cac420b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
unpkg.com/web-vitals/dist/web-vitals.iife.js
104.16.125.175302 Found 0 B URL HTTP/2 unpkg.com/web-vitals/dist/web-vitals.iife.js
IP 104.16.125.175:0
GET /web-vitals/dist/web-vitals.iife.js HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
date: Mon, 14 Nov 2022 20:54:32 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /web-vitals@3.0.4/dist/web-vitals.iife.js
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GHVY873C7S7NTT4VN0RXHPVX-ams
cf-cache-status: HIT
age: 523
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76a2a4928ea10b59-OSL
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-2fd0wDqIzvdOP-wCc58PQpyqhO01x162sXFoCQ
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-2fd0wDqIzvdOP-wCc58PQpyqhO01x162sXFoCQ
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-2fd0wDqIzvdOP-wCc58PQpyqhO01x162sXFoCQ HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 14 Nov 2022 20:54:36 GMT
x-fastly-to-nlb-rtt: 22015
access-control-allow-credentials: true
X-Firefox-Spdy: h2
sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-2fd0wDqIzvdOP-wCc58PQpyqhO01x162sXFoCQ
141.226.228.48200 OK 0 B URL HTTP/2 sync-t1.taboola.com/sg/criteortb-network/1/rtb-h/?taboola_hm=k-2fd0wDqIzvdOP-wCc58PQpyqhO01x162sXFoCQ
IP 141.226.228.48:0
ASN #200478 Taboola.com ltd
GET /sg/criteortb-network/1/rtb-h/?taboola_hm=k-2fd0wDqIzvdOP-wCc58PQpyqhO01x162sXFoCQ HTTP/1.1
Host: sync-t1.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 14 Nov 2022 20:54:34 GMT
x-fastly-to-nlb-rtt: 22038
access-control-allow-credentials: true
X-Firefox-Spdy: h2
dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
178.250.2.151200 OK 0 B URL HTTP/2 dis.criteo.com/dis/rtb/appnexus/cookiematch.aspx?appnxsid=0
IP 178.250.2.151:0
GET /dis/rtb/appnexus/cookiematch.aspx?appnxsid=0 HTTP/1.1
Host: dis.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:34 GMT
content-type: image/gif
server: Kestrel
cache-control: no-cache
pragma: no-cache
expires: Mon, 26 Jul 1997 05:00:00 GMT
cross-origin-resource-policy: cross-origin
p3p: CP='NON DSP COR CURa PSA PSD OUR BUS NAV STA'
timing-allow-origin: *
server-processing-duration-in-ticks: 6762343
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2
criteo-partners.tremorhub.com/sync?UICR=k-Gf1YpTqIzvdOP-wCc58PQpyqhO1CIa9nqEJ7aQ
54.145.88.28200 OK 0 B URL HTTP/2 criteo-partners.tremorhub.com/sync?UICR=k-Gf1YpTqIzvdOP-wCc58PQpyqhO1CIa9nqEJ7aQ
IP 54.145.88.28:0
GET /sync?UICR=k-Gf1YpTqIzvdOP-wCc58PQpyqhO1CIa9nqEJ7aQ HTTP/1.1
Host: criteo-partners.tremorhub.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:36 GMT
content-type: image/gif
server: Apache-Coyote/1.1
p3p: CP='This is not a P3P policy. See https://telaria.com/privacy-policy/'
X-Firefox-Spdy: h2
secure.getjobber.com/website_js.js?skip_cookie_check=true&ver=6.0.2
172.67.12.54200 OK 0 B URL HTTP/2 secure.getjobber.com/website_js.js?skip_cookie_check=true&ver=6.0.2
IP 172.67.12.54:0
GET /website_js.js?skip_cookie_check=true&ver=6.0.2 HTTP/1.1
Host: secure.getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store
pragma: no-cache
vary: Accept-Encoding
content-encoding: gzip
etag: W/"4b2278697c5715ba807012bf5c098f50"
x-request-id: c86b72f8-a647-4c3d-9275-47e5b9f1d289
x-runtime: 0.028741
strict-transport-security: max-age=2592000; includeSubDomains
x-frame-options: sameorigin
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-download-options: noopen
x-permitted-cross-domain-policies: none
content-security-policy: default-src *; base-uri 'self'; child-src blob: *; connect-src *; font-src data: *; form-action *; frame-ancestors 'self'; frame-src *; img-src data: *; media-src blob: *; script-src 'unsafe-inline' 'unsafe-eval' *; style-src 'unsafe-inline' *; worker-src blob:
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76a2a48cbc4f0b3d-OSL
X-Firefox-Spdy: h2
getjobber.com/wp-content/uploads/jobber-assets/underline-shallow.b5833505.svg
172.67.12.54200 OK 0 B URL HTTP/2 getjobber.com/wp-content/uploads/jobber-assets/underline-shallow.b5833505.svg
IP 172.67.12.54:0
GET /wp-content/uploads/jobber-assets/underline-shallow.b5833505.svg HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Cookie: __utmz=utmccn=direct; first_touch=eyJmaXJzdF90b3VjaF9zb3VyY2UiOiIiLCJmaXJzdF90b3VjaF90aW1lIjoiMjAyMi0xMS0xNFQyMDo1NDozMS41NjlaIiwiZmlyc3RfdG91Y2hfbG9jYXRpb24iOiJodHRwczovL2dldGpvYmJlci5jb20vc3VtbWl0LyIsInV0bV9wYXJhbXMiOiJ1dG1jY249ZGlyZWN0In0=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: image/svg+xml
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
etag: W/"636c0993-d0"
expires: Tue, 14 Nov 2023 20:54:31 GMT
last-modified: Wed, 09 Nov 2022 20:12:03 GMT
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,d1e929a1234f7a37871f5c1d9502fcf24b9fd3b7acf8e9e6b8157ca66abe7608
ki-cache-type: CDN
ki-cf-cache-status: HIT
ki-edge: v=17.8
ki-edge-o2o: yes
x-content-type-options: nosniff
x-edge-location-klb: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=peNTKYLg05n%2BOhJrE2jOqH30Gm%2B7RAQa47RdNY9mjIfnK1tx71cFvgRFqmyR5H5zD4YRl%2B6SwAC0bxPhxs%2BrFs8KLMzdLAzG3%2BNAYQZZGOH2gfMYI9tFP7hwMN6rldc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48fd8770b3d-OSL
X-Firefox-Spdy: h2
forms.hsforms.com/embed/v3/form/14530168/4348147e-2de9-48d4-b38c-51bc04ae2f05/json?hs_static_app=forms-embed&hs_static_app_version=1.2329&X-HubSpot-Static-App-Info=forms-embed-1.2329
104.16.88.5200 OK 0 B URL HTTP/2 forms.hsforms.com/embed/v3/form/14530168/4348147e-2de9-48d4-b38c-51bc04ae2f05/json?hs_static_app=forms-embed&hs_static_app_version=1.2329&X-HubSpot-Static-App-Info=forms-embed-1.2329
IP 104.16.88.5:0
GET /embed/v3/form/14530168/4348147e-2de9-48d4-b38c-51bc04ae2f05/json?hs_static_app=forms-embed&hs_static_app_version=1.2329&X-HubSpot-Static-App-Info=forms-embed-1.2329 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://getjobber.com
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/json;charset=utf-8
x-trace: 2BB307996DA30899D32B0365EFEDC6E3074A8FDE1B000000000000000000
x-origin-hublet: na1
vary: origin
x-hubspot-correlation-id: 57debaa5-256a-44d9-94ea-aac988795068
access-control-allow-origin: https://getjobber.com
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: *
access-control-allow-credentials: false
access-control-max-age: 180
access-control-expose-headers: X-Origin-Hublet
cache-control: max-age=0, no-cache, no-store
x-robots-tag: none
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76a2a48ffbd00b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/identify.js
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/identify.js
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/identify.js HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221114205432808AA7F240CAB689AD9B
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6078d42767cdfb632a63640baa9e118d940fafa3d9189ab1eb41fe5af6171e8533dd465c7e101e45f25cd744320d3196813d7241e1415e355e2fd7f128835b1dd92781cd5db2e11bd062d0ddb845b8a24a
content-encoding: gzip
x-origin-response-time: 6,104.78.78.12
x-akamai-request-id: 51e5192a.317fd453
expires: Mon, 14 Nov 2022 20:54:32 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 14 Nov 2022 20:54:32 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
x-cache-remote: TCP_MISS from a104-78-78-12.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=115, origin; dur=6, inner; dur=3
x-parent-response-time: 120,23.36.79.28
X-Firefox-Spdy: h2
assets.ubembed.com/universalscript/releases/v0.179.2/bundle.js
54.230.111.10200 OK 0 B URL HTTP/2 assets.ubembed.com/universalscript/releases/v0.179.2/bundle.js
IP 54.230.111.10:0
GET /universalscript/releases/v0.179.2/bundle.js HTTP/1.1
Host: assets.ubembed.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Sat, 03 Sep 2022 23:09:05 GMT
last-modified: Tue, 05 Apr 2022 16:31:05 GMT
etag: W/"359008fe01078c59c66e034866170bd2"
cache-control: max-age=31536000
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: i5V3GK-3J7oObhYxs72n1dZniuuJ_BQ5qVt0Y1-lAiO5a5_qpqtGKw==
age: 6212731
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/config.js?sdkid=CCFL7KBC77UE82V3NG5G&hostname=getjobber.com
23.36.79.32200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=CCFL7KBC77UE82V3NG5G&hostname=getjobber.com
IP 23.36.79.32:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/config.js?sdkid=CCFL7KBC77UE82V3NG5G&hostname=getjobber.com HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Cookie: _ttp=2HYPvLnLVMiPcmGfEhM9BDjcFCm
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 20221114205433A5FED897302B11956E17
x-tt-trace-host: 016eabbbec2a80a817c88fdee8d986cf6044faeb2b99c092c97016c61fe0db1beb29a903d51f2fcf63164750b3b6180ca47e57ef89df49e843fe3318440a7f3f18ccf8c1d6c36c007ef707211750406cdc3313b3ce88ddae897670dab54562091d
content-encoding: gzip
x-origin-response-time: 8,23.218.220.137
x-akamai-request-id: 1a3bf6b0.317fe5f8
expires: Mon, 14 Nov 2022 20:54:33 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Mon, 14 Nov 2022 20:54:33 GMT
x-cache: TCP_MISS from a23-36-79-28.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
vary: Accept-Encoding
set-cookie: _ttp=2HYPvLnLVMiPcmGfEhM9BDjcFCm; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-cache-remote: TCP_MISS from a23-218-220-137.deploy.akamaitechnologies.com (AkamaiGHost/10.10.1-44825277) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: cdn-cache; desc=MISS, edge; dur=99, origin; dur=8, inner; dur=3
x-parent-response-time: 106,23.36.79.28
X-Firefox-Spdy: h2
getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/ElementQueries.js?ver=1
172.67.12.54200 OK 0 B URL HTTP/2 getjobber.com/wp-content/themes/jobber-bold/scripts/vendor/ElementQueries.js?ver=1
IP 172.67.12.54:0
GET /wp-content/themes/jobber-bold/scripts/vendor/ElementQueries.js?ver=1 HTTP/1.1
Host: getjobber.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/summit/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
age: 0
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=20253
etag: W/"636c09ef-4f1d"
expires: Tue, 14 Nov 2023 20:54:31 GMT
ki-cf-cache-status: HIT
ki-edge-o2o: yes
last-modified: Wed, 09 Nov 2022 20:13:35 GMT
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oBnTB3d1%2BiU409vQVAvvtQ38OKjTHzQUWI4myWvLBDF1rtjspyA7n7U2wWdeMJvYT2X1wsJr2%2FFA2crQtz8YYd%2F9V0Msa7yYSnGJU6bHmruBH6oPwLXZF9Kz2jaKgb4%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding
x-content-type-options: nosniff
x-edge-location-klb: 1
ki-cache-tag: f7145691-76a3-4f0e-b9d9-165d97495f3c,ef801def1b67b1c0525a3cb46b3c9cd43f2dd9f7d32b69c3144dbf8ed8248df3
ki-cache-type: CDN
ki-edge: v=17.8
cf-cache-status: HIT
strict-transport-security: max-age=2592000; includeSubDomains
server: cloudflare
cf-ray: 76a2a48c7bdb0b3d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
js.hsforms.net/forms/embed/v2.js
104.17.185.73200 OK 0 B URL HTTP/2 js.hsforms.net/forms/embed/v2.js
IP 104.17.185.73:0
GET /forms/embed/v2.js HTTP/1.1
Host: js.hsforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://getjobber.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 14 Nov 2022 20:54:31 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: PENDING
last-modified: Mon, 14 Nov 2022 10:55:02 UTC
etag: W/"f11fcda328d481f3080c29170dbf84b2"
x-amz-server-side-encryption: AES256
x-amz-version-id: zAS_Lpjmq93Q_lzGQ13Hgi3mTjWwKuXQ
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f57a09c5455a80253c61001d750462e6.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: HRF7TrOPm7VCGz7CyrB0ZjnfYD_Cs856HLeTt-086Zbxf-D_Ul1eFQ==
cache-control: s-maxage=600, max-age=300
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://exceptions.hubspot.com/csp/report?resource=forms-embed/static-1.2329/bundles/project-v2.js&cfRay=769f5e49bb09d97f-IAD
x-hs-target-asset: forms-embed/static-1.2329/bundles/project-v2.js
access-control-allow-origin: *
x-hs-cache-status: HIT
cache-tag: staticjsapp-forms-embed-v2-web-prod,staticjsapp-prod
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YJyBTVpjUKHl%2BfcGffwAtPAtX6VyqTKPaaaT2M1O15RHt%2BkiETdzy6wpOGJNd%2BpJFkycLjN%2FceCOcx12MRB4M4IwviA%2BRQu9pPTuRn72oLh3R7kN6tD%2BQ4hXewVXW7EI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76a2a48d0c53b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2